PRISM: To Fortify Widget Based User-App Data Exchanges Using Android Virtualization Framework Speaker (s):
NG Ying Tat
PhD Candidate,
School of Computing and Information Systems
Singapore Management University
| Date: Time: Venue: | | 7 August 2025, Thursday 2:00pm – 2:30pm Meeting room 4.4, Level 4.
School of Computing and
Information Systems 1,
Singapore Management University,
80 Stamford Road, Singapore 178902 We look forward to seeing you at this research seminar. Please register by 5 August 2025. 
|
|
About the Talk
PRISM is an UI hardening technique for an Android app to safeguard its widgets against a corrupted kernel. PRISM ensures secure interface rendering and allows for visual authentication, which developers could use to enable user intent confidentiality protection. Our design leverages the recent Android Virtualization Framework with minimal changes to the existing UI framework and graphics subsystem. It is much easier to deploy and use PRISM on Android phones than TrustZone-based secure UI schemes, because the apps are not admitted to the Secure World and retain their full rights to manage and control their own interfaces. We implemented a prototype of PRISM and a test app on Google Pixel 7 and assessed its security, usability and performance. The results validated the strength of its security and show unnoticeable latency in most interface operations.
This is a Pre-Conference talk for The 20th ACM ASIA Conference on Computer and Communications Security (ACM ASIACCS 2025).
About the Speaker
Ng Ying Tat is a part-time Ph.D. candidate in Computer Science at the School of Computing and Information Systems, Singapore Management University (SMU), under the supervision of Prof Ding Xuhua. His research interest is in Android and ARM System Security Assisted by Hardware Features.
