Skip to main content
  • Home
  • About
  • Faculty Experts
  • For The Media
  • Videos
  • Topics
    • Alumni
    • Events
    • Faculty
    • Library
    • Research
    • Students
    • All Topics
  • Contact
  • Submit
STEM
  • All News
  • Arts & Culture
  • Business & Economy
  • Campus & Community
  • Health & Society
  • Media, Law & Policy
  • STEM
  • Veterans
  • |
  • Alumni
  • The Peel
  • Athletics
Sections
  • All News
  • Arts & Culture
  • Business & Economy
  • Campus & Community
  • Health & Society
  • Media, Law & Policy
  • STEM
  • Veterans
  • |
  • Alumni
  • The Peel
  • Athletics
  • Home
  • About
  • Faculty Experts
  • For The Media
  • Videos
  • Topics
    • Alumni
    • Events
    • Faculty
    • Library
    • Research
    • Students
    • All Topics
  • Contact
  • Submit
STEM

Faculty to Present Research at Cybersecurity Conference

Thursday, October 30, 2014, By Matt Wheeler
Share
College of Engineering and Computer Science

The College of Engineering and Computer Science has had three papers accepted by the Association for Computing Machinery’s Conference on Computer and Communications Security, a prestigious security conference that will take place this November in Scottsdale, Ariz. It is a notable achievement to have three research papers accepted from the same institution at such a well-regarded cybersecurity conference. Students and faculty will travel to the conference and present their work to an audience of computing professionals and researchers.

engineersIn their paper, “Code Injection Attacks on HTML5-based Mobile Apps: Characterization, Detection and Mitigation,” Professors Wenliang (Kevin) Du and Heng Yin address the security concerns that arise as smartphone applications begin to rely more and more on HTML5. Unfortunately, the web technology used by HTML5-based mobile apps has a dangerous feature, which allows data and code to be mixed together, making code injection attacks possible.

Du and Yin conducted a systematic study on such apps and found a new form of code injection attack, which inherits the fundamental cause of cross-site scripting attack (XSS), but uses many more channels to inject code than XSS.  These channels, unique to mobile devices, include Contact, SMS, Barcode and MP3 files. To assess the prevalence of this, they developed a vulnerability detection tool and analyzed apps found in Google Play. Out of 15,510 apps, 478 apps were found to be vulnerable. Click here for more details.

In another paper, “Semantics-Aware Android Malware Classification Using Weighted Contextual API Dependency Graphs,” Yin highlights how the drastic increase of Android malware has necessitated automation of the malware analysis process. Existing automated detection and classification can be easily evaded In this paper, Yin proposes a semantic-based approach that classifies malware via dependency graphs. Using these, he and his team have developed methods to battle transformation attacks, malware variants and zero-day malware. They have also implemented a prototype system that can correctly label 93 percent of malware instances. Click here for more details.

Finally, in “Beware, Your Hands Reveal Your Secrets,” Professor Vir V. Phoha reveals his research that introduces a new way for adversaries to learn a smartphone user’s PIN. Instead of watching over a person’s shoulder, this method relies entirely on the spatio-temporal dynamics of a person’s hands as they enter their PIN. Essentially, that means that adversaries can determine your PIN without even being able to see your screen. Click here for more details.

 

  • Author
  • Faculty Experts

Matt Wheeler

  • Vir V. Phoha

  • Recent
  • Rockell Brown Burton Joins Newhouse School as Associate Dean of Inclusivity, Diversity, Equity and Accessibility
    Monday, May 23, 2022, By Wendy S. Loughlin
  • Corinne Sartori Joins Libraries as Accessibility Specialist
    Monday, May 23, 2022, By Cristina Hatem
  • Eight New Recruits Begin Campus Peace Officer Academy
    Thursday, May 19, 2022, By Christine Weber
  • Media Tip Sheet: Consequences of China Lockdown
    Thursday, May 19, 2022, By Vanessa Marquette
  • Dean Rajiv ‘Raj’ Dewan to Step Down as Dean of the School of Information Studies
    Thursday, May 19, 2022, By News Staff

More In STEM

Dean Rajiv ‘Raj’ Dewan to Step Down as Dean of the School of Information Studies

Rajiv “Raj” Dewan, dean of the School of Information Studies, has announced he will conclude his deanship on June 30, 2022. Dewan plans to return to full-time faculty duties while continuing his research. David Seaman, dean of Syracuse University Libraries…

Biology and Earth and Environmental Sciences Departments Come Together on Diversity and Engagement Initiatives

In 1948, Professor James Hope Birnie became Syracuse University’s first African American faculty member in biology, teaching here until 1951. He was also one of its first biology faculty members to be supported by the National Institutes of Health (NIH)….

Black Hole Image Shows Einstein Was Right, Once Again

Today a team of astronomers announced they successfully captured the first direct image of the black hole at the center of the Milky Way galaxy. Duncan Brown is the Charles Brightman Endowed Professor of Physics at Syracuse University’s College of…

Biomedical and Chemical Engineering Professor’s Research Team Receives Multiple Awards at Society for Biomaterials Conference

Biomedical and chemical engineering Professor Mary Beth Monroe attended the Society for Biomaterials (SFB) 2022 meeting in Baltimore, Maryland, with Ph.D. students Anand Vakil, Henry Beaman, Changling Du and Maryam Ramezani, master’s student Natalie Petryk ’21, G’22 and undergraduate students Caitlyn…

Viewing a Microcosm Through a Physics Lens

“What can physics offer biology?” This was how Alison Patteson, assistant professor in the College of Arts and Sciences’ physics department and a faculty member in the BioInspired Institute, began the explanation of why her physics lab was studying bacteria. In…

Subscribe to SU Today

If you need help with your subscription, contact sunews@syr.edu.

Connect With Us

  • Twitter
  • Facebook
  • Instagram
  • Youtube
  • LinkedIn
Social Media Directory

For the Media

Find an Expert Follow @SyracuseUNews
  • Facebook
  • Instagram
  • Youtube
  • LinkedIn
  • @SyracuseU
  • @SyracuseUNews
  • @SUCampus
  • Social Media Directory
  • Accessibility
  • Privacy
  • Campus Status
  • Syracuse.edu
© 2022 Syracuse University News. All Rights Reserved.