杜小江教授学术报告会(学萃讲坛第560期)

时间:2016-12-18作者:科技办文章来源:计算机科学与技术学院浏览:3009

学萃讲坛秉承学名家风范、萃科技精华的理念,以学术为魂,以育人为本,追求技术创新,提升学术品位,营造浓郁学术氛围,共品科技饕餮盛宴

间: 20161219日上午1000

点: 21#426

题:  Analysis of Clickjacking Attacks and An Effective Defense Scheme for Android Devices

报告人:杜小江教授

主办单位:科学技术研究院

承办单位:计算机科学与技术学院

报告简介:Smartphones bring users lots of convenience by integrating all useful functions people may need. While users are spending more time on their phones, have they ever questioned of being spoofed by the phone they are interacting with? This paper conducts a thorough study of the mobile clickjacking attacks. We first present how the clickjacking attack works and the key points to remain undiscovered. Then, we evaluate its potential threats by exploring the feasibility of launching clickjacking attacks on various UIs, including system app windows, 3rd-party app windows, and other system UIs. Finally, we propose a system-level defense scheme against clickjacking attacks on Android platform, which requires no user or developer effort and is compatible with existing apps. The performance of the countermeasure is evaluated with extensive experiments. The results show that our scheme can effectively prevent clickjacking attacks with only a minor impact to the system.

报告人简介:杜小江现任美国天普大学(Temple University )计算机系的终身教授。他从清华大学获得学士,硕士学位,从美国马里兰大学获得博士学位。杜博士的研究方向主要包括无线系统安全、物联网安全、计算机网络安全、和无线网络与通信等。他在无线系统安全、计算机通信和在异构传感器网络等方面做出了开创性的研究。杜博士在Springer出版专著一本. 目前已在国际顶级期刊和会议上发表论文190多篇,其中SCI收录70余篇和EI收录190余篇,其中三篇文章获得了国际会议的最佳论文奖。是三个国际期刊的编委,多次担任过IEEE/ACM国际会议的主席,并多次在国际学术会议作特邀报告。多次参加美国科学基金会的科研项目书评审会。杜博士已经获得超过5百万美元的科研经费。他已经主持/承担了16项美国政府的科研项目,其中7项是由美国国家科学基金会资助,3项是由美国陆军研究局资助, 2项是由美国空军研究局资助. 杜博士目前是IEEE高级会员(Senior Member),以及ACM终身会员(Life Member)