Kai Qian,Hossain Shahriar,Fan Wu,Lixin Tao,Prabir Bhattacharya

DOI: https://doi.org/10.1145/3059009.3072983

2017-01-01

Abstract:This poster addresses the needs of pedagogical learning materials for Secure Mobile Software Development(SMSD) education and challenges of building SMSD capacity. In this poster, we present an innovative authentic learning approach for SMSD through real-world-scenario case studies. The primary goal of this learning approach is to create an engaging and motivating learning environment that encourages students in learning emerging security concepts and practices such as mobile software developments. It provides students with hands-on laboratory practices on real-world mobile app developments and security. Each module consists of a series of progressive sub-labs: a pre-lab, lab activities, and a student add-on post-lab. The preliminary feedback from students is positive. Students have gained hands-on real world experiences on mobile security with Android mobile devices, which also greatly promoted students' self-efficacy and confidences in their mobile security learning.

Lixin Tao,Kai Qian,Dan Lo,Reza M. Parizi,Fan Wu,Bei-Tseng Chu

DOI: https://doi.org/10.1109/secon.2018.8478813

2018-01-01

Abstract:While the mobile applications are increasing dramatically, the mobile security threat landscape is also growing explosively. The malicious malware may attack vulnerable mobile apps to get personal or enterprise confidential data anywhere and anytime. Most vulnerabilities should be addressed and fixed in the early stage of mobile software development. However, many development professionals lack the awareness of the importance of security vulnerability and the necessary secure knowledge and skills at the development stage. Also, secure software development is still a relatively weak area and is not well represented in most schools' computing curriculum. This poster addresses the needs and challenges of the lack of pedagogical materials and real world learning environment in Secure Mobile Software Development (SMSD) through effective, engaging, and investigative authentic learning approaches.

Kai Qian,Dan Lo,Reza Parizi,Fan Wu,Emmanuel Agu,Bei-Tseng Chu

DOI: https://doi.org/10.1109/fie.2018.8659217

2018-01-01

Abstract:As mobile computing is now becoming more and more popular, the security threats to mobile applications are also growing explosively. Mobile app flaws and security defects could open doors for hackers to break into them and access sensitive information. Most vulnerabilities should be addressed in the early stage of mobile software development. However, many software development professionals lack awareness of the importance of security vulnerability and the necessary security knowledge and skills at the development stage. The combination of the prevalence of mobile devices and the rapid growth of mobile threats has resulted in a shortage of secure software development professionals. Many schools offer mobile app development courses in computing curriculum; however, secure software development is not yet well represented in most schools' computing curriculum. This paper addresses the needs of authentic and active pedagogical learning materials for SSD and challenges of building Secure Software Development (SSD) capacity through effective, engaging, and investigative approaches. In this paper, we present an innovative authentic and active SSD learning approach through a collection of transferrable learning modules with hands-on companion labs based on the Open Web Application Security Project (OWASP) recommendations. The preliminary feedback from students is positive. Students have gained hands-on real world SSD learning experiences with Android mobile platform and also greatly promoted self-efficacy and confidence in their mobile SSD learning.

Wanqing You,Kai Qian,Dan Chia-Tien Lo,Prabir Bhattacharya,Wei Chen,Tamara Rogers,Chern,Junfeng Yao

DOI: https://doi.org/10.1109/isecon.2015.7119924

2015-01-01

Abstract:It is of vital importance to provide mobile computing and security education to students in the computing fields. As the mobile applications become increasingly popular and inexpensive ways for people to communicate, share information and take advantage of convenient functionality in people's daily lives, they also regularly attract the interests of malicious attackers. Malware and spyware that may damage smart phones or steal sensitive information are also growing in every aspect of people's lives. Another concern lies in insecure mobile application development. This kind of programming makes mobile devices more vulnerable. For example, some insecure exposures of the APIs or the abuse of some components while developing apps will make the applications suffer from potential threats. Although many academic institutions have started to or planned to offer mobile computing courses, there is a shortage of hands-on lab modules and resources that can be integrated into multiple existing computing courses. In this paper, we present our development on mobile computing and security hands-on Labs and share our experiences in teaching courses on mobile computing and security with students' learning feedback using Android mobile devices.

