(2021). Characterizing Improper Input Validation Vulnerabilities of Mobile Crowdsourcing Services. ACSAC 2021.

Project arXiv

(2021). (Short) Object Removal Attacks on LiDAR-based 3D Object Detectors. Third International Workshop on Automotive and Autonomous Vehicle Security (AutoSec) - co-located with NDSS ‘21.

PDF Cite Project

(2021). Shadow-Catcher: Looking Into Shadows to Detect Ghost Objects in Autonomous Vehicle 3D Sensing. In the Proceedings of the 26th European Symposium on Research in Computer Security (ESORICS). Acceptance rate=20.2% (71/351).

Cite Project Project PDF Website

(2021). Layer-wise Characterization of Latent Information Leakage in Federated Learning. Distributed and Private Machine Learning (DPML) Workshop - co-located with ICLR.

Cite Project

(2020). Determination of a next state of multiple IoT devices within an environment. US Patent: US10778516B2.

PDF Cite Project

(2020). External resource control of mobile devices. US Patent: US10685142B2.

PDF Cite

(2020). DarkneTZ: towards model privacy at the edge using trusted execution environments. Proceedings of the 18th International Conference on Mobile Systems, Applications, and Services (MobiSys ‘20). Acceptance rate=19.4% (34/175).

PDF Cite Project Project DOI Presentation Video Source Code

(2019). Determining car positions. US Patent: US10380889B2.

PDF Cite Project

(2019). BEEER: distributed record and replay for medical devices in hospital operating rooms. Proceedings of the 6th Annual Symposium on Hot Topics in the Science of Security - HotSoS ‘19.

PDF Cite Project DOI

(2018). CoDrive: Improving Automobile Positioning via Collaborative Driving. IEEE Conference on Computer Communications (IEEE INFOCOM ‘18). Acceptance rate=19.2% (309/1606).

Cite Project DOI Slides Presentation Video

(2018). Toward an Extensible Framework for Redaction. 1st International Workshop on Security and Privacy for the Internet-of-Things (IoTSec).

Cite Project

(2018). Resolving the Predicament of Android Custom Permissions. Proceedings 2018 Network and Distributed System Security Symposium (NDSS ‘18). Acceptance rate=21.4% (71/331).

PDF Cite Project DOI Slides Presentation Video Source Code (Formal Model) Website

(2017). CamForensics: Understanding Visual Privacy Leaks in the Wild. Proceedings of the 15th ACM Conference on Embedded Network Sensor Systems (ACM SenSys ‘17). Acceptance rate=17.2% (26/151).

PDF Cite Project DOI

(2017). HanGuard: SDN-driven protection of smart home WiFi devices from malicious mobile apps. Proceedings of the 10th ACM Conference on Security and Privacy in Wireless and Mobile Networks (ACM WiSec ‘17). Acceptance rate=22.3%.

PDF Cite Project DOI Slides Demo Video Website

(2017). Ghost Installer in the Shadow: Security Analysis of App Installation on Android. 47th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN ‘17).

Cite Project DOI

(2017). Understanding IoT Security Through the Data Crystal Ball: Where We Are Now and Where We Are Going to Be. arXiv:1703.09809 [cs].

PDF Cite Project

(2016). Draco: A System for Uniform and Fine-grained Access Control for Web Code on Android. Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security (ACM CCS ‘16). Acceptance rate=16.5% (137/831).

PDF Cite Project DOI Presentation Video

(2016). Free for All! Assessing User Data Exposure to Advertising Libraries on Android. Proceedings of the 23rd Network and Distributed System Security Symposium (NDSS ‘16). Acceptance rate=15.4%(60/389).

PDF Cite Project DOI Slides Source Code Website

(2015). What's in Your Dongle and Bank Account? Mandatory and Discretionary Protection of Android External Resources. Proceedings of the 22nd Network and Distributed System Security Symposium (NDSS ‘15). Acceptance rate=16.9% (51/302).

PDF Cite Project DOI Slides Website

(2014). Inside Job: Understanding and Mitigating the Threat of External Device Mis-Bonding on Android. Proceedings of the 21st Network and Distributed System Security Symposium (NDSS ‘14). Acceptance rate=18.6% (55/295);.

PDF Cite Project DOI Slides Source Code Website

(2013). Identity, location, disease and more: inferring your secrets from android public resources. Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security (ACM CCS ‘13). Acceptance rate=19.8% (105/530).

PDF Cite Project DOI Website

(2013). Discovering the invisible city: Location-based games for learning in smart cities. Interaction Design and Architecture(s) Journal - IxD&A, N. 16, 2013, pp. 47-64..

PDF Cite

(2011). Content creation by end users for location-sensitive mobile educational games. IS-EUD 2011 Workshop Involving End Users and Domain Experts in Design of Educational Games.