Michael Backes

Latest

• Measuring the Effects of Stack Overflow Code Snippet Evolution on Open-Source Software Security
• A Systematic Study of the Consistency of Two-Factor Authentication User Journeys on Top-Ranked Websites
• A11y and Privacy don't have to be mutually exclusive: Constraining Accessibility Service Misuse on Android
• Explanation Beats Context: The Effect of Timing & Rationales on Users' Runtime Permission Decisions
• Is FIDO2 the Kingslayer of User Authentication? A Comparative Usability Study of FIDO2 Passwordless Authentication
• Up2Dep: Android Tool Support to Fix Insecure Code Dependencies
• Short Text, Large Effect: Measuring the Impact of User Reviews on Android App Security & Privacy
• Up-To-Crash: Evaluating Third-Party Library Updatability on Android
• Better managed than memorized? Studying the Impact of Managers on Password Strength and Reuse
• The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators
• ARTist: The Android Runtime Instrumentation and Security Toolkit
• Keep me Updated: An Empirical Study of Third-Party Library Updatability on Android
• Seamless In-App Ad Blocking on Stock Android
• The ART of App Compartmentalization: Compiler-based Library Privilege Separation on Stock Android
• On Demystifying the Android Application Framework: Re-Visiting Android Permission Specification Analysis
• R-Droid: Leveraging Android App Analysis with Static Slice Optimization
• Reliable Third-Party Library Detection in Android and its Security Applications
• SoK: Lessons Learned From Android Security Research For Appified Software Platforms
• Boxify: Full-fledged App Sandboxing for Stock Android
• Android Security Framework: Extensible Multi-Layered Access Control on Android
• Scippa: System-Centric IPC Provenance on Android