Wei Dong

DOI: https://doi.org/10.4028/www.scientific.net/amm.543-547.2884

2014-01-01

Applied Mechanics and Materials

Abstract:The last few years has seen a massive growth of applications for smart phone operating systems such as Android, IOS. Short message services (SMS) is one of them. Although SMS as an application has existed for a long time, the method for managing short messages is rather outdated and very inconvenient. The is partially because most of the SMS applications are inherited from old fashioned mobile platforms, in which users of mobile phone usually concentrate on basic phone service and demand less for SMS. With the introduction of smart phone operating system, the old-fashioned method of short messages management is not suitable. To cope with this problem, in this paper we first conduct research on modern ways of short messages management, and then a short message services management system for mobile devices is designed. In this new system, more advanced options, such as messages query by date, by sender and sending a message to many receivers at the same time, for short messages is provided. Moreover, to validate our research and design, we implement the system based on Android platform. And we conduct some experiments with this system and test results shows that our system works quite well. With the mobile Internet becoming increasingly important to life, our research is expected to improve work efficiency greatly.

Kai Qian,Dan Chia-Tien Lo,Hossain Shahriar,Lei Li,Fan Wu,Prabir Bhattacharya

DOI: https://doi.org/10.1109/FIE.2017.8190716

2017-01-01

Abstract:As mobile computing is becoming more and more popular, the security threats to mobile applications are simultaneously increasing explosively. Most malicious activities hack the user's private information, such as contact and location information, hijack the user's transactions and communications, and exploit the confidential enterprise data stored in mobile databases or in cache on mobile devices. Database security is one of the most important security areas to be addressed. Many schools are integrating database security topics into database and cybersecurity education. This paper addresses the needs for pedagogical learning materials for database security education and the challenges of building database security capacity through effective, engaging, and investigative learning approaches, through transferrable and integratable mobile-based learning modules with hands-on companion labs based on the OWASP recommendations, such as input validation, data encryption, data sharing, auditing, and others. The primary goal of this learning approach is to create a motivating learning environment that encourages and engages all students in database security concepts and practices learning. The preliminary feedback from students was positive. Students gained hands-on real world learning experiences on Mobile Database Security (MDS) with Android mobile devices, which also greatly promoted students' self-efficacy and confidence in their mobile security learning.

Michael Whitney,Heather Richter Lipford,Bill Chu,Jun Zhu

DOI: https://doi.org/10.1145/2676723.2677280

2015-01-01

Abstract:Many of the security vulnerabilities common in today's software can be prevented with standard secure coding practices. Computer science students who will become the developers of that software need to learn about those practices so they can prevent such vulnerabilities. Many computing programs are addressing this need through additional lectures, elective courses, or more holistic approaches to integrate security across curriculums. We are exploring a complementary approach, integrating secure coding education into the IDE to provide a learning opportunity in the context of writing code. In this paper, we report on two field studies using an IDE tool in an advanced Web programming course. Our results indicate that the tool can increase students' awareness and knowledge of secure programming, but to be most effective, instructors may need to incentivize its use through in-class methods and careful timing of its introduction.

Kai Qian,Chia-Tien Dan Lo,Yi Pan,Yanqing Zhang,Xiaolin Hu,Liang Hong

DOI: https://doi.org/10.1109/icalt.2012.19

2012-01-01

Abstract:Advanced mobile devices such as smartphones have become a part of daily lives for digital native students today. We believe that the integration of mobile computing into computer science (CS) curricula with smart mobile devices based learning tools will connect the education to leading-edge information technologies, motivate and engage students in CS learning, innovate CS education, fill in the gap between academia and industry, and help faculty build strong expertise on modern mobile computing. Meanwhile, the hands-on experience with mobile computing will promote student learning with a better understanding of the fundamental CS concepts. In this paper, we propose to design and develop a labware based on Android-enabled smartphones to introduce mobile computing knowledge and practice into the CS curriculum, covering a wide range of CS subjects.

