Skip to main content
  • Home
  • About
  • Faculty Experts
  • For The Media
  • ’Cuse Conversations Podcast
  • Topics
    • Alumni
    • Events
    • Faculty
    • Students
    • All Topics
  • Contact
  • Submit
STEM
  • All News
  • Arts & Culture
  • Business & Economy
  • Campus & Community
  • Health & Society
  • Media, Law & Policy
  • STEM
  • Veterans
  • University Statements
  • Syracuse University Impact
  • |
  • The Peel
  • Athletics
Sections
  • All News
  • Arts & Culture
  • Business & Economy
  • Campus & Community
  • Health & Society
  • Media, Law & Policy
  • STEM
  • Veterans
  • University Statements
  • Syracuse University Impact
  • |
  • The Peel
  • Athletics
  • Home
  • About
  • Faculty Experts
  • For The Media
  • ’Cuse Conversations Podcast
  • Topics
    • Alumni
    • Events
    • Faculty
    • Students
    • All Topics
  • Contact
  • Submit
STEM

Faculty to Present Research at Cybersecurity Conference

Thursday, October 30, 2014, By Matt Wheeler
Share
College of Engineering and Computer Science

The College of Engineering and Computer Science has had three papers accepted by the Association for Computing Machinery’s Conference on Computer and Communications Security, a prestigious security conference that will take place this November in Scottsdale, Ariz. It is a notable achievement to have three research papers accepted from the same institution at such a well-regarded cybersecurity conference. Students and faculty will travel to the conference and present their work to an audience of computing professionals and researchers.

engineersIn their paper, “Code Injection Attacks on HTML5-based Mobile Apps: Characterization, Detection and Mitigation,” Professors Wenliang (Kevin) Du and Heng Yin address the security concerns that arise as smartphone applications begin to rely more and more on HTML5. Unfortunately, the web technology used by HTML5-based mobile apps has a dangerous feature, which allows data and code to be mixed together, making code injection attacks possible.

Du and Yin conducted a systematic study on such apps and found a new form of code injection attack, which inherits the fundamental cause of cross-site scripting attack (XSS), but uses many more channels to inject code than XSS.  These channels, unique to mobile devices, include Contact, SMS, Barcode and MP3 files. To assess the prevalence of this, they developed a vulnerability detection tool and analyzed apps found in Google Play. Out of 15,510 apps, 478 apps were found to be vulnerable. Click here for more details.

In another paper, “Semantics-Aware Android Malware Classification Using Weighted Contextual API Dependency Graphs,” Yin highlights how the drastic increase of Android malware has necessitated automation of the malware analysis process. Existing automated detection and classification can be easily evaded In this paper, Yin proposes a semantic-based approach that classifies malware via dependency graphs. Using these, he and his team have developed methods to battle transformation attacks, malware variants and zero-day malware. They have also implemented a prototype system that can correctly label 93 percent of malware instances. Click here for more details.

Finally, in “Beware, Your Hands Reveal Your Secrets,” Professor Vir V. Phoha reveals his research that introduces a new way for adversaries to learn a smartphone user’s PIN. Instead of watching over a person’s shoulder, this method relies entirely on the spatio-temporal dynamics of a person’s hands as they enter their PIN. Essentially, that means that adversaries can determine your PIN without even being able to see your screen. Click here for more details.

 

  • Author
  • Faculty Experts

Matt Wheeler

  • Vir V. Phoha

  • Recent
  • Empowering Learners With Personalized Microcredentials, Stackable Badges
    Thursday, July 3, 2025, By Hope Alvarez
  • WISE Women’s Business Center Awarded Grant From Empire State Development, Celebrates Entrepreneur of the Year Award
    Thursday, July 3, 2025, By Dawn McWilliams
  • Rose Tardiff ’15: Sparking Innovation With Data, Mapping and More
    Thursday, July 3, 2025, By News Staff
  • Paulo De Miranda G’00 Received ‘Much More Than a Formal Education’ From Maxwell
    Thursday, July 3, 2025, By Jessica Youngman
  • Law Professor Receives 2025 Onondaga County NAACP Freedom Fund Award
    Thursday, July 3, 2025, By Robert Conrad

More In STEM

6 A&S Physicists Awarded Breakthrough Prize

Our universe is dominated by matter and contains hardly any antimatter, a notion which still perplexes top scientists researching at CERN’s Large Hadron Collider. The Big Bang created equal amounts of matter and antimatter, but now nearly everything—solid, liquid, gas or plasma—is…

Setting the Standard and Ensuring Justice

Everyone knows DNA plays a crucial role in solving crimes—but what happens when the evidence is of low quantity, degraded or comes from multiple individuals? One of the major challenges for forensic laboratories is interpreting this type of DNA data…

Student Innovations Shine at 2025 Invent@SU Presentations

Eight teams of engineering students presented designs for original devices to industry experts and investors at Invent@SU Final Presentations. This six-week summer program allows students to design, prototype and pitch their inventions to judges. During the program, students learn about…

WiSE Hosts the 2025 Norma Slepecky Memorial Lecture and Undergraduate Research Prize Award Ceremony

This spring, Women in Science and Engineering (WiSE) held its annual Norma Slepecky Memorial Lecture and Award Ceremony. WiSE was honored to host distinguished guest speaker Joan-Emma Shea, who presented “Self-Assembly of the Tau Protein: Computational Insights Into Neurodegeneration.” Shea…

Endowed Professorship Recognizes Impact of a Professor, Mentor and Advisor

Bao-Ding “Bob” Cheng’s journey to Syracuse University in pursuit of graduate education in the 1960s was long and arduous. He didn’t have the means for air travel, so he voyaged more than 5,000 nautical miles by boat from his home…

Subscribe to SU Today

If you need help with your subscription, contact sunews@syr.edu.

Connect With Us

  • X
  • Facebook
  • Instagram
  • Youtube
  • LinkedIn
Social Media Directory

For the Media

Find an Expert Follow @SyracuseUNews
  • Facebook
  • Instagram
  • Youtube
  • LinkedIn
  • @SyracuseU
  • @SyracuseUNews
  • Social Media Directory
  • Accessibility
  • Privacy
  • Campus Status
  • Syracuse.edu
© 2025 Syracuse University News. All Rights Reserved.