123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441 |
- var myApp = angular.module('myApp');
- myApp.controller('AppsController', ['$scope', '$http', '$location', '$routeParams', '$window', function($scope, $http, $location, $routeParams, $window){
- console.log('AppsController loaded...');
- $scope.app = {};
- $scope.privacyRisksTC = [];
- $scope.securityRisksTC = [];
- $scope.appResultList = new Array(200);
- $scope.reputationHTI = false;
- $scope.spHTI = false;
- $scope.finalHTI = false;
- $scope.total = 0;
- $scope.dataLoaded = false;
- $scope.appNumber = 0;
- $scope.setAppNumber = function(toAdd) {
- return $scope.appNumber + toAdd;
- }
- $scope.getApps = function() {
- angular.element('*[id^="tviz"]').remove();
- $scope.numPerPage = 10;
- $scope.currentPage = 1;
- var genre = $routeParams.genre;
- var page = $routeParams.page;
- var query = "";
- if(genre) {
- query += "/?genre=" + genre;
- }
- if(page) {
- $scope.currentPage = page;
- $scope.appNumber = (page - 1) * $scope.numPerPage;
- }
- if(query != "" && page) {
- query += "&page=" + page;
- } else if(query == "" && page) {
- query += "/?page=" + page;
- }
- $http.get('/crawler/downloadedapps' + query).then(function(response){
- $scope.dataLoaded = true;
- $scope.apps = response.data.apps;
- $scope.total = response.data.total;
- $scope.noOfPages = Math.ceil($scope.total / $scope.numPerPage);
- });
- }
- $scope.getApp = function(){
- angular.element('*[id^="tviz"]').remove();
- var id = $routeParams.id;
- var posture = $routeParams.posture;
- var query = "";
- if(posture) {
- query += "/?posture=" + posture;
- }
- $http.get('/crawler/downloadedapps/'+id+query).then(function(response){
- $scope.dataLoaded = true;
- $scope.app = response.data;
- //showCT($scope.app);
- $scope.privacyRisksTC = [
- "Client communication used?",
- "SSL/TLS used?",
- "Domains accessed with http AND https: ",
- "Custom SSL/TLS trust manager implemented?",
- "Faulty custom SSL/TLS trust manager implemented?",
- "SSL/TLS using custom error handling?",
- "SSL/TLS using faulty custom error handling?",
- "SSL/TLS using manual domain name verification?",
- "Unprotected communication?",
- "Unprotected HTML?",
- "Cryptographic Primitives: ",
- "Application needs dangerous permissions? ",
- "JavaScript to SDK API bridge usage?",
- "Is application overprivileged?",
- "Userdefined permission usage: ",
- "WiFi-Direct enabled?",
- "App can handle documents of mimeType: ",
- "Screenshot protection used?",
- "Tap Jacking Protection used?",
- //"",
- "Scheduled Alarm Manager registered?",
- "Dynamically loaded code at runtime?",
- "Allow app debugging Flag?",
- "Allow autoexecute after Phone Reboot?",
- //"",
- "App uses outdated signature key?",
- "Contains native libraries: "
- ];
- $scope.securityRisksTC = [
- "Obfuscation used?",
- "Device administration policy entries: ",
- "Accessed unique identifier(s): ",
- "Advertisment-/tracking frameworks found: ",
- "App provides public accessible activities?",
- "Backup of app is allowed?",
- "Log Statement Enabled?",
- "Permission to access address book?",
- //"",
- "Unprotected preference files found?"
- ];
- });
- }
- $scope.getApp2 = function(app, $index){
- angular.element('*[id^="tviz"]').remove();
- if(app.reviews.length && app.permissions.length) {
- $http.get('/crawler/downloadedapps/'+app.appId).then(function(response) {
- //$scope.app = response.data;
- $scope.appResultList[$index] = response.data;
- //$scope.showTviz(response.data, $index);
- $scope.securityRisksTC = [
- "Client communication used?",
- "SSL/TLS used?",
- "Domains accessed with http AND https: ",
- "Custom SSL/TLS trust manager implemented?",
- "Faulty custom SSL/TLS trust manager implemented?",
- "SSL/TLS using custom error handling?",
- "SSL/TLS using faulty custom error handling?",
- "SSL/TLS using manual domain name verification?",
- "Unprotected communication?",
- "Unprotected HTML?",
- "Cryptographic Primitives: ",
- "Application needs dangerous permissions? ",
- "JavaScript to SDK API bridge usage?",
- "Is application overprivileged?",
- "Userdefined permission usage: ",
- "WiFi-Direct enabled?",
- "App can handle documents of mimeType: ",
- "Screenshot protection used?",
- "Tap Jacking Protection used?",
- //"",
- "Scheduled Alarm Manager registered?",
- "Dynamically loaded code at runtime?",
- "Allow app debugging Flag?",
- "Allow autoexecute after Phone Reboot?",
- //"",
- "App uses outdated signature key?",
- "Contains native libraries: "
- ];
- $scope.privacyRisksTC = [
- "Obfuscation used?",
- "Device administration policy entries: ",
- "Accessed unique identifier(s): ",
- "Advertisment-/tracking frameworks found: ",
- "App provides public accessible activities?",
- "Backup of app is allowed?",
- "Log Statement Enabled?",
- "Permission to access address book?",
- //"",
- "Unprotected preference files found?"
- ];
- });
- }
-
- }
- $scope.getSPResult = function(testName) {
- var testCases = $scope.app.appicaptor.indicator;
- var indicator = _.filter(testCases, function(testCase) {
- return testCase.attr.text == testName;
- })[0];
- return indicator ? indicator.attr.value : "";
- }
- $scope.getRatingsTCF = function(app) {
- var output = "(";
- output += Number(app.averageRatingTrustValue.toFixed(2)) + ",";
- output += Number(app.averageRatingConfidenceValue.toFixed(2)) + ",";
- output += "NA" + ")";
- return output;
- }
- $scope.getReviewsTCF = function(app) {
- var output = "(";
- output += Number(app.reviewsTrustValue.toFixed(2)) + ",";
- output += Number(app.reviewsConfidenceValue.toFixed(2)) + ",";
- output += "NA" + ")";
- return output;
- }
- $scope.getPermissionsTCF = function(app) {
- var output = "(";
- output += Number(app.permissionsTrustValue.toFixed(2)) + ",";
- output += Number(app.cofidenceInNumberofPermissions.toFixed(2)) + ",";
- output += "NA" + ")";
- return output;
- }
- $scope.getSecurityRisksTCF = function(app) {
- var output = "(";
- output += Number(app.sTrustValue.toFixed(2)) + ",";
- output += Number(app.sConfidenceValue.toFixed(2)) + ",";
- output += "NA" + ")";
- return output;
- }
- $scope.getPrivacyRisksTCF = function(app) {
- var output = "(";
- output += Number(app.pTrustValue.toFixed(2)) + ",";
- output += Number(app.pConfidenceValue.toFixed(2)) + ",";
- output += "NA" + ")";
- return output;
- }
- $scope.getTrustPlusFrameworkScore = function(app) {
- var weight = 1/3;
- var ratingMetric = (app.score-1)/4;
- var score = (weight*ratingMetric*app.averageRatingConfidenceValue) + (weight*app.reviewMetric*app.reviewsConfidenceValue);
- return Number(score.toFixed(2));
- }
- $scope.$watch('app', function (newValue, oldValue, scope) {
- if(newValue.appId) {
- $scope.showCertainTrust();
- }
- });
- $scope.showCategoryCertainTrust = function () { //this will just calculate the expectation of the Reputaion and SP QUality category considering the sub categories
- var f = 0.0;
- var CT_objects = [];
- var CT_names = ['ratingsCT', 'reviewsCT', 'permissionsCT', 'reputationAndResult', 'securityRisksCT', 'privacyRisksCT', 'spQualityAndResult'];
- var ANDObserver = {
- update: function () {
- // calculate the CertainTrust.AND for both values
- var CT_result = CT_objects['ratingsCT'].AND(CT_objects['reviewsCT']).AND(CT_objects['permissionsCT']);
- // update the HTI which displays the result
- CT_objects['reputationAndResult'].setF(CT_result.getF());
- CT_objects['reputationAndResult'].setTC(CT_result.getT(), CT_result.getC());
- }
- };
- var app = $scope.app;
- for (var i = 0, element; element = CT_names[i]; ++i) {
- var CT_object;
- if (-1 !== element.indexOf('ratings')) {
- CT_object = new CertainTrust(Number(app.averageRatingTrustValue.toFixed(2)), Number(app.averageRatingConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('reviews')) {
- CT_object = new CertainTrust(Number(app.reviewsTrustValue.toFixed(2)), Number(app.reviewsConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('permissions')) {
- CT_object = new CertainTrust(Number(app.permissionsTrustValue.toFixed(2)), Number(app.cofidenceInNumberofPermissions.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('security')) {
- CT_object = new CertainTrust(Number(app.sTrustValue.toFixed(2)), Number(app.sConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('privacy')) {
- CT_object = new CertainTrust(Number(app.pTrustValue.toFixed(2)), Number(app.pConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('Result')) {
- CT_object = new CertainTrust(1, 1, 1, 3);
- }
- // the result HTIs should be read-only
- // var isResultHTI = (-1 !== element.indexOf('Result'));
- var HTI = new CertainTrustHTI(CT_object, { domParent: element, readonly: true });
