
Mobile security research acknowledgements
Reporters that have increased the security of the mobile industry
The primary mechanism for recognising the positive impact of reporters
The GSMA’s mobile security research acknowledgements page lists security vulnerability reporters who have made contributions to increasing the security of the mobile industry by submitting disclosures to the GSMA or its members. It is the primary mechanism for the GSMA to recognise and acknowledge the positive impact the reporter has had on the mobile industry by following the GSMA’s coordinated vulnerability disclosure (CVD) process.
On behalf of the mobile industry, we would like to thank the following people for making a disclosure to us and recognise their contribution to increasing the security of the mobile industry.
In the final months of 2024, the organisations and people who have contributed are:
CVD-2024-0091
- Yiming Zhang, Tsinghua University
- Tao Wan, Cable Labs & Carleton University
- Yaru Yang, Tsinghua University
- Haixin Duan, Tsinghua University & Zhongguancun Laboratory
- Yichen Wang, Tsinghua University
- Jianjun Chen, Tsinghua University & Zhongguancun Laboratory
- Zixiang Wei, Tsinghua University
- Xiang Li, Nankai University
CVD-2024-0090
- Swantje Lange, TU Darmstadt, Hasso Plattner Institute
- Francesco Gringoli, University of Brescia
- Matthias Hollick, TU Darmstadt
- Jiska Classen, Hasso Plattner Institute
See paper: Wherever I May Roam: Stealthy Interception and Injection Attacks Through Roaming Agreements
CVD-2024-0089
- Gabriel K. Gegenhuber, University of Vienna
- Florian Holzbauer, University of Vienna
- Philipp Frenzel, SBA Research
- JEdgar Weippl, University of Vienna
- Adrian Dabrowski, CISPA Helmholtz Center for Information Security
See paper: Diffie-Hellman Picture Show: Key Exchange Stories from Commercial VoWiFi Deployments
Acknowledgement archive
2024 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0089 | Gabriel K. Gegenhuber, Florian Holzbauer, Philipp Frenzel, Edgar Weippl, Adrian Dabrowski |
University of Vienna, SBA Research, CISPA Helmholtz Center for Information Security |
Access research ![]() |
0090 | Swantje Lange, Francesco Gringoli, Matthias Hollick, Jiska Classen |
TU Darmstadt, University of Brescia, Hasso Plattner Institute |
Access research ![]() |
0091 | Yiming Zhang, Tao Wan, Yaru Yang, Haixin Duan, Yichen Wang, Jianjun Chen, Zixiang Wei, Xiang Li |
Tsinghua University, Cable Labs & Carleton University, Zhongguancun Laboratory, Nankai University |
No research paper available |
2023 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0081 | Kai Tu, Abdullah Al Ishtiaq, Syed MD Mukit Rashid, Yilu Dong, Weixuan Wang, Tianwei Wu, Syed Rafiul Hussain |
Pennsylvania State University | Access research ![]() |
0079 | Tristan Claverie,
Gildas Avoine, Xavier Carpent, Christophe Devine, Diane Leblanc-Albarel |
ANSSI, IRISA, INSA Rennes, University of Nottingham, KU Leuven |
Access research ![]() |
0077 | Taekkyung Oh, Sangwook Bae, Junho Ahn, Hoang Dinh Tuan, Yonghwa Lee, Yongdae Kim |
Korea Advanced Institute of Science & Technology (KAIST) | Access research ![]() |
0076 | Mitziu Echeverria, Aliakbar Sadeghi, Daniyal Pirwani Dar, Omar Chowdhury |
The University of Iowa, Stony Brook University |
No research paper available |
0075 | Yaru Yang, Yiming Zhang, Tao Wan, Chuhan Wang, Haixin Duan, Jianjun Chen |
Tsinghua University, CableLabs & Carleton University |
Access research ![]() |
0074 | Qize Wang | ADLab of VenusTech | No research paper available |
0073 | David Rupprecht, Tobias Funke, Katharina Kohls |
Radix Security, Ruhr-University Bochum, Radboud University |
Access research ![]() |
0072 | Evangelos Bitsikas, Aanjhan Ranganathan, Theodor Schnitzler, Christina Pöpper |
Northeastern University, Technical University Dortmund, New York University Abu Dhabi |
Access research ![]() |
0071 | Abdullah Al Ishtiaq, Kai Tu, Syed Md Mukit Rashid, Syed Rafiul Hussain |
Pennsylvania State University | Access research ![]() |
0070 | Taekkyung Oh, Sangwook Bae, Junho Ahn, Yongdae Kim |
Korea Advanced Institute of Science & Technology (KAIST) | Access research ![]() |
0069 | Mujtahid Akon, Tianchang Yang, Yilu Dong, Syed Rafiul Hussain |
Pennsylvania State University | Access research ![]() |
0067 | Imran Saleem | Mobileum | Access research ![]() |
2022 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0064 | Bedran Karakoc, Nils Fürste, David Rupprecht, Katharina Kohls |
Ruhr-University Bochum, Software Radio Systems, Radix Security, Radboud University Nijmegen |
Access research ![]() |
0063 | Imran Saleem | Mobileum | Access research ![]() |
0060, 0061 and 0062 | Seaver Thorn, K. Virgil, English, Kevin R.B Butler, William Enck |
North Carolina State University, University of Florida |
Access research ![]() |
0058 | Zhiwei Cui, Baojiang Cui, Siyuan Wang, Fengjiao He, Hongxin Wang |