Xianyong Meng,Kai Qian,Dan Lo,Prabir Bhattacharya,Fan Wu

DOI: https://doi.org/10.1109/isncc.2018.8531071

2018-01-01

Abstract:The security threats to mobile application are growing explosively. Mobile app flaws and security defects could open doors for hackers to easily attack mobile apps. Secure software development must be addressed earlier in the development lifecycle rather than fixing the security holes after attacking. Early eliminating against possible security vulnerability will help us increase the security of our software, and militate the consequence of damages of data loss caused by potential malicious attacking. However, many software developer professionals lack the necessary security knowledge and skills at the development stage and Secure Mobile Software Development (SMSD) is not yet well represented in current computing curriculum. In this paper we present a static security analysis approach with open source FindSecurityBugs plugin for Android Studio IDE. We categorized the common mobile vulnerability for developers based on OWASP mobile security recommendations and developed detectors to meet the SMSD needs in industry and education.

Hossain Shahriar,Kai Qian,Atef Shalan,Fan Wu

DOI: https://doi.org/10.1109/COMPSAC48688.2020.0-123

2020-01-01

Abstract:While the number of mobile and web applications is growing exponentially, the mobile and web security threat landscape is growing explosively. Malicious malware may attack vulnerable applications and obtain personal or enterprise confidential data anywhere and anytime. Most vulnerabilities should be addressed and fixed during the early stages of software development. However, many software development professionals lack the awareness of the importance of security vulnerabilities and the necessary knowledge and skills at the software development stage. This paper addresses the needs and challenges of the lack of pedagogical materials and real-world learning environment in ProActive Control for Software Security (PASS) through effective, engaging, and investigative authentic learning approaches.

Moumita Majumder,Sumit Dhar

DOI: https://doi.org/10.48550/arXiv.1003.5631

2010-03-30

Abstract:Wireless data communications in form of Short Message Service (SMS) and Wireless Access Protocols (WAP) browsers have gained global popularity, yet, not much has been done to extend the usage of these devices in electronic learning (e-learning) and information sharing. This project explores the extension of e learning into wireless/ handheld (W/H) computing devices with the help of a mobile learning (m-learning) framework. This framework provides the requirements to develop m-learning application that can be used to share academic and administrative information among people within the university campus. A prototype application has been developed to demonstrate the important functionality of the proposed system in simulated environment. This system is supposed to work both in bulk SMS and interactive SMS delivery mode. Here we have combined both Short Message Service (SMS) and Wireless Access Protocols (WAP) browsers. SMS is used for Short and in time information delivery and WAP is used for detailed information delivery like course content, training material, interactive evolution tests etc. The push model is used for sending personalized multicasting messages to a group of mobile users with a common profile thereby improving the effectiveness and usefulness of the cntent delivered. Again pull mechanism can be applied for sending information as SMS when requested by end user in interactive SMS delivery mode. The main strength of the system is that, the actual SMS delivery application can be hosted on a mobile device, which can operate even when the device is on move.

Other Computer Science

Tianzhou Chen,Qingsong Shi,Xueqing Lou,Wei Hu

DOI: https://doi.org/10.1109/mesa.2010.5552093

2010-01-01

Abstract:Mobile phones have been popular personal devices in recent years. They are used not only the communication tools but also an integrated platform with the support from powerful hardware. Rich applications are also provided for mobile phones. The problem of software development becomes more acute with the great advance of mobile phones and the applications. It is also a challenge on how to teach software development for mobile phones to the students. The operating system and the related APIs (Application Programming Interfaces) play an important role in this issue. In this paper, we describe a case study of course design for software development on mobile phones. We select OMS (Open Mobile System) and its APIS as the basic development system. The students can master the basic skills in mobile software programming. And our design can also connect the education with the needs of the industry.