- // register our observers for the calculation
- // if (!isResultHTI) {
- // CT_object.addObserver(ANDObserver);
- // }
- // store the created objects for easy access in the Arrays
- CT_objects[element] = CT_object;
- }
- // ANDObserver.update();
- // calculate the CertainTrust.AND for both values
- var repuatationCT_result = CT_objects['ratingsCT'].AND(CT_objects['reviewsCT']).AND(CT_objects['permissionsCT']);
- var spQualityCT_result = CT_objects['securityRisksCT'].AND(CT_objects['privacyRisksCT']);
- // update the HTI which displays the result
- CT_objects['reputationAndResult'].setF(repuatationCT_result.getF());
- CT_objects['reputationAndResult'].setTC(repuatationCT_result.getT(), repuatationCT_result.getC());
- CT_objects['spQualityAndResult'].setF(spQualityCT_result.getF());
- CT_objects['spQualityAndResult'].setTC(spQualityCT_result.getT(), spQualityCT_result.getC());
- f = 0.9;
- var wFusionArr = new Array();
- wFusionArr.push(CT_objects['ratingsCT']);
- wFusionArr.push(CT_objects['reviewsCT']);
- wFusionArr.push(CT_objects['permissionsCT']);
- var wFusionWeightArr = new Array();
- wFusionWeightArr.push(1);
- wFusionWeightArr.push(2);
- wFusionWeightArr.push(1);
- var repuatationWFusionCT_result = CT_objects['ratingsCT'].wFusion(wFusionArr,wFusionWeightArr);
- repuatationWFusionCT_result.setF(f);
- var HTI1 = new CertainTrustHTI(repuatationWFusionCT_result, { domParent: "reputationWFusionResult", readonly: true });
- var repuatationCFusionCT_result = CT_objects['ratingsCT'].cFusion(wFusionArr,wFusionWeightArr);
- var HTI11 = new CertainTrustHTI(repuatationCFusionCT_result, { domParent: "reputationCFusionResult", readonly: true });
- var wFusionSPArr = new Array();
- wFusionSPArr.push(CT_objects['securityRisksCT']);
- wFusionSPArr.push(CT_objects['privacyRisksCT']);
- var wFusionSPWeightArr = new Array();
- wFusionSPWeightArr.push(1);
- wFusionSPWeightArr.push(1);
- var spQualityWFusionCT_result = CT_objects['securityRisksCT'].wFusion(wFusionSPArr,wFusionSPWeightArr);
- spQualityWFusionCT_result.setF(f);
- var HTI2 = new CertainTrustHTI(spQualityWFusionCT_result, { domParent: "spQualityWFusionResult", readonly: true });
-
- var spQualityCFusionCT_result = CT_objects['securityRisksCT'].cFusion(wFusionSPArr,wFusionSPWeightArr);
- var HTI22 = new CertainTrustHTI(spQualityCFusionCT_result, { domParent: "spQualityCFusionResult", readonly: true });
- var finalAndCT_result = repuatationCT_result.AND(spQualityCT_result);
- var HTI3 = new CertainTrustHTI(finalAndCT_result, { domParent: "finalAndResult", readonly: true });
- var finalWFusionCT_result = repuatationWFusionCT_result.AND(spQualityWFusionCT_result);
- var HTI33 = new CertainTrustHTI(finalWFusionCT_result, { domParent: "finalWFusionResult", readonly: true });
-
- var finalCFusionCT_result = repuatationCFusionCT_result.AND(spQualityCFusionCT_result);
- var HTI333 = new CertainTrustHTI(finalCFusionCT_result, { domParent: "finalCFusionResult", readonly: true });
- }
- $scope.showCertainTrust = function () { //this will just calculate the expectation of the Reputaion and SP QUality category considering the sub categories
- var f = 0.0;
- var CT_objects = [];
- var CT_names = ['ratingsCT', 'reviewsCT', 'securityRisksCT', 'privacyRisksCT'];
- var ANDObserver = {
- update: function () {
- // calculate the CertainTrust.AND for both values
- var CT_result = CT_objects['ratingsCT'].AND(CT_objects['reviewsCT']).AND(CT_objects['permissionsCT']);
- // update the HTI which displays the result
- CT_objects['reputationAndResult'].setF(CT_result.getF());
- CT_objects['reputationAndResult'].setTC(CT_result.getT(), CT_result.getC());
- }
- };
- var app = $scope.app;
- for (var i = 0, element; element = CT_names[i]; ++i) {
- var CT_object;
- if (-1 !== element.indexOf('ratings')) {
