Benjamin Eric Andow

Computer Science PhD Student at North Carolina State University

Email: beandow@ncsu.edu | Website: benandow.com | Github: benandow

Education

North Carolina State University, Raleigh, NC
Ph.D., Computer Science, 2013-present
Advisor: Dr. William Enck

Cleveland State University, Cleveland, OH
B.S., Computer and Information Science, Minor in Mathematics, May 2013
Mentor: Dr. Haodong Wang

Academic and Research Appointments

Graduate Research Assistant, North Carolina State University, 2013 - present
Advisor: Dr. William Enck
My research focuses on the design and analysis of security and privacy mechanisms in mobile devices. In general, both security mechanisms and program analysis techniques fail to consider what actions users expect to occur within applications. My research seeks to bridge the semantic gap between program behavior and user expectations by using a mixture of program analysis techniques, natural language processing, and text analytics as a proxy for user expectations. Overall, my research aims to apply these analysis techniques to the security domain to allow a system to autonomously make informed security decisions.

Undergraduate Research Assistant, Cleveland State University, Jan. 2013 - May 2013
Mentor: Dr. Haodong Wang
Designed and implemented a reference monitor in the Android middleware to enforce dynamic data-centric security policy enforcement, sensitive data classification, and propagation control.

Teaching Assistant, Cleveland State University, Aug. 2012 - Dec. 2012
Instructor: Dr. Allan Waren
Provided hands-on aid for CIS424/524, a senior-level undergraduate and graduate-level course on programming language paradigms.

Undergraduate Research Assistant, Cleveland State University, Summer 2012
Mentor: Dr. Haodong Wang
Designed and implemented a mobile application and a secure application-layer communication protocol to transfer medical records to mobile devices.

Industrial Experience

Research Intern, IBM T.J. Watson Research Center, Yorktown Heights, NY, Summer 2016
Mentors: Kapil Singh and Heqing Huang

Research Intern, Hewlett-Packard Laboratories, Palo Alto, CA, Summer 2014
Mentor: Souvik Sen
Designed and implemented a Wi-Fi radio power management system on Android based on user consumption behaviors, which entailed Linux kernel modifications and Android middleware modifications.

Publications

Conference

Benjamin Andow, Akhil Acharya, Dengfeng Li, William Enck, Kapil Singh, and Tao Xie. UiRef: Analysis of Sensitive User Inputs in Android Applications, Proceedings of the ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec), July 2017. Boston, MA, USA.

Adwait Nadkarni, Benjamin Andow, William Enck, and Somesh Jha. Practical DIFC Enforcement on Android, Proceedings of the USENIX Security Symposium, August, 2016. Austin, TX, USA.

Wei Yang, Xusheng Xiao, Benjamin Andow, Sihan Li, Tao Xie, and William Enck. Appcontext: Differentiating Malicious and Benign Mobile App Behaviors Using Context, Proceedings of the International Conference on Software Engineering (ICSE), May, 2015. Firenze, Italy.

Journal

Rui Shu, Peipei Wang, Sigmund A. Gorski III, Benjamin Andow, Adwait Nadkarni, Luke Deshotels, Jason Gionta, William Enck, and Xiaohui Gu. A Study of Security Isolation Techniques, ACM Computing Surveys (CSUR), 49(3), December, 2016.

Workshop

Benjamin Andow, Adwait Nadkarni, Blake Bassett, William Enck, and Tao Xie. A Study of Grayware on Google Play, Proceedings of the IEEE Mobile Security Technologies Workshop (MoST), May, 2016. San Jose, CA, USA.

Patents

Pending

WO Patent App. PCT/US2015/012908, Regulating a power consumption state of a cellular radio, Souvik Sen, Benjamin Andow, Jan. 26, 2015.

Presentations

UiRef: Analysis of Sensitive User Inputs in Android Applications, at the ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec), Boston, MA, USA, July 2017.

A Study of Grayware on Google Play, at the IEEE Mobile Security Technologies Workshop (MoST), San Jose, CA, USA, May 2016.

Smart Isolation, at the Science of Security Community Forum, North Carolina State University, Raleigh, NC, USA, October 2014.

Professional Service

Program Chair

IEEE Mobile Security Technologies Workshop (MoST), 2017.

Web Chair

IEEE Symposium on Security and Privacy, 2018.

Reviewer

The USENIX Security Symposium, 2015;

The International Symposium on Research in Attacks, Intrusions and Defenses (RAID), 2015;

ISOC Network and Distributed System Security Symposium (NDSS), 2016, 2017, 2018;

ACM Conference on Data and Application Security and Privacy (CODASPY), 2016;

ACM Conference on Computer and Communications Security (CCS), 2016;

Annual Computer Security Applications Conference (ACSAC), 2016;

ACM CCS Workshop on Security and Privacy in Smartphones and Mobile Devices(SPSM), 2016;

ACM CCS Workshop on Artificial Intelligence and Security (AISec), 2016;

ACM Transactions on Privacy and Security (TOPS), 2017.

Awards & Achievements

ACM Student Travel Award (ACM WiSec 2017).

IEEE Student Travel Award (IEEE S&P 2016).