UI-CTX: Understanding UI Behaviors with Code Contexts for Mobile Applications
Jiawei Li
Network and Distributed System Security (NDSS) Symposium 2025 · Day 1 · Privacy & Usability 1
This talk, presented by Jiawei Li at the NDSS Symposium, introduces **UI-CTX**, a novel approach for understanding the intended behaviors of UI widgets in mobile applications by analyzing their underlying code context. The core problem addressed is the pervasive inconsistency between a UI widget's apparent function (e.g., a "login" button) and its actual runtime behavior (e.g., silently exfiltrating credentials). Such discrepancies pose significant security threats, as users may unknowingly trigger malicious actions by interacting with seemingly innocuous UI elements. UI-CTX aims to bridge this gap by providing an accurate, concise, and robust representation of UI behaviors.
AI review
Competent academic systems paper that solves a real problem — UI/code semantic mismatch in mobile apps — with a methodologically sound pipeline. The event-handler-centric binding, dead-branch pruning, and opcode-based obfuscation resilience are sensible contributions, but none individually break new ground, and the aggregate novelty lands squarely in 'solid conference paper' territory rather than 'must-see talk.'