Visible to the public SelfProtecting Mobile Software Systems.pdf

POSTER: Self-Protecting Mobile Software Systems

PRESENTER: Sam Malek, UC Irvine

ABSTRACT:
Self-protecting software systems leverage an abstract representation of the software, often in the form of an architectural model, to detect security attacks and mitigate them through runtime adaptation of software. Prior research assumes architectural models are developed manually by software engineers. Manual construction of such models is difficult and labor-intensive, hence error prone. Moreover, models used for runtime adaptation of software quickly become obsolete due to changes in the software. In this research, we are developing novel static program analysis and dynamic monitoring techniques for the Android system to automatically obtain and maintain a precise architectural model without human intervention. Static analysis techniques are used to extract the static architectural model of the Android app from its byte-code, whereas dynamic monitoring is used to update the runtime model and keep it synchronized with the running system. We demonstrate application of our approach for self-protection of Android apps by effectively preventing malware from exploiting Inter-Component Communication (ICC) vulnerabilities in apps.

CO-PRESENTER(S):

KEYWORDS:
Self-protection, Android, Program Analysis

PRESENTER BIO:
Sam Malek is an Associate Professor in the Informatics Department within the School of Information and Computer Sciences at the University of California, Irvine. He is also a member of the Institute for Software Research and the director of Software Engineering and Analysis Laboratory. Malek's general research interests are in the field of software engineering, and to date his focus has spanned the areas of software architecture, autonomic computing, mobile computing, and software analysis and testing. The underlying theme of his research has been to devise techniques and tools that aid with the construction, analysis, and maintenance of large-scale software systems. Malek received his Ph.D. and M.S. degrees in Computer Science from the University of Southern California and his B.S. degree in Information and Computer Science from the University of California, Irvine. He has received numerous awards for his research contributions, including the National Science Foundation CAREER award (2013), GMU Emerging Researcher/Scholar/Creator award (2013), and GMU Computer Science Department Outstanding Faculty Research Award (2011). Malek is on the editorial board of IEEE Transactions on Software Engineering and the Springer Journal of Computing. Malek is a member of the Association for Computing Machinery (ACM), ACM Special Interest Group on Software Engineering (SIGSOFT), and the Institute of Electrical and Electronics Engineers (IEEE).

License: 
Creative Commons 2.5

Other available formats:

SelfProtecting Mobile Software Systems.pdf
Switch to experimental viewer