Kurzkommentar |
In this practical course, the students deal with different aspects of smartphone security at the example of the open-source Android OS. In general, the awareness and understanding of the students for security and privacy problems in the area of smartphones is increased and they learn how to extend Android with new security features to tackle current security and privacy issues.
The course is and split into two parts:
- Lecture period (Monday 6 Oct - Friday 17 Oct): In this first part, the lab is offered as a full-day course ("Blockveranstaltung"). In the first week, the students become through lectures in the morning and supervised lab sessions in the afternoon familiar with the Android OS internals and in particular with its security architecture and how it can be extended. In the second week, the students will develop and implement in supervised group-based project work a selected small security extension to Android.
- Project period (Monday 20 Oct - Friday 14 Nov): In the second part of this course, the students will apply their new knowledge by implementing in independent group-based project work a selected security extension or ethical proof-of-concept attack.
The project tasks specifically target the open-source Android OS and include the following areas:
- Design and implementation of selected software attacks (ethical hacking)
- Design and implemenation of security extensions to the Android Middleware and Kernel (e.g., access control, end-user privacy protection, etc.)
- Android system programming in general
|