Damien Octeau

me Damien Octeau
Google Inc.

Email: octeau 'at' cs 'dot' wisc 'dot' edu

I am a Software Engineer at Google working in the area of mobile security. My research interests are in software security, mobile security and program analysis. I was previously a Research Associate with a joint appointment in Computer Sciences at the University of Wisconsin-Madison and in Computer Science and Engineering at Penn State University. I was working with Professors Somesh Jha and Patrick McDaniel.

I received my Ph.D. at Penn State in 2014. I also received a diplôme d'ingénieur (Master's degree in Engineering Sciences) from Ecole Centrale de Lyon in 2010 and a Master of Science in Computer Science and Engineering from Penn State University in 2010.

My research focuses on the formal analysis of the security and privacy of application code. One of my areas of focus is the analysis of mobile applications. Through the use and design of formally grounded static program analysis techniques, my research seeks to measure the security guarantees provided by programs.

Information on my ded and Dare research on retargeting Android applications to Java bytecode can be found at siis.cse.psu.edu/ded and siis.cse.psu.edu/dare, respectively.

Information on my research on composite constant propagation is available at siis.cse.psu.edu/coal. Details on its application to inferring inter-component communication in Android are available at siis.cse.psu.edu/ic3.

Information on my research on augmenting static analysis results with probabilistic models is available at siis.cse.psu.edu/primo.

Selected Publications

Damien Octeau, Daniel Luchaup, Somesh Jha, and Patrick McDaniel. Composite Constant Propagation and its Application to Android Program Analysis. IEEE Transactions of Software Engineering (TSE), vol. 42, no. 11, pp. 999-1014, November 2016.

Michael Backes, Sven Bugiel, Erik Derr, Patrick McDaniel, Damien Octeau, and Sebastian Weisgerber. On Demystifying the Android Application Framework: Re-Visiting Android Permission Specification Analysis. Proceedings of the 25th USENIX Security Symposium, August 2016, Austin, TX. Acceptance rate: 15.6%.

Damien Octeau, Somesh Jha, Matthew Dering, Patrick McDaniel, Alexandre Bartel, Li Li, Jacques Klein, and Yves Le Traon. Combining Static Analysis with Probabilistic Models to Enable Market-Scale Android Inter-Component Analysis. Proceedings of the 43rd ACM SIGPLAN-SIGACT Symposium on Principles of Programming Languages (POPL), January 2016. St. Petersburg, Florida, USA. Acceptance rate: 23.3%.

Damien Octeau, Daniel Luchaup, Matthew Dering, Somesh Jha, and Patrick McDaniel. Composite Constant Propagation: Application to Android Inter-Component Communication Analysis. Proceedings of the 37th International Conference on Software Engineering (ICSE), May 2015. Florence, Italy. Acceptance rate: 18.5%.

Damien Octeau, Somesh Jha, and Patrick McDaniel. Retargeting Android Applications to Java Bytecode. Proceedings of the 20th International Symposium on the Foundations of Software Engineering, November 2012. Cary, NC. Acceptance rate: 17.4%. Best Artifact Award