About me
I am a Security and Privacy researcher. I am currently working as a Research Scientist at Meta. I have received my Ph.D from the Department of Computer Science at North Carolina State University. I was advised by Dr. William Enck.
My research interests broadly fall within the areas of software security and privacy. My Ph.D. dissertaition focuses on analyzing and improving the security of payment systems and protocols in Android. My expertise lies in applying various program analysis techniques to build analysis tools and reverse engineer to discover and verify security weaknesses, vulnerabilities and policy non compliances in softwares particularly, Android.
In summer 2021, I interned at PayPal with the Threat management team as a research intern. I worked under the supervision of Dr. RC Johnson and Dr. Adam Oest. In this internship I explored different ways PayPal’s in house mobile payment SDKs (i.e Braintree, PayPal) could be misued in both Android and iOS ecosystem and tried to measure the impact in terms of both financial loss and security implications.
In summer 2022, I interned with the AI Security team at Meta as a Software Engineer Intern. There I proposed the design and implemented a solution to securely store security annotation of Meta’s AI assets.
In summer 2023, I interned with the Knox Security team at Samsung Research America as a Research Intern under the supervision of Dr. Mike Grace and Dr. Hayawardh Vijaykumar. There I researched how KNOX platform features in Android can meet security requirements from Payment Card Industry’s security standards and enhance user experience in terms of security and usability.
Previously, I worked at KONA, where I developed mobile payment solutions for both android and iOS platforms and before that, I completed my Bachelors in Computer Science and Engineering from Bangladesh University of Engineering and Technology.
![[High Resolution Photo]](https://saminmahmud.com/images/full.jpg){kind=link}
Recent News:
January 2024: I am excited to share that I will be joining Meta as a Research Scientist from January, 2024. I will be working with the Instagram Data Transperency team.
December 2023: I have successfully defended my Ph.D. thesis defense, I am finally doctorate in Computer Science!!
October 2023: I was invited to give a talk about my Ph.D. research work at IBM Security and Privacy Research Seminar !
May 2023: I am excited to start my third Ph.D internship with KNOX Security team at Samsung Research America for the summer 2023!
September 2022: Our paper, Analysis of Payment Service Provider SDKs in Android, has been accepted for publication at the 2022 Annual Computer Security Applications Conference (ACSAC).
May 2022: I started my summer internship with the AI Security team at Meta!
April 2022: I passed my Oral Preliminary Exam (Ph.D. Proposal). Officially a Ph.D candidate now!
April 2022: We won the Best Poster Award at Hot Topic in Science of Security (HotSoS) Symposium 2022!
March 2022: Our poster abstract got accepted at HotSoS 2022! I will be presenting our poster virtually in April, 2022.
February 2022: I am excited to share I have accepted a summer internship offer at Meta for summer 2022!
May 2021: Looking forward to my virtual summer internship at PayPal with the InfoSec team in Scottsdale, AZ!
March 2021: I am hosting the Android App Developement bootcamp at Diamond Hacks 2021.
February 2021: Got some exciting news! I got my first internship offer from PayPal!
February 2021: I am attending NDSS 2021.
August 2020: I presented our work Cardpliance at USENIX Security,2020.
March 2020: I passed the written prelim exam!
February 2020: Our paper, Cardpliance: PCI DSS Compliance of Android Applications has been accepted for publication at the 2020 USENIX Security Symposium.
November 2019: Our paper, Actions Speak Louder than Words: Entity-Sensitive Privacy Policy and Data Flow Analysis with PoliCheck, has been accepted for publication at the 2020 USENIX Security Symposium.
August 2019: I started working as a Research Assistant under supervision of Dr. William Enck.
May 2019: Our paper, PolicyLint: Investigating Internal Privacy Policy Contradictions on Google Play, has been accepted for publication at the 2019 USENIX Security Symposium.
January 2019: I joined the Wolfpack Security and Privacy Research(WSPR) Lab. I will be a teaching assitant for Operating Systems (CSC 246) this Spring.
August 2018: Starting my Ph.D journey in Computer Science at NC State. I will be a TA for C Programming and Tools (CSC 230) course this fall.