Chasing Telephony Security: Where the Wild Things... Are?
Mobile phones are now used by over five billion people, making them the dominant computing platform around the world. This shift has not gone unnoticed - malicious behavior targeting mobile devices has recently been one of the most popular security topics in both academic circles and the popular press. However, the extent to which such threats are actually present in user devices is not well understood. This talk begins with the first study trying to establish ground truth of mobile malware in a major US cellular provider and offers insight into the reality of such threats. I then focus on the recent surge in Caller-ID spoofing and associated attacks, and discuss a mechanism to detect such attacks.
Bio: Patrick Traynor is an Assistant Professor in the College of Computing at Georgia Tech. His research focuses on the security of mobile systems, with a concentration on telecommunications infrastructure and mobile devices. His research has uncovered critical vulnerabilities in cellular networks, made the first characterization of mobile malware in provider networks and offers a robust approach to detecting and combatting Caller-ID scams. He is also interested in Internet security and the systems challenges of applied cryptography. Professor Traynor earned his Ph.D and M.S. in Computer Science and Engineering from the Pennsylvania State University in 2008 and 2004, respectively, and his B.S. in Computer Science from the University of Richmond in 2002. He is currently a member of the Georgia Tech Information Security Center (GTISC) and a co-director of the Converging Infrastructure Security Laboratory (CISEC). He is also a co-founder of Pindrop Security.