Mobile Phone Security

Emerging mobile phone operating systems providing open APIs will enable widespread innovation. However, this openness simultaneously exposes network providers, handset and OS developers, and users to increased risk. We seek to mitigate these threats by understanding emerging platforms and building stronger security mechanisms.

Google Android

The Google Android mobile phone platform is one of the most anticipated smartphone operating systems. We have dedicated significant effort towards understanding exactly how Android enforces security polices, and how developers can create more security applications. To facilitate the understanding and education of security on the Android platform, we have created a tutorial entitled "Understanding Android's Security Framework," which was presented at the ACM Conference on Computer and Communications Security (CCS). We have made the slides and example application source code publicly available.