Titulo Estágio
Mobile Forensics on Android
Áreas de especialidade
Comunicações, Serviços e Infraestruturas
Local do Estágio
Rua Dom João de Castro, N° 12 3030-384 Coimbra, Portugal
Enquadramento
Nowadays mobile devices are vulnerable to diverse attacks that put in risk user privacy. On the other hand, security mechanisms are in place for networks, for end host devices (e.g. workstations, servers), through Network Intrusion Detection Systems (NIDS) and Host Intrusion Detection Systems (HIDS), respectively. These systems handle the detection of intrusion events, and other types of attacks. Moreover, these can be configured with policies to react to such events. While these security systems are in place for network devices and personal computers, there is a clear lack for such systems in mobile devices running android or iOS.
Mobile Forensics includes collection and analysis processes [1] that aim to detect the presence of malware, the escalation of privileges when unsolicited (i.e root access), identify the user behavior pattern.
Objetivo
The collection and analysis of Mobile Forensics should be performed considering user privacy as well as the energy overload that may be caused on mobile devices due to the limited computational and resource capabilities [2]. An effective protection must privilege live acquisition methods in mobile forensics and an integrated solution with Network and Host IDSes.
The goal of this work will be to explore mechanisms and algorithms to make an integrated solution for IDS and Mobile Forensics in Mobile devices running android. Upon completion of a working prototype, the student will be required to perform experimentation in order to evaluate the performance of the implemented solution.
This experimentation will also be validated in the context of the SALUS.
[2] Konstantina et al. “Mobile Forensics for PPDR Communications: How and Why”, proc. ICCWS15, 2015.
Plano de Trabalhos - Semestre 1
1) Study of IDS concept and Mobile Forensics.
Starting date: September 2015
Estimated duration: 1 month
2) Elaborating the state of the art on Mobile Forensics and IDS on mobile devices.
Starting date: September 2015
Estimated duration: 2 months
3) Proposal of the system architecture and related algorithms.
Starting date: October 2015
Estimated duration: 2 months
4) Implementation of the proposed system and integration with the security architecture of SALUS.
Starting date: November 2015
Estimated duration: 3 months
Plano de Trabalhos - Semestre 2
5) Experimentation and validation in a test bed environment.
Starting date: January 2016
Estimated duration: 1 month
6) Experimentation and validation with several users and different types of attacks.
Starting date: February 2016
Estimated duration: 2 months
7) Analyzing the obtained results and writing the final report.
Starting date: March 2016
Estimated duration: 2 months
Condições
The student will have a dedicated place in the premises of the entreprise.
The student will have access to Android devices and to servers to perform tests and and implementation of the designed solution.
The student will have the colaboration of a motivated team.
Orientador
Bruno Sousa
bmsousa@onesource.pt 📩