My work demonstrated how domain isolation policies can be enforced via mandatory access control extensions to the Android application framework and underlying Linux kernel. It further proposed an extension to Android’s Binder IPC to support policy enforcement with message provenance information.
Master of Science in Engineering, Security and Mobile Computing
Royal Institute of Technology (KTH), Stockholm, Sweden / Technical University of Denmark (DTU), Copenhagen, Denmark
Student in the European NordSecMob Erasmus Mundus Master’s Programme in Security and Mobile Computing. My thesis, written at as a research intern at Nokia Research, demonstrated how measurements by authenticated boot can be combined with late‑launch (DRTM) by the Trusted Computing Group to bind credentials to applications.