Sven Bugiel
  • Home
  • Publications
  • Publications
    • The Power of Words: A Comprehensive Analysis of Rationales and Their Effects on Users’ Permission Decisions
    • Work-in-Progress: Northcape: Embedded Real-Time Capability-Based Addressing
    • Measuring the Effects of Stack Overflow Code Snippet Evolution on Open-Source Software Security
    • A Systematic Study of the Consistency of Two-Factor Authentication User Journeys on Top-Ranked Websites
    • TALUS: Reinforcing TEE Confidentiality with Cryptographic Coprocessors
    • A11y and Privacy don't have to be mutually exclusive: Constraining Accessibility Service Misuse on Android
    • Bringing Balance to the Force: Dynamic Analysis of the Android Application Framework
    • Explanation Beats Context: The Effect of Timing & Rationales on Users' Runtime Permission Decisions
    • Is FIDO2 the Kingslayer of User Authentication? A Comparative Usability Study of FIDO2 Passwordless Authentication
    • Up2Dep: Android Tool Support to Fix Insecure Code Dependencies
    • DroidCap: OS Support for Capability-based Permissions in Android
    • Secure Multi-execution in Android
    • Short Text, Large Effect: Measuring the Impact of User Reviews on Android App Security & Privacy
    • simTPM: User-centric TPM for Mobile Devices
    • Up-To-Crash: Evaluating Third-Party Library Updatability on Android
    • Better managed than memorized? Studying the Impact of Managers on Password Strength and Reuse
    • The Rise of the Citizen Developer: Assessing the Security Impact of Online App Generators
    • ARTist: The Android Runtime Instrumentation and Security Toolkit
    • Keep me Updated: An Empirical Study of Third-Party Library Updatability on Android
    • Seamless In-App Ad Blocking on Stock Android
    • The ART of App Compartmentalization: Compiler-based Library Privilege Separation on Stock Android
    • On Demystifying the Android Application Framework: Re-Visiting Android Permission Specification Analysis
    • R-Droid: Leveraging Android App Analysis with Static Slice Optimization
    • Reliable Third-Party Library Detection in Android and its Security Applications
    • SoK: Lessons Learned From Android Security Research For Appified Software Platforms
    • Boxify: Full-fledged App Sandboxing for Stock Android
    • Android Security Framework: Extensible Multi-Layered Access Control on Android
    • Scippa: System-Centric IPC Provenance on Android
    • Advances in Mobile Security
    • Client-controlled Cryptography-as-a-Service in the Cloud
    • Flexible and Fine-Grained Mandatory Access Control on Android for Diverse Security and Privacy Policies
    • Softer Smartcards: Usable Cryptographic Tokens with Secure Execution
    • Towards Taming Privilege-Escalation Attacks on Android
    • AmazonIA: When Elasticity Snaps Back
    • Practical and Lightweight Domain Isolation on Android
    • Scalable Trust Establishment with Software Reputation
    • Twin Clouds: An Architecture for Secure Cloud Computing (Extended Abstract)
    • Twin Clouds: Secure Cloud Computing with Low Latency
    • Implementing an Application-Specific Credential Platform Using Late-Launched Mobile Trusted Module
    • TruWalletM: Secure Web Authentication on Mobile Platforms
    • Trust in a Small Package: Minimized MRTM Software Implementation for Mobile Secure Environments
  • Experience

A11y and Privacy don't have to be mutually exclusive: Constraining Accessibility Service Misuse on Android

Jan 1, 2021·
Jie Huang
,
Michael Backes
,
Sven Bugiel
· 0 min read
PDF Cite
Type
Conference paper
Publication
31st USENIX Security Symposium (USENIX Security ‘21)
Last updated on May 11, 2021
← TALUS: Reinforcing TEE Confidentiality with Cryptographic Coprocessors Jan 1, 2023
Bringing Balance to the Force: Dynamic Analysis of the Android Application Framework Jan 1, 2021 →

© 2024 Sven Bugiel.

Published with Hugo Blox Builder — the free, open source website builder that empowers creators.