- CT_object = new CertainTrust(Number(app.averageRatingTrustValue.toFixed(2)), Number(app.averageRatingConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('reviews')) {
- CT_object = new CertainTrust(Number(app.reviewsTrustValue.toFixed(2)), Number(app.reviewsConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('security')) {
- CT_object = new CertainTrust(Number(app.sTrustValue.toFixed(2)), Number(app.sConfidenceValue.toFixed(2)), f, 3);
- }
- if (-1 !== element.indexOf('privacy')) {
- CT_object = new CertainTrust(Number(app.pTrustValue.toFixed(2)), Number(app.pConfidenceValue.toFixed(2)), f, 3);
- }
- // the result HTIs should be read-only
- var HTI = new CertainTrustHTI(CT_object, { domParent: element, readonly: true });
- CT_objects[element] = CT_object;
- }
- // ANDObserver.update();
- f = 0.9;
- var spQualityCT_result = CT_objects['securityRisksCT'].AND(CT_objects['privacyRisksCT']);
- spQualityCT_result.setF(f);
- var HTI2 = new CertainTrustHTI(spQualityCT_result, { domParent: "spQualityAndResult", readonly: true });
-
- var wFusionArr = new Array();
- wFusionArr.push(CT_objects['ratingsCT']);
- wFusionArr.push(CT_objects['reviewsCT']);
- var wFusionWeightArr = new Array();
- wFusionWeightArr.push(1/3);
- wFusionWeightArr.push(2/3);
- var repuatationWFusionCT_result = CT_objects['ratingsCT'].wFusion(wFusionArr,wFusionWeightArr);
- repuatationWFusionCT_result.setF(f);
- var HTI1 = new CertainTrustHTI(repuatationWFusionCT_result, { domParent: "reputationWFusionResult", readonly: true });
- var finalAndCT_result = repuatationWFusionCT_result.AND(spQualityCT_result);
- var HTI3 = new CertainTrustHTI(finalAndCT_result, { domParent: "finalAndResult", readonly: true });
- var ct1 = new CertainTrust("Reputation",repuatationWFusionCT_result.getT(), repuatationWFusionCT_result.getC(),repuatationWFusionCT_result.getF(),3);
- var ct2 = new CertainTrust("S&p Quality",spQualityCT_result.getT(), spQualityCT_result.getC(),spQualityCT_result.getF(),3);
- new CertainTrustTViz([ct1,ct2], { id: "tvizAnd", middle: "AND",
- onClick: function(certainTrust) {
- if (certainTrust.getName() === "Reputation") $scope.reputationHTI = true;
- else $scope.spHTI = true;
- $scope.$apply();
- },
- onMiddleClick: function(certainTrust) {
- $scope.finalHTI = true;
- $scope.$apply();
- }
- });
- //new CertainTrustTViz([ct1,ct2], { id: "tvizAverage", middle: "AVERAGE" });
- }
- $scope.showTviz = function(app, index) {
- var f = 0.0;
- var CT_Ratings = new CertainTrust(Number(app.averageRatingTrustValue.toFixed(2)), Number(app.averageRatingConfidenceValue.toFixed(2)), f, 3);
- var CT_Reviews = new CertainTrust(Number(app.reviewsTrustValue.toFixed(2)), Number(app.reviewsConfidenceValue.toFixed(2)), f, 3);
- var CT_Security = new CertainTrust(Number(app.sTrustValue.toFixed(2)), Number(app.sConfidenceValue.toFixed(2)), f, 3);
- var CT_Privacy = new CertainTrust(Number(app.pTrustValue.toFixed(2)), Number(app.pConfidenceValue.toFixed(2)), f, 3);
- f = 0.9;
-
- var spQualityCT_result = CT_Security.AND(CT_Privacy);
- spQualityCT_result.setF(f);
-
- var wFusionArr = new Array();
- wFusionArr.push(CT_Ratings);
- wFusionArr.push(CT_Reviews);
- var wFusionWeightArr = new Array();
- wFusionWeightArr.push(1/3);
- wFusionWeightArr.push(2/3);
- var repuatationWFusionCT_result = CT_Ratings.wFusion(wFusionArr,wFusionWeightArr);
- repuatationWFusionCT_result.setF(f);
- var tvizid = "tviz" + index;
- var ct1 = new CertainTrust("Reputation",repuatationWFusionCT_result.getT(), repuatationWFusionCT_result.getC(),repuatationWFusionCT_result.getF(),3);
- var ct2 = new CertainTrust("S&p Quality",spQualityCT_result.getT(), spQualityCT_result.getC(),spQualityCT_result.getF(),3);
- new CertainTrustTViz([ct1,ct2], { canvas: { height: 200, width: 200 }, id: tvizid, middle: "AND" });
- }
- }]);
|