Page 172 - tech fest 2025 ב״ש חוברת תקצירים
P. 172
172
Research Vulnerabilities in Android's Audio Infrastructure Focusing on Unauthorized Eavesdropping
SE-B-13
Mor Bar; morba1@ac.sce.ac.il
Advisors: Dr. Marina Litvak1, Mr. Mordi Hagis2 1SCE - Shamoon College of Engineering, Be’er-Sheva 2HIT - Holon Institute of Technology, Holon
This research investigates vulnerabilities in Android’s audio infrastructure, focusing on unauthorized eavesdropping as a critical threat. The study examines Android’s complex audio architecture, comprising eight layers from application to kernel level, identifying potential weaknesses that could allow malicious actors to bypass Google’s security enhancements introduced in Android 9 (Pie). Through systematic analysis and empirical testing, the research demonstrates how zero-day vulnerabilities can facilitate covert eavesdropping through unauthorized applications. The methodology encompasses architectural mapping, vulnerability assessment, exploitation research, and validation across multiple Android versions. The project identifies specific security gaps in audio permission models and background processing restrictions, contributing to the understanding of mobile eavesdropping vulnerabilities and providing a foundation for developing more robust safeguards against emerging threats.
Keywords: android security, audio infrastructure, background recording, eavesdropping, mobile privacy, surveillance, zero-day vulnerabilities
A Smart Queue Management System for Governmental and Public Institutions
SE-C-01
Ali Afawi; aliafawi116@gmail.com Braa Okbe; braaokbe42@gmail.com
Advisor: Dr. Natalia Vanetik
SCE – Shamoon College of Engineering, Be’er-Sheva
Managing queues in governmental and public institutions often involves long wait times, poor accessibility, and inefficiencies. QGo is a smart queue management system developed as a bilingual mobile application (Hebrew/Arabic) aimed at improving accessibility and reducing user frustration. The app enables users to schedule appointments based on location and availability, receive smart reminders, and upload necessary documents. It includes accessibility features for users with limited digital literacy. The system was designed based on user needs, system analysis, and testing. A working prototype was implemented using React Native and Firebase. QGo offers a scalable, user-friendly tool to enhance digital service experiences in public institutions.
Keywords: accessibility, appointment scheduling, bilingual support, digital services, mobile application, public institutions, queue management
