Organizer: CASED, CROSSING and EC SPRIDE
The explosion of smart phones as a vehicle for enterprise and personal computing heightens concerns about security and privacy. Many studies have shown that applications can work against the user's best interests and house new forms of malware. This talk explores the genesis and evolution of efforts in evaluating smartphone application security, and identifies open questions on security in the mobile environment. We explore a broad range of analyses that extract of software structures and behaviors from smartphone application bytecode, and describe several studies that identify potential security and privacy concerns. We further discuss the realities of current mobile apps and markets and identify challenges in preventing misuse of smartphone resources and data.