首页 >  学术交流
周亚金海报

内容摘要:
The mobile application (or app) ecosystem has led to an explosive growth of smartphone shipments. The ecosystem mainly consists of smartphone devices from multiple vendors, centralized app stores, app developers and app users. Unfortunately, threats to app ecosystem are also growing at a staggering rate, compromising user security and privacy. For instance, vulnerabilities existed in pre-loaded and third-party apps could be leveraged by attackers to steal user private data. Malicious apps could penetrate into centralized app stores, and infect a large number of users in a short time period.
This talk is about the work on securing app ecosystem against current and emerging threats. First, I will discuss the work of understanding the threats of malicious apps to app stores, which play an important role in the app ecosystem. Then I will present our work of discovering two vulnerabilities existing in a large number of third-party Android apps due to the poor security practice of app developers. At last, I will talk about my recent work, i.e., an efficient fault isolation system for smartphones and other ARM based devices, to isolate malicious or vulnerable components in apps.
报告人简介:
Yajin Zhou is an researcher in the Department of Computer Science at North Carolina State University. His main research interests include Android malware detection, vulnerability analysis of smartphone applications, and corresponding solutions to protect smartphone users. His research published in many top security conferences including CCS, S&P and NDSS, and he received the Best Paper Award in ACM CODASPY 2012 and 2013. The project he developed with Dr. Xuxian Jiang which named Android Malware Genome Project found more than 25 zero-day Android Malware families and the research results were shared to about 300 universities and companies around the world.

(2015-01-02)