Android Security Acknowledgements

In this document

The Android Security Team would like to thank the following people and parties for helping to improve Android security. They have done this either by finding and responsibly reporting security vulnerabilities through the AOSP bug tracker Security bug report template or by committing code that has a positive impact on Android security, including code that qualifies for the Patch Rewards program.

2016

Abhishek Arya of Google Chrome Security Team

Adam Donenfeld et al. of Check Point Software Technologies Ltd.

Adam Powell of Google

Alex Chapman of Context Information Security

Altaf Shaik of Security in Telecommunications

Andy Tyler (@ticarpi) of e2e-assure

Anestis Bechtsoudis (@anestisb) of CENSUS S.A.

Ben Hawkes of Google Project Zero

Brad Ebinger of Google Telecom Team

Broadgate Team

Chad Brubaker of Android Security

Chao Yang of Alibaba Mobile Security Group

Chengming Yang of Alibaba Mobile Security Group

Chiachih Wu (@chiachih_wu) of C0RE Team from Qihoo 360

Christopher Tate of Google

Cory Pruce of Carnegie Mellon University

David Benjamin of Google

David Riley of the Google Pixel C Team

Dawei Peng (Vinc3nt4H) of Alibaba Mobile Security Team

Di Shen (@returnsme) of KeenLab (@keen_lab), Tencent

Dianne Hackborn of Google

Dmitry Vyukov of Google Dynamic Tools team

Dominik Schürmann of Institute for Operating Systems and Computer Networks, TU Braunschweig

Dongkwan Kim (dkay@kaist.ac.kr) of System Security Lab, KAIST

DS

Dzmitry Lukyanenka (www.linkedin.com/in/dzima)

Gal Beniamini (@laginimaineb, http://bits-please.blogspot.com)

Gengjia Chen (@chengjia4574) from Lab 0x031E of Qihoo 360 Technology Co. Ltd

George Piskas of École polytechnique fédérale de Lausanne

Greg Kaiser of Google Android Team

Guang Gong (龚广) (@oldfresher) of Qihoo 360 Technology Co.Ltd

Hao Chen of Vulpecker Team, Qihoo 360 Technology Co. Ltd.

Hao Qin of Security Research Lab, Cheetah Mobile

Hongil Kim (hongilk@kaist.ac.kr) of System Security Lab, KAIST

Imre Rad of Search-Lab Ltd.

Iwo Banas

Jake Valletta of Mandiant, a FireEye company

James Forshaw of Google Project Zero

Jann Horn (https://thejh.net)

Jeremy C. Joslin of Google

jfang of KEEN lab, Tencent (@K33nTeam)

Jianqiang Zhao (@jianqiangzhao) of IceSword Lab, Qihoo 360

Joshua Drake (@jduck)

Jouni Malinen PGP id EFC895FA

Kai Lu (@K3vinLuSec) of Fortinet's FortiGuard Labs

Kandala Shivaram reddy

Kenny Root of Google

Lee Campbell of Google

Maciej Szawłowski of the Google Security Team

Madhu Priya Murugan of CISPA, Saarland University

Makoto Onuki of Google

Marco Grassi (@marcograss) of KeenLab (@keen_lab), Tencent

Marco Nelissen of Google

Mark Brand of Google Project Zero

Martin Barbella of Google Chrome Security Team

Max Spector of Google

Michał Bednarski (https://github.com/michalbednarski)

Mingjian Zhou (@Mingjian_Zhou) of C0RE Team from Qihoo 360

Nancy Wang of Vertu Corporation LTD

Nasim Zamir

Nathan Crandall (@natecray) of Tesla Motors Product Security Team

Nico Golde (@iamnion) of Qualcomm Product Security Initiative

Ning You of Alibaba Mobile Security Group

Oleksiy Vyalov of Google

Oliver Chang of Google Chrome Security Team

Paul Stone of Context Information Security

Peng Xiao of Alibaba Mobile Security Group

Peter Pi (@heisecode) of Trend Micro

pjf of IceSword Lab, Qihoo 360

Quan Nguyen of Google Information Security Engineer Team

Qianwei Hu (rayxcp@gmail.com) of WooYun TangLab

Qidan He (@Flanker_hqd) of KeenLab (@keen_lab), Tencent

Richard Shupak

Ricky Wai of Google

Roeland Krak

Romain Trouvé (@bouuntyyy) of MWR Labs

Ronald L. Loor Vargas (@loor_rlv) of TEAM Lv51

Sagi Kedmi, IBM Security X-Force Researcher

Santos Cordon of Google Telecom Team

Scott Bauer (sbauer@eng.utah.edu, sbauer@plzdonthack.me)

Sen Nie (@nforest_) of KEEN lab, Tencent (@K33nTeam)

Seven Shen (@lingtongshen) of Trend Micro (www.trendmicro.com)

