CS Extra 9/27/2018: Detecting Vulnerable Code: from Mobile Apps to IoT Devices

Thursday, September 27, 2018
4:15 p.m. in Science 3821
Refreshments at 4:00 p.m. in the Computer Science Commons (Science 3817)

Antonio Bianchi, Assistant Professor of Computer Science at The University of Iowa, presents this Thursday Extra.

Mobile application markets, such as the Google's Play Store and the Apple's App Store, receive thousands of new applications every day. Ideally, all these apps should be properly vetted to find both security-relevant programming mistakes. Unfortunately, the sheer amount of the submitted code rules out the possibility of using human experts to analyze it. Consequently, researchers have proposed and implemented different techniques to analyze automatically mobile applications.

In this talk, Bianchi will talk about his research using automated analysis techniques to detect security issues in existing Android applications. In particular, he will present his work in detecting Android applications implementing vulnerable authentication schemas. He will also discuss some of the currently open problems in the field and future research directions.