Beijing University of Posts and Telecommunications | No research paper available |
0056 | Fabricio Ferraz | MEO | No research paper available |
2021 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0052 | Imran Saleem | Mobileum | Access research ![]() |
0050 | Syed Rafiul Hussain, Abdullah Al Ishtiaq, Imtiaz Karim, Elisa Bertino, Omar Chowdhury |
Pennsylvania State University, Purdue University, The University of Iowa |
Access research ![]() |
0049 | Yi Chen, Yepeng Yao, XiaoFeng Wang |
Indiana University Bloomington https://sites.google.com/view/chenyi1, Institute of Information Engineering, Chinese Academy of Sciences https://yaoyepeng.github.io, Indiana University Bloomington https://homes.luddy.indiana.edu/xw7 |
Access research ![]() |
0047 | Silke Holtmanns | AdaptiveMobile Security | Access research ![]() |
0046 | Benoit Michau, Thomas Coudray, Rémi Bonamy |
P1 Security | Access research ![]() |
0045 | Reza Soosahabi | ATI Research Center, Keysight Technologies Inc. Paper, Talk |
No research paper available |
0043 | Imtiaz Karim, Elisa Bertino, Syed Rafiul Hussain |
Purdue University, Pennsylvania State University |
Access research ![]() |
2020 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0041 | Christof Beierle, Gregor Leander, David Rupprecht, Lukas Stennes, Patrick Derbez, Gaëtan Leurent, Håvard Raddum, Yann Rotella |
Ruhr University Bochum, Univ Rennes, CNRS, IRISA, Inria, Simula UiB, Université Paris-Saclay, UVSQ, Laboratoire de Mathématiques de Versailles |
Access research ![]() |
0040 | Nitya Lakshmanan, Nishant Budhdev, Mun Choon Chan, Jun Han, Min Suk Kang |
National University of Singapore, KAIST |
Access research ![]() |
0035 | Guancheng Li, Zhengyi Shang |
Tencent Security Xuanwu Lab | No research paper available |
2019 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0030 | David Rupprecht, Katharina Kohls, Thorsten Holz, Christina Pöpper |
Ruhr University Bochum, NYU Abu Dhabi |
Access research ![]() |
0029 | Syed Rafiul Hussain, Mitziu Echeverria, Imtiaz Karim, Omar Chowdhury, Elisa Bertino |
Purdue University, University of Iowa, Purdue University, University of Iowa, Purdue University |
Access research ![]() |
0026 | Cathal Mc Daid | AdaptiveMobile Security | Access research ![]() |
0024 | David Rupprecht, Christina Pöpper, Thorsten Holz |
Ruhr University Bochum, Germany and New York University Abu Dhabi |
Access research ![]() |
0018 | Altaf Shaik, Ravishankar Borgaonkar |
Technical University of Berlin, SINTEF Digital |
Access research ![]() |
2018 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0014 | Elisa Bertino, Syed Rafiul Hussain, Ninghui Li Omar Chowdhury, Mitziu Echeverria |
Purdue University University of Iowa |
Access research ![]() |
0013 | Merlin Chlosta, David Rupprecht, Thorsten Holz, Christina Pöpper |
Ruhr University Bochum, Germany Paper, Talk, NYU Abu Dhabi, United Arab Emirates |
Access research ![]() |
0012 | David Basin, Jannik Dreier, Lucca Hirschi, Saša Radomirović, Ralf Sasse, Vincent Stettler |
ETH Zurich, Université de Lorraine, CNRS, Inria, University of Dundee | Access research ![]() |
00011 | Loïc Ferreira, Gildas Avoine |
Orange Labs / IRISA INSA Rennes / IRISA |
Access research ![]() |
0009 | Sebastian Stumpf | Munich University of Applied Sciences | No research paper available |
0008 | David Rupprecht, Katharina Kohls, Christina Pöpper, Thorsten Holz |
Ruhr University Bochum and New York University Abu Dhabi | Access research ![]() |
2017 Acknowledgements
CVD# | Name | Organisation and link | Research paper |
---|---|---|---|
0007 | Altaf Shaik, Ravishankar Borgaonkar |
Technical University of Berlin and Kaitiaki Labs SINTEF Digital and Kaitiaki Labs |
Access research ![]() |
0005 | Fredrik Söderlund | Symsoft | Access research ![]() |
0004 | Maxime Meyer, Ben Smyth, Elizabeth A. Quaglia |
Vade Secure Technology, Inc., Verified IO Limited, a href=”https://lizquaglia.wordpress.com” target=”_blank” rel=”noopener”>Information Security Group, Royal Holloway, University of London |
Access research ![]() |
0003 | Vladimir Wolstencroft, Fredrik Söderlund |
BAIKE LTD, Symsoft |
Access research ![]() |
0001 | Yuwei Zheng, Lin Huang, Haoqi Shan, Jun Li, Qing Yang |
Unicorn Team, Radio Security Research Dept. | Access research ![]() |
Further acknowledgements
Furthermore we would like to acknowledge the contributions of the following:
- Prof. Steve Babbage
- Nick Arconati
- Prajwol Kumar Nakarmi
- Peter Schneider
This Mobile Security Research Acknowledgements page also facilitates the nomination and recognition of other reporters of vulnerabilities that may have made significant discoveries of vulnerabilities to individual GSMA member companies.
Entry to the mobile security research acknowledgements page is optional and is at the discretion of the reporter, the GSMA and/or the nominating GSMA member.