Zhaoshuo Jiang,Chengyin Liu,Alec Maxwell

DOI: https://doi.org/10.21125/iceri.2016.2160

2016-01-01

Abstract:Learning style changes from generation to generation. The current and incoming tech-savvy learners grow up with the digital world. The advancement of technologies makes learning more accessible. As one of the examples, mobile learning has become a commonly accepted and embraced concept among the younger generations. Effective learning occurs when the teaching styles align well with the learning styles. To better serve the need of the next-generation learners, a mobile learning module consisted of three components, namely numerical analysis, simulation and experiment, is developed for an undergraduate upper division class, Mechanical and Structural Vibration, at San Francisco State University (SFSU). Besides delivering the theoretical knowledge of the important concepts in vibrations, such as natural frequency, equation of motion, and transfer function, the learning module also allow students further examine the gained knowledge through simulations in the developed interactive Apps. In addition, the module also includes a mobile remote shake table laboratory (RSTLab) which provides students the opportunity to remotely participate and conduct physical shake table experiments in real-time through smart mobile devices (e.g. smartphones and tablets). Through these physical experiments, students may easily build or modify scaled structural models to test theories and implement their own innovations to observe how these structures behave under different excitations. A telepresence robot is innovatively adopted to integrate with the mobile RSTLab to actively engage students and provide them a real sense of in-person participation without the need of being physically present in the laboratory. In this paper, the mobile learning module as well as the RSTLab will be demonstrated in detail. The implementation of the learning module is underway.

YANG Yan,TAN Cheng-xiang

DOI: https://doi.org/10.3969/j.issn.1000-3428.2008.06.045

2008-01-01

Abstract:With some insecure factors existing Short Message Service(SMS) system which is on the basis of wireless network, such as the short message will be filched, intercepted and lost. GSM modem based on SMS system for secure communication is discussed and implemented. Solutions of certificate and authentic bytes added in the SMS package are analyzed for secure authentication of the system, and encryption decryption are called to the SMS package. The study shows that it is necessary to ensure the secure of the SMS system by mutual authentication and encryption.

Zhengguang Xu,Wei Kui,Xiaojun Hei,Wenqing Cheng

DOI: https://doi.org/10.1109/TALE.2017.8252382

2017-01-01

Abstract:To tackle the fundamental problem between the explosions of knowledge and the limited study hours, we have been designing and developing a telecommunication engineering pipeline and carefully designed different modules of the curriculum to develop the system capacity of our students. The “principles of communications” course is one of the fundamental major courses in telecommunication engineering. In this poster, we outline some design ideas on instrumenting a laboratory system by utilizing the emerging software defined radio platforms to improve students' hands-on experiences in effectively learning rather abstract concepts, system models and modulation methods in principles of communications. We are motivated to receive the comments and suggestions from the technical education community on our proposed pedagogy approach.

Zouheir Trabelsi,Mohammed Al Matrooshi,Saeed Al Bairaq,Walid Ibrahim,Mohammad M. Masud

DOI: https://doi.org/10.1007/s10639-015-9439-8

2015-09-16

Education and Information Technologies

Abstract:As mobile devices grow increasingly in popularity within the student community, novel educational activities and tools, as well as learning approaches can be developed to get benefit from this prevalence of mobile devices (e.g. mobility and closeness to students’ daily lives). Particularly, information security education should reflect the current trend in computing platforms away from the desktop and towards mobile devices. This paper discusses a case study of a learning approach that aims at taking advantages of the benefits of mobile devices and the best practices in learning information security, as well as promoting students’ interests and increasing their self-efficacy. The learning approach uses two Android learning apps to enhance students’ hands-on skills on firewall filtering rules implementation, by practicing network traffic filtering outside the traditional laboratory activities, in the real-world environment; i.e., anywhere and anytime, at the students’ convenience. Practically, the two Android apps are a firewall app and a packet generator app; both apps are freely available at Google Play Store. Based on statistics from the Google Play Store, in about one and a half years, the packet generator app turned popular with over 20,000 downloads worldwide and a 3.75 users’ rating. A comparative analysis of various existing Android firewall apps with the proposed firewall app emphasizes its significance. The impact of the Android apps on the students’ performance in terms of achieving the course outcomes is also discussed.

education & educational research

Wei Hu,Tianzhou Chen,Qingsong Shi,Xueqing Lou

DOI: https://doi.org/10.1109/cit.2010.374

2010-01-01

Abstract:Mobile computing is popular when wireless network has been deployed almost everywhere. Smartphones have been the important tools in our society for the abundant functions including communication, entertainment and online office etc as the pivotal devices of mobile computing. Smartphone software development has also become more important than before. Android is one of the emerging leading operating systems for smartphones as an open source system platform. Many smartphones have adopted this platform and more smartphones will do so in the future. It is also an emerging problem on how to develop software for smartphones based on Android and those platforms like it. We propose smartphone software development course design based on Android in this paper. What this course focuses is how to teach the development technology to Students. The course design has two parts including the syllabus design and hands-on lab design. At the same time, the innovations are also described in detail and these innovations play a key role in the teaching.

