BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Hardware and Software Fingerprinting of Mobile Devices - Jiexin (S
 tan) Zhang\, University of Cambridge
DTSTART:20201110T130000Z
DTEND:20201110T140000Z
UID:TALK152128@talks.cam.ac.uk
CONTACT:Jack Hughes
DESCRIPTION:This talk presents novel and practical algorithms to identify 
 the software and hardware components on mobile devices.\n\n* We develop a 
 novel Android library fingerprinting tool\, LibID\, to reliably identify s
 pecific versions of in-app third-party libraries against code obfuscation.
  We demonstrate the utility of LibID by detecting the use of vulnerable Ok
 Http libraries in nearly 10% of the 3\,958 popular apps on Google Play.\n\
 n* We present a new type of device fingerprinting\, the factory calibratio
 n fingerprinting\, that recovers embedded per-device factory calibration d
 ata from motion sensors in a smartphone.\n\n* We show the calibration fing
 erprint is fast to generate\, does not change over time or after a factory
  reset\, can be obtained without any special user permissions\, and is ver
 y likely to be globally unique for iOS devices and recent Google Pixel dev
 ices. Following our disclosures\, Apple deployed a fix in iOS 12.2 and Goo
 gle in Android 11.\n\nRelated URLs:\nhttps://www.cl.cam.ac.uk/~jz448/ \nht
 tps://sensorid.cl.cam.ac.uk/\n\nRECORDING : Please note\, this event will 
 be recorded and will be available after the event for an indeterminate per
 iod under a CC BY -NC-ND license. Audience members should bear this in min
 d before joining the webinar or asking questions.
LOCATION:Webinar
END:VEVENT
END:VCALENDAR