Sharvil Nanavati of Google

Shinjo Park (@ad_ili_rai) of Security in Telecommunications

Stuart Henderson

Su Mon Kywe of Singapore Management University

Tao (Lenx) Wei of Baidu X-Lab

Tieyan Li of Huawei

Tim Strazzere (@timstrazz) of SentinelOne / RedNaga

Tom Craig of Google X

Tom Rootjunky

Tongxin Li of Peking University

trotmaster (@trotmaster99)

Vasily Vasilev

Victor Chang of Google

Vignesh Venkatasubramanian of Google

Vishwath Mohan of Android Security

Wei Wei (@Danny__Wei) of Xuanwu LAB, Tencent

Weichao Sun (@sunblate) of Alibaba Inc

Wen Niu (@NWMonster) of KeenLab (@keen_lab), Tencent

Wenke Dou of C0RE Team

William Roberts (william.c.roberts@intel.com)

Wish Wu (@wish_wu) of Trend Micro Inc.

Xiaofeng Wang of Indiana University Bloomington

Xiling Gong of Tencent Security Platform Department

Xingyu He (何星宇) (@Spid3r_) of Alibaba Inc

Xinhui Han of Peking University

Xuxian Jiang of C0RE Team from Qihoo 360

Yabin Cui from Android Bionic Team

Yacong Gu of TCA Lab, Institute of Software, Chinese Academy of Sciences

Yang Ssong of Alibaba Mobile Security Group

Yeonjoon Lee of Indiana University Bloomington

Yingjiu Li of Singapore Management University

Yongke Wang (@Rudykewang) of Xuanwu LAB, Tencent

Yongzheng Wu of Huawei

Yuan-Tsung Lo (computernik@gmail.com) of C0RE Team

Yulong Zhang of Baidu X-Lab

Yuru Shao of University of Michigan Ann Arbor

Zach Riggle (@ebeip90) of the Android Security Team

2015

Abhishek Arya, Google Chrome Security Team

Alex Copot

Alex Eubanks

Alexandru Blanda

Arne Swinnen (www.arneswinnen.net)

Artem Chaykin

Ben Hawkes

Brennan Lautner

Chiachih Wu of C0RE Team from Qihoo 360

Darmstadt (siegfried.rasthofer@gmail.com)

Daniel Micay (daniel.micay@copperhead.co) at Copperhead Security

Dongkwan Kim of System Security Lab, KAIST (dkay@kaist.ac.kr)

dragonltx of Alibaba Mobile Security Team

Gal Beniamini (http://bits-please.blogspot.com)

Guang Gong (龚广) (@oldfresher, higongguang@gmail.com) of Qihoo 360 Technology Co.Ltd

Hongil Kim of System Security Lab, KAIST (hongilk@kaist.ac.kr)

Ian Beer of Google Project Zero

Iván Arce (@4Dgifts) of Programa STIC at Fundación Dr. Manuel Sadosky, Buenos Aires Argentina

Jack Tang of Trend Micro (@jacktang310)

jgor of The University of Texas at Austin (@indiecom)

Joaquín Rinaudo (@xeroxnir) of Programa STIC at Fundación Dr. Manuel Sadosky, Buenos Aires Argentina

Jordan Gruskovnjak of Exodus Intelligence (@jgrusko)

Joshua Drake of Zimperium

Lei Wu of C0RE Team from Qihoo 360

Marco Grassi (@marcograss) of KeenTeam (@K33nTeam)

Mark Carter (@hanpingchinese) of EmberMitre Ltd

Martin Barbella, Google Chrome Security Team

Michael Peck of The MITRE Corporation (mpeck@mitre.org)

Michał Bednarski (https://github.com/michalbednarski)

Michael Roland of JR-Center u'smile at University of Applied Scienses, Upper Austria/Hagenberg

Natalie Silvanovich of Google Project Zero

Oliver Chang, Google Chrome Security Team

Peter Pi of Trend Micro

Ping Li of Qihoo 360 Technology Co. Ltd

Qidan He (@flanker_hqd) from KeenTeam (@K33nTeam, http://k33nteam.org/)

Roee Hay and Or Peles

Seven Shen of Trend Micro

Siegfried Rasthofer of Secure Software Engineering Group, EC SPRIDE Technische Universität

Stephan Huber of Testlab Mobile Security, Fraunhofer SIT (Stephan.Huber@sit.fraunhofer.de)

Steven Vittitoe of Google Project Zero

Tony Beltramelli (@Tbeltramelli) of tonybeltramelli.com

Tzu-Yin (Nina) Tai

Wangtao(neobyte) of Baidu X-Team

Wen Xu (@antlr7) from KeenTeam (@K33nTeam, http://k33nteam.org/)

William Roberts (william.c.roberts@intel.com)

Wish Wu of Trend Micro Inc. (@wish_wu)

Xuxian Jiang of C0RE Team from Qihoo 360

Yajin Zhou of C0RE Team from Qihoo 360

2014

Aaron Mangel of Banno (amangel@gmail.com)

Alex Park (@saintlinu)

Alexandru Gheorghita

Andrey Labunets of Facebook

Ange Albertini (@angealbertini)

Axelle Apvrille of Fortinet, FortiGuards Labs

Dan Amodio of Aspect Security (@DanAmodio)

David Murdoch

Henry Hoggard of MWR Labs (@HenryHoggard)

Imre Rad of Search-Lab Ltd.

