Skip to main content.
Android Security Lab
Full-day course (“Blockveranstaltung”) in Winter Term 2014/2015

Sven Bugiel
Presentations at the end of the course.
Kick-off Meeting
Monday, 6th October from 9:30AM - 11:30AM, E1.1 Room 2.06
Lecture period
Monday, 6th October to Friday, 17th October, each day from 9:30AM - 4:30PM in E1.1 Room 2.06
Project period
Monday, 20th October to Friday, 14th November (independent work)
Presentation Session

Latest News


In this practical course, the students deal with different aspects of smartphone security at the example of the open-source Android OS. In general, the awareness and understanding of the students for security and privacy problems in the area of smartphones is increased and they learn how to extend Android with new security features to tackle current security and privacy issues.

The course is split into two parts:

The project tasks specifically target the open-source Android OS and include the following areas:

Exemplary project topics:


The official registration for the seminar will occur at the kick-off meeting. The students are encouraged to pre-register before this initial meeting by sending an e-mail to Pre-registration is not binding and is no longer necessary for the students who have already contacted us regarding the course (this effectively counts as pre-registering). For your final registration you have to show up in the kick-off meeting. Places for the final registration will be provided in the order of pre-registration until all places are taken.

The tasks are solved in teams of 2 students. Thus, please indicate in your mails who your partners are!

Please note that the number of participants is limited to 12!


There are no formal requirements for participation. Students who want to participate in the course should

Actual programming experience on Android or at OS-level is not a prerequisite, but definitively an advantage.

Requirements for obtaining credit points (Scheinvergabe)

The programming tasks are solved in teams of 2 students. Each team has to choose one topic, either from a given list or propose their own topic, and work on this topic during the second half of the course. At the end of the course a final report (PDF, 8-10 pages) as well as the source code of the project work has to be submitted. Morever, a concluding lab-session is held in which every team has to shortly present its work and results.

Participation in the kick-off meeting and all the lecture sessions during the first half of the course is required for obtaining the credit points!

Project catalogue

The proposed project topics and instructions to writing the final report/handing in your solution can be found in this document.

Lecture Sessions

All lecture sessions take place 9:30AM-4:30PM in E1.1 Room 2.06. For the independent project work, the students can use their own resources (laptop, workstation) or the machines provided in E1.1 Room 2.06.

List of references for the slides can be downloaded here.

Date 9:30AM - 12:00PM 2:00PM - 4:30PM
2014-10-06 Lecture: Organisational matters and motivation
Lecture: Application layer
Lecture: Secure Architecture Principles and Android Security Architectur
2014-10-07 Exercise 1: Basic application programming Exercise 2: Android Permission System
2014-10-08 Lecture: Android Insecurity Exercise 2: Android Permission System (continued)
2014-10-09 Lecture: Selected security extensions Exercise 3: Extending the Android middleware
2014-10-10 Exercise 3: Extending the Android middleware (continued) Optional slots
2014-10-13 to 2014-10-17 Supervised project: Access control based domain isolation on Android
Alternative project:Secure inter-app communication