Dallas skyline
Dallas, Texas, USA
University of Texas at Dallas
Dallas IEEE Computer Society
Joint Meeting
27 OCT 2015
ieee logo
 
ieeecs logo
IEEE Computer Society

   
Visit Dallas IEEE CS on:   Facebook   Twitter   Linkedin
When: Tuesday 27 OCT 2015
Talk: 10:30 AM
Where: University of Texas at Dallas (UTD)
Bldg ECSS, Room 2.102 (TI Auditorium)
800 West Campbell Road
Richardson, TX 75080
Topic: "Security Architectures for Smartphones"
Speaker: Dr. Dan S. Wallach
Professor, Department of Computer Science
& Rice Scholar, Baker Institute for Public Policy
Rice University
Abstract: Modern smartphones allow a variety of third-party applications to run on them, creating a delicate dance between usability and trust. Without burdening the user with security dialogs, apps must have enough privilege to get their job done, yet with suitable isolation from other possibly hostile apps. Android provides a variety of security features that were engineered to make this possible, but a number of deficiencies have cropped up over the years. This talk considers several problems. Android applications tend to have the ability to make arbitrary Internet connections, making it difficult for remote servers to trust which app might be making the connection. Android applications can similarly make a variety of internal IPCs, leading to "confused deputy" attacks where one app might be tricked into exercising a dangerous privilege on behalf of an untrusted caller. We address these issues with IPC and RPC extensions that can efficiently track the call chain and use this when making security decisions. We will also discuss solutions to the "permission bloat" problem that results from apps, which may not need many permissions themselves, including advertising libraries which require GPS location, Internet access, and more. Our IPC architecture allows us to separate advertisements from their hosting applications, reducing permission bloat and increasing resistance to synthetic click attacks.
Bio: Dan S. Wallach is a professor in the Department of Computer Science and a Rice Scholar at the Baker Institute for Public Policy at Rice University in Houston, Texas. His research considers a variety of different computer security topics, ranging from web browsers and servers through electronic voting technologies and smartphones.
Directions: UTD is at 800 West Campbell Road, Richard, TX 75080. See UTD Directions
Presentation room is in bldg ECSS, Room 2.102 (TI Auditorium). See UTD Campus Map
The campus Visitor Center can provide parking passes and, if needed, specific directions.
Cost: FREE

 


 

home button
Dallas Chapter Home Page
 
Updated 19 OCT 2015 by Webmaster