Jann Horn Green Droid Patch Symbol

Jeff Forristal of Bluebox Security

Joseph Redfern of MWR Labs
(@JosephRedfern)

Kunal Patel of Samsung KNOX Security Team (kunal.patel1@samsung.com)

Luander Michel Ribeiro (@luanderock)

Luyi Xing of Indiana University Bloomington (xingluyi@gmail.com)

Marc Blanchou (@marcblanchou)

Mathew Solnik (@msolnik)

Michał Bednarski

Raimondas Sasnauskas of University of Utah

Robert Craig of Trusted Systems Research Group, US National Security Agency Patch Symbol

Samsung Mobile

Scotty Bauer of University of Utah (sbauer@eng.utah.edu)

Sebastian Brenza

Siegfried Rasthofer of Secure Software Engineering Group, EC SPRIDE Technische Universität Darmstadt (siegfried.rasthofer@gmail.com)

Sony Mobile

Stephan Huber of Testlab Mobile Security, Fraunhofer SIT (Stephan.Huber@sit.fraunhofer.de)

Stephen Smalley of Trusted Systems Research Group, US National Security Agency Patch Symbol

Steven Arzt of Secure Software Engineering Group, EC SPRIDE Technische Universität Darmstadt (Steven.Arzt@ec-spride.de)

Subodh Iyengar of Facebook

Tongxin Li of Peking University (litongxin1991@gmail.com)

Tony Trummer of The Men in the Middle
(@SecBro1)

Tushar Dalvi (@tushardalvi)

Valera Neronov

Wang Tao of Baidu X-Team (wintao@gmail.com)

Wang Yu of Baidu X-Team (@xi4oyu)

Will Shackleton of Facebook

William Roberts (bill.c.roberts@gmail.com) Patch Symbol

Xiaofeng Wang of Indiana University Bloomington (xw7@indiana.edu)

Xiaoyong Zhou of Indiana University Bloomington
(@xzhou, zhou.xiaoyong@gmail.com)

Xinhui Han of Peking University (hanxinhui@pku.edu.cn)

Yeonjoon Lee of Indiana University Bloomington (luc2yj@gmail.com)

Yu-Cheng Lin 林禹成 (@AndroBugs)

Zhang Dong Hui of Baidu X-Team (shineastdh)

2013

Ivaylo Marinkov of eCommera (ivo@tsarstva.bg)

Jon Sawyer of Applied Cybersecurity LLC (jon@cunninglogic.com)

Joshua J. Drake of Accuvant LABS (@jduck) Patch Rewards Symbol

Kan Yuan

Lucas Yang (amadoh4ck) of RaonSecurity (amadoh4ck@gmail.com)

Luyi Xing of Indiana University Bloomington (xingluyi@gmail.com)

Mike Ryan of iSEC Partners
(@mpeg4codec, mikeryan@isecpartners.com )

Muhammad Naveed of University of Illinois at Urbana-Champaign
(naveed2@illinois.edu)

Qualcomm Product Security Initiative

Roee Hay (@roeehay, roeehay@gmail.com)

Robert Craig of Trusted Systems Research Group, US National Security Agency Patch Symbol

Ruben Santamarta of IOActive (@reversemode)

Stephen Smalley of Trusted Systems Research Group, US National Security Agency Patch Symbol

William Roberts (bill.c.roberts@gmail.com) Patch Symbol

Xiaorui Pan of Indiana University Bloomington (eagle200467@gmail.com)

XiaoFeng Wang of Indiana University Bloomington (xw7@indiana.edu)

2012

David Weinstein (@insitusec) of viaForensics

Jann Horn

Ravishankar Borgaonkari (@raviborgaonkar) of TU Berlin

Robert Craig of Trusted Systems Research Group, US National Security Agency Patch Symbol

Roee Hay (@roeehay, roeehay@gmail.com)

Stephen Smalley of Trusted Systems Research Group, US National Security Agency Patch Symbol

William Roberts (bill.c.roberts@gmail.com) Patch Symbol

2011

Collin Mulliner of MUlliNER.ORG (@collinrm)

2009

Charlie Miller (@0xcharlie)

Collin Mulliner of MUlliNER.ORG (@collinrm)