Smartphone Security WS 2014/2015

Practical Lab on Smartphone Security

Organization Matters

Kick-Off Meeting

  • Lecturer: Prof. Dr.-Ing. Ahmad-Reza Sadeghi and Dipl.-Inform. Stephan Heuser
  • Date: Kick-Off Meeting: Oct. 23rd, 2014
  • Location: Building S4|14 (CASED), room 3.02.6, 13:15

Final implementation and documentation (8-12 pages) is due on Monday, Feb. 23rd.

Final Presentation

  • Date: March 2nd, 2015, 13:00
  • Location: Building S4|14 (CASED), room 3.02.6

Description

In this practical course, the students deal with different aspects of smartphone security. The project tasks specifically target the open-source Android OS and comprise the following areas:

  • Design and implementation of selected software attacks (ethical hacking)
  • Design and implemenation of secure user apps
  • Modifications of the Android Middleware and Kernel to build security architectures
  • System programming in general

Prerequisites

Students who want to participate in the course should

  • have knowledge of OS concepts/architectures
  • be familiar with programming in C/C++ and Java

Actual programming experience on Android or at OS-level are not a prequisite, but definitively an advantage.

Procedure

The programming tasks are solved in teams of (up to) 3 students. At the beginning of the course, a kick-off lab-session is given to

  • Provide information about the Android OS architecture and the Lab itself
  • Present topics

The participants are required to form teams of up to 3 students. We provide a mailing list for this task (mandatory signup).

At the midterm of the semester, each team has to hand in a short progress report and at the end of the semester a concluding lab-session is held in which every team has to shortly present its work/results.

Literature

A list of selected scientific publications regarding Android OS security can be found here. The Android Security Modules framework is available here.