Hassan Khan

Hassan Khan
Assistant Professor
Email: 
hkhan15@uoguelph.ca
Phone number: 
x53138
Office: 
Reynolds 3319

My primary research interests are at the intersection of computer security, systems, applied machine learning and human-computer interaction. My research aims to improve the existing defense mechanisms for user authentication on personal devices through ecologically valid evaluations. I am interested in using cross-domain tools and techniques to understand the security and usability aspects of existing security systems, often involving human subjects. My recent work focuses on defending security and privacy of individuals on smartphones through usable and practical controls for user to device authentication. I have published at prestigious venues including ACM MobiCom, ACM CCS, ACM MobiSys, and ACM CHI. Some of my research work has been featured by The Globe and Mail, MSNBC, Bruce Schneier's blog, and New Scientist.

  • Security and Privacy
  • Mobile Systems
  • Usable Security
  • User Authentication
  • Applied Machine Learning
  • H. Khan, U. Hengartner, and D. Vogel. Augmented Reality-based Mimicry Attacks on Behaviour-Based Smartphone Authentication. Proc. of 16th Annual International Conference on Mobile Systems, Applications, and Services (MobiSys 2018), ACM, 2018.
  • H. Khan, U. Hengartner, and D. Vogel. Evaluating Attack and Defense Strategies for Smartphone PIN Shoulder Surfing. Proc. of SIGCHI Annual Conference on Human Factors in Computing Systems (CHI 2018), ACM, 2018.
  • H. Khan, U. Hengartner, and D. Vogel. Targeted Mimicry Attacks on Touch Input Based Implicit Authentication Schemes. Proc. of 14th Annual International Conference on Mobile Systems, Applications, and Services (MobiSys 2016), ACM, 2016.
  • H. Khan, A. Atwater, and U. Hengartner. A Comparative Evaluation of Implicit Authentication Schemes. Proc. of 17th International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2014), Springer, 2014.
  • H. Khan, A. Atwater, and U. Hengartner. Itus: An Implicit Authentication Framework for Android. Proc. of 20th Annual International Conference on Mobile Computing and Networking (MobiCom 2014), ACM, 2014.