Hasso-Plattner-Institut25 Jahre HPI
Hasso-Plattner-Institut25 Jahre HPI

Mobile Security (Wintersemester 2023/2024)

Dozent: Dr. Jiska Classen (Cybersecurity - Mobile & Wireless)

Allgemeine Information

  • Semesterwochenstunden: 4
  • ECTS: 6
  • Benotet: Ja
  • Einschreibefrist: 01.10.2023 - 31.10.2023
  • Prüfungszeitpunkt §9 (4) BAMA-O: 28.02.2024
  • Lehrform: Vorlesung / Übung
  • Belegungsart: Wahlpflichtmodul
  • Lehrsprache: Englisch
  • Maximale Teilnehmerzahl: 25

Studiengänge, Modulgruppen & Module

IT-Systems Engineering MA
Data Engineering MA
Digital Health MA
Cybersecurity MA
  • SECA: Security Analytics
    • HPI-SECA-K Konzepte und Methoden
  • SECA: Security Analytics
    • HPI-SECA-T Techniken und Werkzeuge
  • SECA: Security Analytics
    • HPI-SECA-S Spezialisierung
  • CYAD: Cyber Attack and Defense
    • HPI-CYAD-K Konzepte und Methoden
  • CYAD: Cyber Attack and Defense
    • HPI-CYAD-T Techniken und Werkzeuge
  • CYAD: Cyber Attack and Defense
    • HPI-CYAD-S Spezialisierung
Software Systems Engineering MA


This lecture covers mobile security on an application and system level, with many hands-on exercises. Students will learn state-of-the-art security concepts for both iOS and Android. They will be able to perform security testing of mobile apps, mobile malware analysis, and testing security-critical components within mobile operating systems. Course contents include:

  • Threat modeling for mobile devices and apps,
  • building mobile applications with Xcode and Android Studio (guest lecture by Tarek Galal),
  • application security and testing,
  • mobile malware capabilities and detection,
  • operating system internals, such as inter-process communication, threads, ...,
  • kernel and firmware security,
  • mobile forensics, and
  • wireless security.


A strong programming background in any language is recommended. As part of the exercises, students will modify existing mobile applications. Depending on the app and environment they choose, this is Kotlin/Java on Andriod or Swift/Objective-C on iOS.

Students require an Android phone or iPhone in developer mode to be able to complete the assignments. Alternatively, a laptop with at least 16GB of RAM is suitable to run an Andriod VM inside Android Studio.


Lern- und Lehrformen

Lectures, hands-on exercises, and labs.


Grading is based on practical exercises and the final exam.

  • Assignments (50%)
  • Written exam, 90 minutes (50%)

The exam takes place on February 28, 10:00, HS 3.


Kickoff: October 17, 13:30, room H-2.57/58 (room changed!).

Lectures and exercises are scheduled on Tuesdays and Wednesdays at 13:30. The course is organized via Moodle, where you can find a detailed plan when and where these are scheduled.

Should there be more than 25 students who would like to attend this lecture, everyone can indicate their interest until October 22nd. Students will then be selected during the second lecturing week.

Details for this process will be announced in the first lecture, and only if there are more than 25 students. Please do not apply before.