I’m a PhD student in computer science at the University of Maryland, College Park. My research focuses on security for mobile devices using a combination of systems and language based techniques. I’m a member of the PLUM group, advised by Jeffrey Foster. I also routinely collaborate with the rest of the members of the PLUM lab and Michael Clarkson.
Major projects I’ve worked on include:
My most recent work is on visualizing dynamic analysis for Android programs. I built AppTracer, a tool which uses program analysis techniques to visualize logs to help analysts understand security policies of Android apps. We just submitted our paper, User Interactions and Permission Use on Android, that uses AppTracer to measure how user interaction and permission use are related in Android.
GUI based declassification for Android. My work adapts a variant of information flow to check policies of the form “the location is only known after the button is pushed.” We built SymDroid to perform static analysis of Android programs and check our policies.
Temporal Logics for Hyperproperties, which seeks to develop logical foundations for security statements that quantify over multiple executions of a program. This work allows stating a wide variety of statements about program security, such as noninterference and observational determinism.
The Redexer binary rewriter, with Jinseong Jeon and our collaborators. Redexer instruments Dalvik binaries, which we used for finer grained permissions and measuring utility of apps with fuzzed inputs.