Learn More
Mobile application markets such as the Android Marketplace provide a centralized showcase of applications that end users can purchase or download for free onto their mobile phones. Despite the influx of applications to the markets , applications are cursorily reviewed by marketplace maintainers due to the vast number of submissions. User policing and(More)
—Many open-source projects land security fixes in public repositories before shipping these patches to users. This paper presents attacks on such projects—taking Firefox as a case-study—that exploit patch metadata to efficiently search for security patches prior to shipping. Using access-restricted bug reports linked from patch descriptions, security(More)
  • 1