We present the first concept for full-fledged app sandboxing on stock Android. Our approach
is based on application virtualization and process-based privilege separation to securely …

Dynamic taint analysis (DTA), as a mainstream information flow tracking technique, has
been widely used in mobile security. On the Android platform, the existing DTA approaches …

Android's success makes it a prominent target for malicious software. However, the user has
very limited control over security-relevant operations. This work presents AppGuard, a …

Distributed Online Social Networks (DOSNs) have been proposed to shift the control over
user data from a unique entity, the online social network provider, to the users of the DOSN …

Modern mobile devices allow their users to download data from the network, such as
documents or photos, to store local copies and to use them. Many real scenarios would …

The notion of Context-Awareness of mobile applications is drawing more attention, where
many applications need to adapt to physical environments of users and devices, such as …

Misuse of cryptographic APIs remains one of the most common flaws in Android
applications. The complexity of cryptographic APIs frequently overwhelms developers. This …

Hooking methods on Android's Dalvik runtime has become a common technique for various
use cases, including security and privacy extensions. Android 5.0 introduced the new ahead …

Modern test generation techniques allow to generate as many executions as needed,
combined with dynamic analysis, they allow for understanding program behavior in …

Inspecting and manipulating runtime behavior of Android applications is a common need in
mobile security research. However, existing tools lack a holistic application-agnostic …