各部门、各单位:
应我校无线网络安全技术国家工程实验室邀请,台湾清华大学Professor Hung-Min Sun将于11月11日来我校做专题学术讲座,欢迎广大师生参加!报告的具体安排如下:
报告题目:A SecurityVulnerability Analysis System for Android Application
报 告 人:Hung-MinSun (Professor)
报告时间:2016年11月11日(星期五)15:00—16:30
报告地点:无线网络安全技术国家工程实验室会议室(长安校区东区医疗中心南侧3楼)
报告摘要:Mobilesecurity is a hot topic in recent years. Especially nowadays, everyone has atleast one or more smart phones. While most mobile security researchers focus onmalware analysis and malware detection, we focus on finding security vulnerabilitiesin mobile applications. We want to make more and more Android developers awareof the potential security holes in their Android applications and how each lineof the codes they wrote may cause serious security holes. If these securityissues are not fixed, any app on the phone can easily exploit user’s phone, stealing user’s private files andmessages without user’s knowledge, compromising user’s account by the stolen access token, etc. And some exploits can bemade remotely without installing malicious application on user’s phone. We propose a massive vulnerability analysis system to helpAndroid developers reduce the risks of applications being exploited or hacked.Our system had helped us find one or more security vulnerabilities in Android applicationsor SDKs developed by Facebook, Microsoft, Google, Evernote, LINE WhosCall,Alibaba, Badoo, Sina Weibo, Baidu, Tencent and other renowned companies. We hadreported our findings to these companies and gotten their confirmations andacknowledgements. These acknowledgements should fully prove our system canefficiently and accurately help find the vulnerabilities in those products thathave not been discovered by other security researchers or their Androiddevelopers.
报告人简介:ProfessorHung-Min Sun received his Ph.D. degree in computer science and informationengineering from National Chiao-Tung University in 1995. Currently, he isworking as a full professor with the Department of Computer Science, NationalTsing Hua University. He has published more than 200 international journal andconference papers. He was the program cochair of 2001 National InformationSecurity Conference, and the program committee members of many internationalconferences. He was the honor chairs of 2009 International Conference onComputer and Automation Engineering, 2009 International Conference on ComputerResearch and Development, and 2009 International Conference on TelecomTechnology and Applications. He won many best paper awards in academic journaland conferences, including the annual best paper award in Journal ofInformation Science and Engineering in 2003, the best paper award in MobiSys09,NSC05, NISC06, NISC07, CISC09, and ICS2010. He won Y. Z. Hsu Scientific PaperAward, Far Eastern Y. Z. Hsu Science and Technology Memorial Foundation, 2010.He got the Award of Excellent Professor in Engineering from the ChineseInstitute of Electrical Engineering, 2014. His research interests include imageprocessing and network security.
特此通知。
台港澳办公室
无线网络安全技术国家工程实验室
2016年11月9日
