I am security researcher with focus on (mobile) operating system security and trusted computing. In the past, I was particularly looking into mandatory access control systems for the Android OS and integrating hardware security building blocks into mobile operating systems.
Since May 2016 I am employed as the research group leader of the Trusted Systems Group at the Center for Information Security, Privacy, and Accountability (CISPA) in Saarbrücken, Germany.
Please check my full CV for more details.
Android Security Framework (ASF) is a generic, extensible security framework for Android that enables the development and integration of a wide spectrum of security models in form of code-based security modules. The design of ASF reflects lessons learned from the literature on established security frameworks (such as Linux Security Modules or the BSD MAC Framework) and intertwines them with the particular requirements and challenges from the design of Android’s software stack. ASF provides a novel security API that supports authors of Android security extensions in developing their modules. This overcomes the current unsatisfactory situation to provide security solutions as separate patches to the Android software stack or to embed them into Android’s mainline codebase. As a result, ASF provides different practical benefits such as a higher degree of acceptance, adaptation, and maintenance of security solutions than previously possible on Android. We present a prototypical implementation of ASF and demonstrate its effectiveness and efficiency by modularizing different security models from related work, such as context-aware access control, inlined reference monitoring, and type enforcement.
Source code, example security modules, and documentation can be retrieved from the current project website.
A generic security architecture for the Android OS that can serve as a flexible and effective ecosystem to instantiate different security solutions.
Source code and documentation can be retrieved from the project website at www.flaskdroid.org
List of publications can also be found on my Google Scholar page.
In the past, I had the pleasure to advise the following students:
I am currently offering the following courses:
Past courses the Trusted Systems Group offered:
I was involved in the following courses by the Information Security & Cryptography Group: