Collin Mulliner

MSc. CS (University of California Santa Barbara, USA)

I'm a PhD student at TU-Berlin / T-Labs working on mobile device/phone security.

Weblog www.mulliner.org/blog.

Index
Contact
Projects
Publications
- Talks and Presentations
Services
Events
Advisories



Research Interests

Mobile and Smart Phone Security including infrastructure (my main focus and hopefully dissertation area)
Vulnerability Analysis
Mobile Malware
Privacy
Embedded Systems Security
Network and Wireless Security (GSM/3G/LTE,WLAN,Bluetooth,RFID/NFC,...)
Operating Systems Security (strong focus on mobile device OSes)
General interests: Mobile Services, Location Based Services, Embedded-Linux, Unified Messaging




Projects

SMS (Short Message Service) Security Research
My SMS Security Research page

iPhone Security
My iPhone Security Research page

SymbianOS Exploitation and Shellcode Development
See my talk on Symbian OS exploitation. My SymbianOS Security Research page

Near Field Communication (NFC) Security
Specific interested in the security of NFC mobile phones. My NFC security projects





Contact

EMail: collin [AT] sec.t-labs.tu-berlin.de
Phone: +49-30-8353-58585 (work phone)
Fax: +49-
Address: Ernst-Reuter-Platz 7, 10593, Berlin, Germany
Room: TEL4, 1115




Publications




Peer Reviewed Papers

• Injecting SMS Messages into Smart Phones for Security Analysis C. Mulliner, C. Miller In the Proceedings of the 3rd USENIX Workshop on Offensive Technologies Montreal, Canada August 2009 PDF, BibTeX entry, Slides


• Vulnerability Analysis and Attacks on NFC-enabled Mobile Phones C. Mulliner In the Proceedings of the 1st International Workshop on Sensor Security (IWSS) at ARES 2009 Fukuoka, Japan March 2009 PDF, BibTeX entry


• Vulnerability Analysis of MMS User Agents C. Mulliner and G. Vigna Proceedings of the Annual Computer Security Applications Conference (ACSAC) Miami, Florida December 2006 PDF, BibTeX entry


• Using Labeling to Prevent Cross-Service Attacks Against Smart Phones C. Mulliner, G. Vigna, D. Dagon, and W. Lee Proceedings of the Conference on Detection of Intrusions and Malware and Vulnerability Assessment (DIMVA) Berlin, Germany July 2006 PDF, BibTeX entry



Book Chapters

• Contribution to Chapter 7. Ken Dunham, Seth Fogie, and others Mobile Malware Attacks and Defense USA November 2008 Amazon


• Kapitel 7. Iomega ZIP-Drive Howto Collin Mulliner Linux HOWTOs: Die besten Loesungen der Linuxgemeinde. (Marco Budde Hrsg.) Germany 1999 Amazon



Tech Reports

• Blueprinting - Remote Device Identification based on Bluetooth Fingerprinting Techniques Martin Herfurt and Collin Mulliner 21st Chaos Communication Congress (21C3) Berlin, Germany December 2004 PDF

Talks and Presentations

• Fuzzing the Phone in your Phone Collin Mulliner 26th Chaos Communication Congress (26C3) Berlin, Germany December 28th 2009 PDF


• Fuzzing the Phone in your Phone Collin Mulliner RSS (Recurity Labs Security Symposium) Berlin, Germany October 27th 2009 PDF


• Sicherheit von mobile Devices: Risiken von iPhone, Android & Co Collin Mulliner TelekomForum Mobilfunktrends 2010 Bonn, Germany September 2009 PDF


• Smart Phone Security from the Attacker's Perspective Collin Mulliner 5th Annual Mobile Device Management and Security Forum Berlin, Germany September 2009 PDF


• Fuzzing the Phone in your Phone Collin Mulliner SEC-T Stockholm, Sweden September 2009 PDF


• Fuzzing the Phone in your Phone Collin Mulliner, Charlie Miller Black Hat USA 2009 Las Vegas, Nevada, USA July 2009 PDF


• Exploiting Symbian Collin Mulliner 25th Chaos Communication Congress (25C3) Berlin, Germany December 2008 PDF


• Attacking NFC Mobile Phones Collin Mulliner 25th Chaos Communication Congress (25C3) Berlin, Germany December 2008 PDF


• Exploiting Symbian Collin Mulliner BlackHat Japan Tokyo, Japan October 9th 2008 PDF


• Mobile Sicherheit Collin Mulliner Intensivseminar Hacking - Angriffe und Abwehrstrategien (Fraunhofer SIT) Darmstadt, Germany September 18th 2008


• NFC-basierte Handy-Bezahlsysteme Collin Mulliner CAST Workshop - SmartCards und Bezahlsysteme Darmstadt, Germany July 24th 2008


• Attacking NFC Mobile Phones Collin Mulliner EUSecWest London, UK May 2008 PDF


• Advanced Attacks Against PocketPC Phones Collin Mulliner SyScan Singapore, Singapore July 2007 PDF(invited)


• Advanced Attacks Against PocketPC Phones Collin Mulliner 23rd Chaos Communication Congress Berlin, Germany December 2006 PDF


• Advanced Attacks Against PocketPC Phones Collin Mulliner DEFCON-14 Las Vegas N.V., U.S.A. August 2006 PDF


• Exploiting PocketPC Collin Mulliner WhatTheHack! The Netherlands July 2005 PDF



Master's Thesis

• Security of Smart Phones Collin Mulliner Master's Thesis University of California Santa Barbara, U.S.A. June 2006 PDF



Services

• Program Committee for 1st International Workshop on Sensor Security (IWSS) at ARES, 2009
• Reviewer for the Annual Computer Security Applications Conference (ACSAC), 2006



Events

• PET Convention 2008.2 Sep. 30th, Darmstadt


updated: Mon Jan 4 10:24:30 CET 2010