Android Security Acknowledgements

In this document

The Android Security Team would like to thank the following people and parties for helping to improve Android security. They have done this either by finding and responsibly reporting security vulnerabilities through the AOSP bug tracker Security bug report template or by committing code that has a positive impact on Android security, including code that qualifies for the Patch Rewards program.

2016

Abhishek Arya of Google Chrome Security Team

Adam Donenfeld et al. of Check Point Software Technologies Ltd.

Adam Powell of Google

Alex Chapman of Context Information Security

Altaf Shaik of Security in Telecommunications

Andre Teixeira Rizzo

Andrea Biondo

Andrei Kapishnikov of Google

Andy Tyler (@ticarpi) of e2e-assure

Anestis Bechtsoudis (@anestisb) of CENSUS S.A.

Ao Wang of PKAV, Silence Information Technology

Askyshang of Security Platform Department, Tencent

Baozeng Ding of Alibaba Mobile Security Group

Ben Hawkes of Google Project Zero

Billy Lau of Android Security

Brad Ebinger of Google Telecom Team

Broadgate Team

Chad Brubaker of Android Security

Chao Yang of Alibaba Mobile Security Group

Chenfu Bao (包沉浮) of Baidu X-Lab

Chengming Yang of Alibaba Mobile Security Group

Chi Zhang of C0RE Team

Chiachih Wu (@chiachih_wu) of C0RE Team from Qihoo 360

Christian Seel

Christopher Tate of Google

Constantinos Patsakis of University of Piraeus

Cory Pruce of Carnegie Mellon University

Cristiano Giuffrida of Vrije Universiteit Amsterdam

Daniel Micay of Copperhead Security

David Benjamin of Google

David Riley of the Google Pixel C Team

Dawei Peng (Vinc3nt4H) of Alibaba Mobile Security Team

Di Shen (@returnsme) of KeenLab (@keen_lab), Tencent

Dianne Hackborn of Google

Dmitry Vyukov of Google Dynamic Tools team

Dominik Schürmann of Institute for Operating Systems and Computer Networks, TU Braunschweig

Dongdong She of UC Riverside

Dongkwan Kim (dkay@kaist.ac.kr) of System Security Lab, KAIST

dosomder

dragonltx of Alibaba mobile security team

DS

Dzmitry Lukyanenka (www.linkedin.com/in/dzima)

Ecular Xu (徐健) of Trend Micro

Efthimios Alepis of University of Piraeus

En He (@heeeeen4x) of MS509Team

Gal Beniamini (@laginimaineb, http://bits-please.blogspot.com)

Gengjia Chen (@chengjia4574) of Lab 0x031E, Qihoo 360 Technology Co. Ltd

Gengming Liu (刘耕铭) (@dmxcsnsbh) of KeenLab, Tencent

George Piskas of École polytechnique fédérale de Lausanne

Giovanni Vigna of University of California, Santa Barbara

Greg Kaiser of Google Android Team

Guang Gong (龚广) (@oldfresher) of Qihoo 360 Technology Co. Ltd.

Hang Zhang of UC Riverside

Hanxiang Wen of C0RE Team

Hao Chen of Vulpecker Team, Qihoo 360 Technology Co. Ltd.

Hao Qin of Security Research Lab, Cheetah Mobile

Herbert Bos of Vrije Universiteit Amsterdam

Hongil Kim (hongilk@kaist.ac.kr) of System Security Lab, KAIST

Imre Rad of Search-Lab Ltd.

Iwo Banas

Jake Valletta of Mandiant, a FireEye company

James Forshaw of Google Project Zero

Jann Horn (https://thejh.net)

Jason Rogena

Jeremy C. Joslin of Google

jfang of KEEN lab, Tencent (@K33nTeam)

Jianqiang Zhao (@jianqiangzhao) of IceSword Lab, Qihoo 360

Joshua Drake (@jduck)

