Hundreds of millions of smartphone users are doing multitasking; however, the security implication of Android multitasking remains under-investigated. We find that Android multitasking is plagued by a serious security risk ?task hijacking. In this task, we answer 4 questions: Q1: How many types of task hijacking? Q2: How to craft the individual attacks? Q3: How to assess the vulnerability? Q4: How to defend task hijacking?During the evaluation, we analyzed 6.8 million apps from Google Play and other 12 popular third-party app markets.
Peng Liu, Full Professor of Information Sciences and Technology, Pennsylvania State University. Peng Liu received his B.S. and M.S. degrees from the University of Science and Technology of China, and his Ph.D. degree from George Mason University in 1999. Dr. Liu is a Professor of Information Sciences and Technology, director of the Center for Cyber-Security, Information Privacy, and Trust, and director of the Cyber Security Lab at Penn State. His research interests are in all areas of computer and network security. He has published a book and over 230 refereed technical papers, including many on prestigious conferences and journals. He has received over 8 Best Paper or Best Paper Nomination awards. He has supervised over 20 PhD dissertations to completion. He is the program co-chair of ACM ASIACCS 2010, SECURECOMM 2008, and DBSEC 2006, General Chair of DBSEC 2010 and SECURECOMM 2009, and the founding program co-chair of the ACM Workshop on Survivable and Self-Regenerative Systems. He is a program committee member of over 100 international conferences, including CCS, RAID, and WWW. He is a referee for over twenty journals. He is an associate editor of IEEE Transactions on Dependable and Secure Computing. He is the Editor-in-Chief of ICST Transactions on Security and Safety. He has served on several editorial boards, including Elsevier Computers & Security Journal. Prof. Liu’s research has been sponsored by DARPA, NSF, AFOSR, ARO, DHS, DOE, AFRL, NSA, TTC, CISCO, and HP (In total, he has secured over 16 million US dollars as a PI or Co-PI). From 2009 to 2015, he had served as the overall team PI of a $6.25 million U.S. Dept. of Defense MURI project on Cyber Situation Awareness. Dr. Liu is a recipient of the DOE Early Career Principle Investigator Award. He has co-led the effort to make Penn State a NSA-DHS-certified National Center of Excellence in Information Assurance Education and Research. More information about him can be found at http://ist.psu.edu/s2.