Solomon Sunday Oyelere,Jarkko Suhonen,Greg M. Wajiga,Erkki Sutinen

DOI: https://doi.org/10.1007/s10639-017-9613-2

2017-05-26

Education and Information Technologies

Abstract:The study focused on the application of the design science research approach in the course of developing a mobile learning application, MobileEdu, for computing education in the Nigerian higher education context. MobileEdu facilitates the learning of computer science courses on mobile devices. The application supports ubiquitous, collaborative, and social aspects of learning among higher education students. Moreover, the application eases access to learning resources. The paper first describes analysis, design, and implementation activities related to the development of MobileEdu. Also, the paper deliberated on the characteristics and scope of the adherence of MobileEdu to the traits and ideas of design science research. To evaluate MobileEdu in a real-life learning setting, experiment was conducted with 142 third-year undergraduate students in a Nigerian university. Besides the learning achievement of the students using MobileEdu, the study examined the impact of MobileEdu on students’ attitudes toward studying in a system analysis and design course. Experimental data were collected from pre- and post quizzes, interviews, and a questionnaire administered to students. The results of the evaluation are encouraging and showed that the MobileEdu application has a potential to improve students’ learning achievements. In addition, the pedagogical experiences of students were mostly positive and students’ attitudes toward the system analysis and design course through MobileEdu was better than those of students who studied the course via traditional methods. Finally, the study offered suggestions for how to implement effectively a mobile learning-supported course in computing curriculum.

education & educational research

Stephen S. Yau,Sandeep K. S. Gupta,Fariaz Karim,Sheikh I. Ahamed,Yu Wang,Bin Wang

2003-01-01

Abstract:Smart Classroom facilitates collaborative learning among college students. Students in such an environment form small groups to solve a specific problem or develop a group project. In a Smart Classroom, each student has a situation-aware PDA. Students' PDAs dynamically form mobile ad hoc networks for group meetings. Each PDA monitors its situation (locations of PDAs, noise, light, and mobility) and uses situation to trigger communication activity among the students and the instructor for group discussion and automatic distribution of presentation materials. Middleware can effectively address the Situation-awareness and ad hoc group communication for pervasive computing by providing development and runtime support to the application software. We have developed a Reconfigurable Context-Sensitive Middleware (RCSM) for such purposes. In this paper, we will present the characteristics of Smart Classroom, how we can use RCSM to develop such an environment, and how to use it to greatly enhance collaborative learning. We will use the senior group software engineering project course as an illustrative example.

S.R.N. Reddy,Jasleen Kaur,Suresh Chande,Rama K. Challa

DOI: https://doi.org/10.1002/cae.21919

2018-03-06

Computer Applications in Engineering Education

Abstract:Abstract This paper highlights a system and method of bringing an integrated platform for real time teaching of various courses, innovations, designing products, and to extend the mobile education with a practical approach in assorted research and technical education domains. My SmartPhone Kit has been designed and developed for the purpose of learning, developing, and experimenting basic concepts of various courses such as mobile communication, sensor networks, embedded systems, mobile architecture, and programming, etc. Different workshops were conducted in 2015–2016 to evaluate the need of a practical approach and to experience the user satisfaction with the overall methodology of My SmartPhone kit. These workshops comprises the set of theory classes for understanding the basic concepts of various courses, practical sessions, experimental demos by the resource staff, product idea session, real time product development with the kit, and feedback analysis session. This paper focuses on the design of the kit, its implementation, methodology, novelty, and outcomes achieved through it. The analysis is carried through a case study presenting a total of six different workshops at four different institutes during 2015–2016. The findings reveal that maximum number of participants have been satisfied with the overall methodology of My SmartPhone Kit and adopted the same for teaching and learning.

computer science, interdisciplinary applications,engineering, multidisciplinary,education, scientific disciplines