Jouni Malinen PGP id EFC895FA

Kai Lu (@K3vinLuSec) of Fortinet's FortiGuard Labs

Kandala Shivaram reddy

Kaveh Razavi of Vrije Universiteit Amsterdam

Kenny Root of Google

Lee Campbell of Google

Lubo Zhang of C0RE Team

Maciej Szawłowski of the Google Security Team

Madhu Priya Murugan of CISPA, Saarland University

Makoto Onuki of Google

Marco Grassi (@marcograss) of KeenLab (@keen_lab), Tencent

Marco Nelissen of Google

Mark Brand of Google Project Zero

Mark Renouf of Google

Martin Barbella of Google Chrome Security Team

Martina Lindorfer of University of California, Santa Barbara

Max Spector of Google

MengLuo Gou (@idhyt3r) of Bottle Tech

Michał Bednarski (github.com/michalbednarski)

Min Chong of Android Security

Mingjian Zhou (@Mingjian_Zhou) of C0RE Team, Qihoo 360

Miriam Gershenson of Google

Nancy Wang of Vertu Corporation LTD

Nasim Zamir

Nathan Crandall (@natecray) of Tesla Motors Product Security Team

Nico Golde (@iamnion) of Qualcomm Product Security Initiative

Nightwatch Cybersecurity Research (@nightwatchcyber)

Ning You of Alibaba Mobile Security Group

Oleksiy Vyalov of Google

Oliver Chang of Google Chrome Security Team

Paul Stone of Context Information Security

Peng Xiao of Alibaba Mobile Security Group

Pengfei Ding (丁鹏飞) of Baidu X-Lab

Peter Pi (@heisecode) of Trend Micro

pjf of IceSword Lab, Qihoo 360

Quan Nguyen of Google Information Security Engineer Team

Qianwei Hu (rayxcp@gmail.com) of WooYun TangLab

Qidan He (@Flanker_hqd) of KeenLab (@keen_lab), Tencent

Richard Shupak

Ricky Wai of Google

Robin Lee of Google

Roee Hay, IBM Security X-Force Researcher

Roeland Krak

Romain Trouvé (@bouuntyyy) of MWR Labs

Ronald L. Loor Vargas (@loor_rlv) of TEAM Lv51

Sagi Kedmi, IBM Security X-Force Researcher

Samuel Tan of Google

Santos Cordon of Google Telecom Team

Scott Bauer (@ScottyBauer1)

Sen Nie (@nforest_) of KEEN lab, Tencent (@K33nTeam)

Sergey Bobrov (@Black2Fan) of Kaspersky Lab

Seven Shen (@lingtongshen) of Trend Micro (www.trendmicro.com)

Sharvil Nanavati of Google

Shinjo Park (@ad_ili_rai) of Security in Telecommunications

Stuart Henderson

Su Mon Kywe of Singapore Management University

Tao (Lenx) Wei (韦韬) of Baidu X-Lab

Tieyan Li of Huawei

Tim Strazzere (@timstrazz) of SentinelOne / RedNaga

Tom Craig of Google X

Tom Rootjunky

Tong Lin of C0RE Team

Tongxin Li of Peking University

trotmaster (@trotmaster99)

Vasily Vasilev

Victor Chang of Google

Victor van der Veen of Vrije Universiteit Amsterdam

Vignesh Venkatasubramanian of Google

Vishwath Mohan of Android Security

Wei Wei (@Danny__Wei) of Xuanwu LAB, Tencent

Weichao Sun (@sunblate) of Alibaba Inc

Wen Niu (@NWMonster) of KeenLab (@keen_lab), Tencent

Wenke Dou of C0RE Team

Wenlin Yang of Alpha Team, Qihoo 360 Technology Co. Ltd.

William Roberts (william.c.roberts@intel.com)

Wish Wu (@wish_wu) (吴潍浠) of Mobile Threat Response Team, Trend Micro Inc.

Xiaodong Wang of C0RE Team

Xiaofeng Wang of Indiana University Bloomington

Xiling Gong of Tencent Security Platform Department

Xingyu He (何星宇) (@Spid3r_) of Alibaba Inc

Xinhui Han of Peking University

Xuxian Jiang of C0RE Team, Qihoo 360

Yabin Cui from Android Bionic Team

Yacong Gu of TCA Lab, Institute of Software, Chinese Academy of Sciences

Yakov Shafranovich of Nightwatch Cybersecurity

Yang Dong of Alibaba Mobile Security Group

Yang Song of Alibaba Mobile Security Group

Yanick Fratantonio of University of California, Santa Barbara

Yao Jun of C0RE Team

Yeonjoon Lee of Indiana University Bloomington

Yi Zhang of Alibaba Mobile Security Group

Yingjiu Li of Singapore Management University

Yong Shi of Eagleye team, SCC, Huawei

Yong Wang (王勇) (@ThomasKing2014)

