Discovery Early Career Researcher Award - Grant ID: DE200100016
Funder
Australian Research Council
Funding Amount
$351,798.00
Summary
Enabling Compatible and Secure Mobile Apps via Automated Program Repair. This project aims to ensure everyone in Australia and the world can reliably utilise compatible and secure mobile apps on their smart devices, by inventing a novel approach to automatically fix compatibility and security issues during app development and installation. The project expects to generate new knowledge, tools and methods to support efficient mobile app fix through mining the best practices from the mobile ecosyst ....Enabling Compatible and Secure Mobile Apps via Automated Program Repair. This project aims to ensure everyone in Australia and the world can reliably utilise compatible and secure mobile apps on their smart devices, by inventing a novel approach to automatically fix compatibility and security issues during app development and installation. The project expects to generate new knowledge, tools and methods to support efficient mobile app fix through mining the best practices from the mobile ecosystem. Expected outcomes include better support for app developers to build mobile apps that will maximise the potential of the mobile ecosystem for Australian businesses. This should provide significant benefits, such as enhanced productivity for the software industry and better mobile app experience and safety for users.Read moreRead less
Discovery Early Career Researcher Award - Grant ID: DE190100046
Funder
Australian Research Council
Funding Amount
$387,000.00
Summary
Fortifying our digital economy: advanced automated vulnerability discovery. This project aims to enable security researchers to detect critical vulnerabilities in large software systems with maximal efficiency, cost-effectively, and with known statistical accuracy. The aim is to develop advanced high-performance fuzzers that effectively thwart malware attacks, ransomware epidemics, and cyber terrorism by exposing security flaws before they can commence. The project will employ a well-established ....Fortifying our digital economy: advanced automated vulnerability discovery. This project aims to enable security researchers to detect critical vulnerabilities in large software systems with maximal efficiency, cost-effectively, and with known statistical accuracy. The aim is to develop advanced high-performance fuzzers that effectively thwart malware attacks, ransomware epidemics, and cyber terrorism by exposing security flaws before they can commence. The project will employ a well-established statistical framework utilised in ecology research to provide fundamental insights to boosting the efficiency of software vulnerability discovery, and on the trade-off between investing more resources and gaining better cyber security guarantees. As our reliance on new technologies is ever growing, this project equips Australia to curb cyber crime cost-effectively.Read moreRead less
Secure user authentication with continuous adaptive risk evaluation. Users typically authenticate to any given system only once - when they first access it (for example, through providing a password or fingerprint). The prevalence of single sign-on further allows this single authentication to be sufficient for access to multiple systems. Thus an adversary can obtain a large degree of access from stealing a single password, hijacking a user's session, or even simply borrowing their phone. This pr ....Secure user authentication with continuous adaptive risk evaluation. Users typically authenticate to any given system only once - when they first access it (for example, through providing a password or fingerprint). The prevalence of single sign-on further allows this single authentication to be sufficient for access to multiple systems. Thus an adversary can obtain a large degree of access from stealing a single password, hijacking a user's session, or even simply borrowing their phone. This project aims to develop a continuous authentication approach based on user behaviour - typical interactions plus biometrics (for example, keystroke dynamics) - combined with a risk adaptive assessment of the resources being accessed, resulting in re-authentication requests in the event of a suspected compromise.Read moreRead less
A fast and effective automated insider threat detection and prediction system. Threats from insiders directly compromises the security, privacy and integrity of Australian e-commerce, large databases and communication channels. This project will provide an essential step in combating this criminal activity by developing methods to detect such threats and secure the public's information against exposure and identity theft.