Eleonora Losiouk
- Personal Information
- Google Scholar
- Scopus
- elosiouk[at]math.unipd.it
- eleonora.losiouk
- Room 530, Dipartimento di Matematica, Via Trieste 63, 35121 Padova, Italy
Course Information:
Language: The course and the exam will be in English.
Credits: 6 CFU.
Lectures mode:
- Before the lecture, the teacher publishes a recorded video illustrating the topics of the incoming lecture. Students have to see the video before attending the lecture.
- At the start of the lecture, the teacher releases a brief questionnaire to check if the students have understood the main concepts described in the recorded lecture. The questionnaire is administered through the Moodle platform. The teacher, then, answers to any doubt or question.
- The teacher identifies the working groups by choosing the members of each group (the groups will be different for every new assignment) and releases the new assignment. Even though all the groups are encouraged to solve
the assignment, the teacher selects the group that is supposed to solve it and to illustrate the solution to the other groups by giving a presentation.
- During the next lecture, the selected group presents its solution and answers to questions from the teacher or from the other students. If the teacher is satisfied by the performance of the group, each member of the group receives a bonus which will be summed up with the grade obtained during the final exam.
The course is very practical and it requires a high participation from the students. Thus, even if not mandatory, the participation in the class is strongly recommended to benefit from the interaction with other students and the teachers.
Schedule: II semester (course schedule is published HERE).
Slack Group: Students enrolled for this course are invited to join THIS Slack group.
Course Content:
"Mobile Security" is a hands-on course.
The exercises are in the format of Capture The Flag (CTF) challenges: the student is asked to solve a problem and to find the "flag", which is nothing more than a string located somewhere.
Topics of the course are the following ones:
- Internal architecture of the Android Operating System.
- Mobile app components (Activity, Service, Content Provider, Broadcast Receiver).
- Mobile app analysis techniques.
- Mobile app reverse engineering techniques.
- Mobile app vulnerability assessment.
- Static and dynamic analysis techniques for mobile apps.
- Mobile app vulnerability exploitation.
It is highly recommended to have background knowledge on any object-oriented programming language (e.g., Java).
Knowledge about cybersecurity fundamentals (e.g., cryptography, access control, authentication) can be helpful, but is not mandatory.
Grading Criteria:
The final exam will be a set of multiple choice questions covering all the topics of the course.
The exam will have 33 points among which:
- 18 points achievable through theoretical questions (very likely 18 questions, each one associated to a single point)
- 15 point achievable through practical questions (5 questions, each one weighting 3 points)
The bonus cumulated through the participation during the semester will be summed to the grade obtained at the exam.
Since the participation is not mandatory, a student can get the maximum grade (i.e., 30L) even without attending the course.