Yongke Wang (@Rudykewang) of Xuanwu LAB, Tencent

Yongzheng Wu of Huawei

Yuan-Tsung Lo (computernik@gmail.com) of C0RE Team

Yulong Zhang of Baidu X-Lab

Yuru Shao of University of Michigan Ann Arbor

Yuxiang Li of Tencent Security Platform Department

Zach Riggle (@ebeip90) of the Android Security Team

Zhanpeng Zhao (行之) (@0xr0ot) of Security Research Lab, Cheetah Mobile

Zhe Jin (金哲) of Chengdu Security Response Center, Qihoo 360 Technology Co. Ltd.

Zhiyun Qian of UC Riverside

Zinuo Han of PKAV, Silence Information Technology

Zubin Mithra of Google

2015

Abhishek Arya, Google Chrome Security Team

Alex Copot

Alex Eubanks

Alexandru Blanda

Arne Swinnen (www.arneswinnen.net)

Artem Chaykin

Ben Hawkes

Brennan Lautner

Chiachih Wu of C0RE Team from Qihoo 360

Darmstadt (siegfried.rasthofer@gmail.com)

Daniel Micay (daniel.micay@copperhead.co) at Copperhead Security

Dongkwan Kim of System Security Lab, KAIST (dkay@kaist.ac.kr)

dragonltx of Alibaba Mobile Security Team

Gal Beniamini (http://bits-please.blogspot.com)

Guang Gong (龚广) (@oldfresher, higongguang@gmail.com) of Qihoo 360 Technology Co.Ltd

Hongil Kim of System Security Lab, KAIST (hongilk@kaist.ac.kr)

Ian Beer of Google Project Zero

Iván Arce (@4Dgifts) of Programa STIC at Fundación Dr. Manuel Sadosky, Buenos Aires Argentina

Jack Tang of Trend Micro (@jacktang310)

jgor of The University of Texas at Austin (@indiecom)

Joaquín Rinaudo (@xeroxnir) of Programa STIC at Fundación Dr. Manuel Sadosky, Buenos Aires Argentina

Jordan Gruskovnjak of Exodus Intelligence (@jgrusko)

Joshua Drake of Zimperium

Lei Wu of C0RE Team from Qihoo 360

Marco Grassi (@marcograss) of KeenTeam (@K33nTeam)

Mark Carter (@hanpingchinese) of EmberMitre Ltd

Martin Barbella, Google Chrome Security Team

Michael Peck of The MITRE Corporation (mpeck@mitre.org)

Michał Bednarski (https://github.com/michalbednarski)

Michael Roland of JR-Center u'smile at University of Applied Scienses, Upper Austria/Hagenberg

Natalie Silvanovich of Google Project Zero

Oliver Chang, Google Chrome Security Team

Peter Pi of Trend Micro

Ping Li of Qihoo 360 Technology Co. Ltd

Qidan He (@flanker_hqd) from KeenTeam (@K33nTeam, http://k33nteam.org/)

Roee Hay and Or Peles

Seven Shen of Trend Micro

Siegfried Rasthofer of Secure Software Engineering Group, EC SPRIDE Technische Universität

Stephan Huber of Testlab Mobile Security, Fraunhofer SIT (Stephan.Huber@sit.fraunhofer.de)

Steven Vittitoe of Google Project Zero

Tony Beltramelli (@Tbeltramelli) of tonybeltramelli.com

Tzu-Yin (Nina) Tai

Wangtao(neobyte) of Baidu X-Team

Wen Xu (@antlr7) from KeenTeam (@K33nTeam, http://k33nteam.org/)

William Roberts (william.c.roberts@intel.com)

Wish Wu of Trend Micro Inc. (@wish_wu)

Xuxian Jiang of C0RE Team from Qihoo 360

Yajin Zhou of C0RE Team from Qihoo 360

2014

Aaron Mangel of Banno (amangel@gmail.com)

Alex Park (@saintlinu)

Alexandru Gheorghita

Andrey Labunets of Facebook

Ange Albertini (@angealbertini)

Axelle Apvrille of Fortinet, FortiGuards Labs

Dan Amodio of Aspect Security (@DanAmodio)

David Murdoch

Henry Hoggard of MWR Labs (@HenryHoggard)

Imre Rad of Search-Lab Ltd.

