Security Analysis of the Android Operating System

Luca Verderame

9/2011 - 3/2012

Supervisor: Alessandro Armando

Supervisor: Alessio Merlo

Publications

  1. A. Armando, A. Merlo, M. Migliardi, L. Verderame, “Would You Mind Forking This Process? A Denial of Service Attack on Android (and Some Countermeasures)”, in Proc. od SEC 2012.

  2. A. Armando, A. Merlo, M. Migliardi, L. Verderame, “Breaking and Fixing the Android Launching Flow”, in Computers and Security, 39 104-115 (2013).


Energy-Aware Security: tools and analytic models for energy consumption in the Android OS

Monica Curti, Simone Schiappacasse

09/2012 - 03/2013

Supervisor: Alessio Merlo

Supervisor: Mauro Migliardi

Publications

  1. M. Curti, A. Merlo, M. Migliardi, S. Schiappacasse, “Towards energy-aware intrusion detection systems on mobile devices”, in Proc. of HPCS 2013.

TEA - Enabling THCE on Android devices

Luca Lorrai

1/9/2015 - 31/03/2016

Publications

  1. A. Merlo, L. Lorrai, L. Verderame, “Efficient trusted host-based card emulation on TEE-enabled Android devices”, in Proc. of HPCS 2016.

Building behavioural models for the security analysis of iOS applications

Gianluca Barbera

1/11/2016 - 21/7/2017


A Centralized Approach for the Management of Mobile Code Security Policies

Gabriele De Maglie, Fabio Tollini

9/2012 - 3/2013

Supervisor: Alessandro Armando

Supervisor: Gabriele Costa

Supervisor: Alessio Merlo


Inlined Reference Monitor for Android Platforms

Daniele Fiori, Fabio Brizzolara

9/2012 - 3/2013

Supervisor: Alessandro Armando

Supervisor: Gabriele Costa

Supervisor: Alessio Merlo


EveC: an object-oriented programming language for efficient computation

Luca Roverelli, Gabriele Zereik, Nicolò Zereik

9/2012 - 3/2013

Supervisor: Alessio Merlo

Supervisor: Mauro Migliardi


Energy Optimisation Strategies through Intrusion Prevention Systems

Diego Raso, Elena Spadacini

9/2013 - 3/2014

Supervisor: Alessio Merlo

Supervisor: Mauro Migliardi

Publications

  1. A. Merlo, M. Migliardi, D. Raso, E. Spadacini, “Optimizing Network Energy Consumption through Intrusion Prevention Systems”, in Proc. of CISIS 2014.

  2. A. Merlo, M. Migliardi, E. Spadacini, “Balancing Delays and Energy Consumption in IPS-Enabled Networks”, in Proc. of AINA 2016.

  3. A. Merlo, E. Spadacini, M. Migliardi, “IPS-based reduction of network energy consumption”, in Logic J. of the IGPL (2016).


Energy-Aware Security: Tools and Analytic models to estimate energetic consumption in the Android operating systems

Paolo Fontanelli

10/2013 - 7/2014

Supervisor: Alessio Merlo

Supervisor: Mauro Migliardi

Publications

  1. A. Merlo, M. Migliardi, P. Fontanelli, “On energy-based profiling of malware in Android”, Proc. of HPCS 2014.

  2. A. Merlo, M. Migliardi, P. Fontanelli, “Measuring and estimating power consumption in Android to support energy-based intrusion detection”, J. of Computer Security, 23(5), pp. 611-637 (2015).


Dynamic verification of access permissions in an extension of the Android Security Framework

Giulio Puri

3/2014 - 9/2014

Supervisor: Alessandro Armando

Supervisor: Gabriele Costa

Supervisor: Alessio Merlo

Publications

  1. A. Armando, R. Carbone, G. Costa, A. Merlo, “Android Permissions Unleashed”, in Proc. of CSF 2015.

Development of a framework for Symbolic Partial Model Checking

Marco Malvasio

1/2014 - 12/2014

Supervisor: Alessandro Armando

Supervisor: Gabriele Costa

Supervisor: Alessio Merlo

Publications

  1. A. Armando, G. Costa, A. Merlo, L. Verderame, “Formal modeling and automatic enforcement of Bring Your Own Device policies”, in Int. J. of Information Security, 14(2) 123-140 (2015).

Certifying Android devicesin BYOD environments

Paolo Macco

9/2014 - 3/2015

Supervisor: Giovanni Lagorio

Supervisor: Alessio Merlo

Publications

  1. A. Merlo, “BYODCert - Toward a Cross-Organizational BYOD Paradigm”, in Proc. of GPC 2017.

TEA: Enabling THCE on Android devices

Luca Lorrai

9/2015 - 03/2016

Supervisor: Alessio Merlo

Publications

  1. A. Merlo, L. Lorrai, L. Verderame, “Efficient trusted host-based card emulation on TEE-enabled Android devices”, in Proc. of HPCS 2016.

RiskInDroid: Risk Analysis for Android applications

Gabriel Claudiu Georgiu

3/2016 - 10/2016

Supervisor: Alessio Merlo

Publications

  1. A. Merlo, G. C. Georgiu, “RiskInDroid - Machine Learning-Based Risk Analysis on Android”, in Proc. of IFIP SEC 2017.

Android Malware Detection Using Network Behavior Analysis And Machine Learning Classifiers

Hamidreza Aria

7/2016 - 3/2017

Supervisor: Gabriele Costa


A Framework for Designing Attack Strategies in Cyber Range Scenarios

Hossein Ghodrati

1/2017 - 7/2017

Supervisor: Gabriele Costa


Building behavioural models for the security analysis of iOS applications

Gianluca Barbera

11/2016 - 7/2017

Supervisor: Alessio Merlo