UC Riverside

Mobile devices have become increasingly powerful and popular.

The number of mobile users is growing fast and people use their phone nowadays for a plethora of things (e.g., e-commerce, mobile

banking, e-mail, social, etc). While powerful mobile devices are more convenient for users, the volume and sensitivity of information they contain are crucial

to a user's privacy as well as her security. Sometimes the latter is taken for granted (wrongly).

In this dissertation, we propose three major frameworks to protect users' privacy and security on such mobile and highly capable platforms. The three frameworks

are as follows.

VideoDroid, an Android framework that allows users to conduct video calls on open Wi-Fi networks while preserving their privacy and minimizing the performance penalties.

Droid M+, an Android framework that helps developers transform their legacy apps to apps that support

the newer revocable permission model that was introduced by Google to help users' privacy.

RootExplorer, a fully automated system that is able to detect malware carrying root exploits by leveraging root exploits from commercial

one-click root apps to learn the exploits’ behaviors and their expected environment.