Jann Horn Green Droid Patch Symbol

Jeff Forristal of Bluebox Security

Joseph Redfern of MWR Labs
(@JosephRedfern)

Kunal Patel of Samsung KNOX Security Team (kunal.patel1@samsung.com)

Luander Michel Ribeiro (@luanderock)

Luyi Xing of Indiana University Bloomington (xingluyi@gmail.com)

Marc Blanchou (@marcblanchou)

Mathew Solnik (@msolnik)

Michał Bednarski

Raimondas Sasnauskas of University of Utah

Robert Craig of Trusted Systems Research Group, US National Security Agency Patch Symbol

Samsung Mobile

Scotty Bauer of University of Utah (sbauer@eng.utah.edu)

Sebastian Brenza

Siegfried Rasthofer of Secure Software Engineering Group, EC SPRIDE Technische Universität Darmstadt (siegfried.rasthofer@gmail.com)

Sony Mobile

Stephan Huber of Testlab Mobile Security, Fraunhofer SIT (Stephan.Huber@sit.fraunhofer.de)

Stephen Smalley of Trusted Systems Research Group, US National Security Agency Patch Symbol

Steven Arzt of Secure Software Engineering Group, EC SPRIDE Technische Universität Darmstadt (Steven.Arzt@ec-spride.de)

Subodh Iyengar of Facebook

Tongxin Li of Peking University (litongxin1991@gmail.com)

Tony Trummer of The Men in the Middle
(@SecBro1)

Tushar Dalvi (@tushardalvi)

Valera Neronov

Wang Tao of Baidu X-Team (wintao@gmail.com)

Wang Yu of Baidu X-Team (@xi4oyu)

Will Shackleton of Facebook

William Roberts (bill.c.roberts@gmail.com) Patch Symbol

Xiaofeng Wang of Indiana University Bloomington (xw7@indiana.edu)

Xiaoyong Zhou of Indiana University Bloomington
(@xzhou, zhou.xiaoyong@gmail.com)

Xinhui Han of Peking University (hanxinhui@pku.edu.cn)

Yeonjoon Lee of Indiana University Bloomington (luc2yj@gmail.com)

Yu-Cheng Lin 林禹成 (@AndroBugs)

Zhang Dong Hui of Baidu X-Team (shineastdh)

2013

Ivaylo Marinkov of eCommera (ivo@tsarstva.bg)

Jon Sawyer of Applied Cybersecurity LLC (jon@cunninglogic.com)

Joshua J. Drake of Accuvant LABS (@jduck) Patch Rewards Symbol

Kan Yuan

Lucas Yang (amadoh4ck) of RaonSecurity (amadoh4ck@gmail.com)

Luyi Xing of Indiana University Bloomington (xingluyi@gmail.com)

Mike Ryan of iSEC Partners
(@mpeg4codec, mikeryan@isecpartners.com )

Muhammad Naveed of University of Illinois at Urbana-Champaign
(naveed2@illinois.edu)

Qualcomm Product Security Initiative

Roee Hay (@roeehay, roeehay@gmail.com)

Robert Craig of Trusted Systems Research Group, US National Security Agency Patch Symbol

Ruben Santamarta of IOActive (@reversemode)

Stephen Smalley of Trusted Systems Research Group, US National Security Agency Patch Symbol

William Roberts (bill.c.roberts@gmail.com) Patch Symbol

Xiaorui Pan of Indiana University Bloomington (eagle200467@gmail.com)

XiaoFeng Wang of Indiana University Bloomington (xw7@indiana.edu)

2012

David Weinstein (@insitusec) of viaForensics

Jann Horn

Ravishankar Borgaonkari (@raviborgaonkar) of TU Berlin

Robert Craig of Trusted Systems Research Group, US National Security Agency Patch Symbol

Roee Hay (@roeehay, roeehay@gmail.com)

Stephen Smalley of Trusted Systems Research Group, US National Security Agency Patch Symbol

William Roberts (bill.c.roberts@gmail.com) Patch Symbol

2011

Collin Mulliner of MUlliNER.ORG (@collinrm)

2009

Charlie Miller (@0xcharlie)

Collin Mulliner of MUlliNER.ORG (@collinrm)