Teaching Android Mobile Security

Jean-François Lalande , Valérie Viet Triem Tong , Pierre Graux , Guillaume Hiet , Wojciech Mazurczyk , Habiba Chaoui , Pascal Berthomé


At present, computer science studies generally offer courses addressing mobile development and they use mobile technologies for illustrating theoretical concepts such as operating system, design patterns, and compilation because Android and iOS use a large variety of technologies for developing applications. Teaching courses on security is also becoming an important concern for academics, and the use of mobile platforms (such as Android) as supporting material is becoming a reasonable option. In this paper, we intend to bridge a gap in the literature by reversing this paradigm: Android is not only an opportunity to learn security concepts but requires strong pedagogical efforts for covering all the aspects of mobile security. Thus, we propose teaching Android mobile security through a two-dimensional approach. The first dimension addresses the cognitive process of the Bloom taxonomy, and the second dimension addresses the technical layers of the architecture of the Android operating system. We describe a set of comprehensive security laboratory courses covering various concepts, ranging from the application development perspective to a deep investigation of the Android Open Source Project and its interaction with the Linux kernel. We evaluated this approach, and our results verify that the designed security labs impart the required knowledge to the students.
Author Jean-François Lalande - National Center for Scientific Research (CNRS), University Orléans [Institut de Recherche en Informatique et Systèmes Aléatoires]
Jean-François Lalande,,
, Valérie Viet Triem Tong - National Center for Scientific Research (CNRS)
Valérie Viet Triem Tong,,
, Pierre Graux - National Center for Scientific Research (CNRS) [Institut de Recherche en Informatique et Systèmes Aléatoires]
Pierre Graux,,
, Guillaume Hiet - National Center for Scientific Research (CNRS) [Institut de Recherche en Informatique et Systèmes Aléatoires]
Guillaume Hiet,,
, Wojciech Mazurczyk (FEIT / IT)
Wojciech Mazurczyk,,
- The Institute of Telecommunications
, Habiba Chaoui - Université Ibn-Tofail (UIT) [Université Ibn Tofail]
Habiba Chaoui,,
, Pascal Berthomé - Institut National des Sciences Appliquees (INSA) [LIFO]
Pascal Berthomé,,
Publication size in sheets0.5
Book Proceedings of 50th ACM Technical Symposium on Computer Science Education, 2019, Association for Computing Machinery, ISBN 978-1-4503-5890-3, 500 p.
Keywords in EnglishApplied computing, Education; Security and privacy, Mobile platform security; Software security engineering; Software reverse engineering teaching, mobile, security
URL https://dl.acm.org/citation.cfm?doid=3287324.3287406
Languageen angielski
2019 Mazurczyk Teaching Android Mobile Security.pdf 1.44 MB
Score (nominal)140
ScoreMinisterial score = 140.0, 04-10-2019, ChapterFromConference
Publication indicators Scopus Citations = 0
Citation count*
Share Share

Get link to the record

* presented citation count is obtained through Internet information analysis and it is close to the number calculated by the Publish or Perish system.