Mobile Platform Security
Analyzing mobile platform mechanisms — attestation, authorization, and the APIs apps rely on — to expose weaknesses and design safer defaults.
Research Scientist
I work on system and application security — with an emphasis on mobile platforms, AI, and IoT devices — and on how end-users and developers interact with the systems they rely on.
Research Scientist II at the CyFI Lab, Georgia Institute of Technology. Open to collaboration on cybersecurity, AI, trust, privacy, and policy.
I build tools and conduct analyses to understand — and improve — the security of the devices people use every day.
Analyzing mobile platform mechanisms — attestation, authorization, and the APIs apps rely on — to expose weaknesses and design safer defaults.
Studying how connected devices ship, update, and verify firmware — and the attack surface that opens when those pipelines go wrong.
Studying the security of AI-driven systems and using learning-based techniques to analyze software and its behavior at scale.
Understanding how developers and end-users interact with mobile technology, and how those interactions can be leveraged to improve security.
Peer-reviewed work at top security and mobile systems venues. Full list on Google Scholar.
Vulnerabilities I've discovered and responsibly disclosed.
Always happy to talk about security research, AI, and potential collaborations.
mibrahim@gatech.edu