M.Sc. Thesis Project (2017-2018)
Project Goals This research focused on protecting user privacy on smartphones by implementing a hybrid encryption system. I prioritized Confidentiality and Integrity using the AES-GCM (Galois/Counter Mode) authenticated encryption.
Why AES-GCM? During my research, I evaluated multiple modes of operation. I chose GCM because:
- It provides both encryption and authentication in a single pass.
- It is highly efficient for mobile hardware with limited resources.
- It prevents "bit-flipping" attacks, ensuring data integrity.
Key Outcomes
- Threat Modeling: Defined threat assumptions for smartphone environments.
- Performance Testing: Analyzed the computational overhead to ensure it doesn't drain battery or slow down the UI.
- Security Verification: Documented failure cases and security property reasoning