Next CS Seminar addresses privacy leaks from mobile devices, new Northeastern research
Join us Thursday, March 24 for ReCon: Identifying and Controlling Privacy Leaks from Mobile Devices, the second discussion in our Computer Science Seminar Series!
Mobile systems have become increasingly popular thanks in part to their rich sensors and ubiquitous Internet access; however, recent studies demonstrate that software running on these systems extensively tracks and leaks users’ personally identifiable information (PII). David Choffnes argues that these privacy leaks persist in large part because mobile users have little visibility into PII leaked through the network traffic generated by their devices, and have poor control over how, when and where that traffic is sent and handled by third parties.
A research team led by Choffnes, an assistant professor in Northeastern University’s College of Computer and Information Science, has found “extensive” leakage of users’ information—device and user identifiers, locations, and passwords—into network traffic from apps on mobile devices, including iOS, Android, and Windows phones. The researchers have also found a way to stop the flow by developing a cloud-based system, called ReCon, that gives users control of mobile-app information leaks.
ReCon gives you the ability to protect your own privacy: You can set policies to change how your information is being released. —David Choffnes
“Our devices really store everything about us on them: who our contacts are, our locations, and enough information to identify us because each device has a unique identifier number built into it,” says Choffnes. “A lot of network traffic that goes back and forth isn’t protected by encryption or other means. What’s really troubling is that we even see significant numbers of apps sending your password, in plaintext readable form, when you log in.” In a public-WiFi setting, that means anyone running “some pretty simple software” could nab it.
Choffnes will lead an in-depth discussion on the research findings and ReCon on March 24. The Computer Science Seminar Series showcases leading experts to discuss a range of top-of-mind topics. Curated by Director of Computer Science Dr. Ian Gorton, the monthly talks will provide a great opportunity for students and industry to gather in the classroom and network at Northeastern University-Seattle’s campus in South Lake Union. RSVP Here: bit.ly/CSSeminarReCon
Read more about Choffnes and Recon at News @ Northeastern: Researchers develop system to control information leaks from smartphone apps