{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T00:53:40Z","timestamp":1740099220227,"version":"3.37.3"},"publisher-location":"Cham","reference-count":31,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783030048334"},{"type":"electronic","value":"9783030048341"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-030-04834-1_19","type":"book-chapter","created":{"date-parts":[[2018,11,29]],"date-time":"2018-11-29T07:46:31Z","timestamp":1543477591000},"page":"375-404","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Static Analysis for Security Vetting of Android Apps"],"prefix":"10.1007","author":[{"given":"Sankardas","family":"Roy","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Dewan","family":"Chaulagain","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shiva","family":"Bhusal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,11,30]]},"reference":[{"key":"19_CR1","unstructured":"Malware displaying porn ads discovered in game apps on Google Play. https:\/\/blog.checkpoint.com\/2018\/01\/"},{"key":"19_CR2","unstructured":"Market Share: Devices, all countries, 4Q14 update. http:\/\/www.gartner.com\/newsroom\/id\/2996817"},{"key":"19_CR3","series-title":"Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1007\/978-3-319-04283-1_6","volume-title":"Security and Privacy in Communication Networks","author":"Y Aafer","year":"2013","unstructured":"Aafer, Y., Du, W., Yin, H.: DroidAPIMiner: mining API-level features for robust malware detection in android. In: Zia, T., Zomaya, A., Varadharajan, V., Mao, M. (eds.) SecureComm 2013. LNICST, vol. 127, pp. 86\u2013103. Springer, Cham (2013). https:\/\/doi.org\/10.1007\/978-3-319-04283-1_6"},{"key":"19_CR4","doi-asserted-by":"crossref","unstructured":"Arzt, S., et al.: FlowDroid: precise context, flow, field, object-sensitive and lifecycle-aware taint analysis for Android apps. In: Proceedings of the ACM PLDI (2014)","DOI":"10.1145\/2666356.2594299"},{"key":"19_CR5","unstructured":"G-Bouncer (2012). http:\/\/googlemobile.blogspot.com\/2012\/02\/android-and-security.html"},{"key":"19_CR6","doi-asserted-by":"crossref","unstructured":"Chen, S., Xue, M., Tang, Z., Xu, L., Zhu, H.: StormDroid: a streaminglized machine learning-based system for detecting android malware. In: Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security, ASIA CCS 2016, pp. 377\u2013388 (2016)","DOI":"10.1145\/2897845.2897860"},{"key":"19_CR7","doi-asserted-by":"crossref","unstructured":"Chin, E., Felt, A.P., Greenwood, K., Wagner, D.: Analyzing inter-application communication in Android. In: Proceedings of the ACM Mobisys (2011)","DOI":"10.1145\/1999995.2000018"},{"key":"19_CR8","unstructured":"Enck, W., et al.: TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones. In: Proceedings of the USENIX OSDI (2010)"},{"key":"19_CR9","doi-asserted-by":"crossref","unstructured":"Fahl, S., Harbach, M., Muders, T., Baumg\u00e4rtner, L., Freisleben, B., Smith, M.: Why Eve and Mallory love android: an analysis of android SSL (in) security. In: Proceedings of the ACM CCS (2012)","DOI":"10.1145\/2382196.2382205"},{"key":"19_CR10","doi-asserted-by":"crossref","unstructured":"Gordon, M.I., Kim, D., Perkins, J.H., Gilham, L., Nguyen, N., Rinard, M.C.: Information flow analysis of android applications in DroidSafe. In: NDSS. Citeseer (2015)","DOI":"10.14722\/ndss.2015.23089"},{"key":"19_CR11","doi-asserted-by":"crossref","unstructured":"Grace, M.C., Zhou, W., Jiang, X., Sadeghi, A.R.: Unsafe exposure analysis of mobile in-app advertisements. In: Proceedings of the ACM Conference on Security and Privacy in Wireless and Mobile Networks (2012)","DOI":"10.1145\/2185448.2185464"},{"key":"19_CR12","doi-asserted-by":"crossref","unstructured":"Hassanshahi, B., Yap, R.H.: Android database attacks revisited. In: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, ASIA CCS 2017, pp. 625\u2013639 (2017)","DOI":"10.1145\/3052973.3052994"},{"key":"19_CR13","doi-asserted-by":"crossref","unstructured":"Jing, Y., Ahn, G.J., Doup\u00e9, A., Yi, J.H.: Checking intent-based communication in android with intent space analysis. In: Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security, ASIA CCS 2016, pp. 735\u2013746 (2016)","DOI":"10.1145\/2897845.2897904"},{"key":"19_CR14","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"153","DOI":"10.1007\/3-540-36579-6_12","volume-title":"Compiler Construction","author":"O Lhot\u00e1k","year":"2003","unstructured":"Lhot\u00e1k, O., Hendren, L.: Scaling Java points-to analysis using Spark. In: Hedin, G. (ed.) CC 2003. LNCS, vol. 2622, pp. 153\u2013169. Springer, Heidelberg (2003). https:\/\/doi.org\/10.1007\/3-540-36579-6_12"},{"key":"19_CR15","doi-asserted-by":"crossref","unstructured":"Li, L., et al.: IccTA: detecting inter-component privacy leaks in android apps. In: Proceedings of the 37th International Conference on Software Engineering (ICSE 2015) (2015)","DOI":"10.1109\/ICSE.2015.48"},{"key":"19_CR16","doi-asserted-by":"crossref","unstructured":"Lu, L., Li, Z., Wu, Z., Lee, W., Jiang, G.: CHEX: statically vetting android apps for component hijacking vulnerabilities. In: Proceedings of the ACM CCS (2012)","DOI":"10.1145\/2382196.2382223"},{"key":"19_CR17","doi-asserted-by":"crossref","unstructured":"Mirzaei, O., Suarez-Tangil, G., Tapiador, J., de Fuentes, J.M.: TriFlow: triaging android applications using speculative information flows. In: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, ASIA CCS 2017, pp. 640\u2013651 (2017)","DOI":"10.1145\/3052973.3053001"},{"key":"19_CR18","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-03811-6","volume-title":"Principles of Program Analysis","author":"F Nielson","year":"1999","unstructured":"Nielson, F., Nielson, H.R., Hankin, C.: Principles of Program Analysis. Springer, Heidelberg (1999). https:\/\/doi.org\/10.1007\/978-3-662-03811-6"},{"key":"19_CR19","doi-asserted-by":"crossref","unstructured":"Octeau, D., Luchaup, D., Dering, M., Jha, S., McDaniel, P.: Composite constant propagation: application to android inter-component communication analysis. In: Proceedings of the 37th International Conference on Software Engineering (ICSE) (2015)","DOI":"10.1109\/ICSE.2015.30"},{"key":"19_CR20","unstructured":"Octeau, D., et al.: Effective inter-component communication mapping in Android with Epicc: an essential step towards holistic security analysis. In: Proceedings of the USENIX Security Symposium (2013)"},{"key":"19_CR21","doi-asserted-by":"crossref","unstructured":"Onwuzurike, L., Mariconti, E., Andriotis, P., De Cristofaro, E., Ross, G., Stringhini, G.: MamaDroid: detecting android malware by building Markov chains of behavioral models (extended version) (2017)","DOI":"10.14722\/ndss.2017.23353"},{"key":"19_CR22","doi-asserted-by":"crossref","unstructured":"Reps, T., Horwitz, S., Sagiv, M.: Precise interprocedural dataflow analysis via graph reachability. In: Proceedings of the ACM Symposium on Principles of Programming Languages (1995)","DOI":"10.1145\/199448.199462"},{"key":"19_CR23","doi-asserted-by":"crossref","unstructured":"Sun, M., Wei, T., Lui, J.C.: Taintart: a practical multi-level information-flow tracking system for android runtime. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, CCS 2016, pp. 331\u2013342 (2016)","DOI":"10.1145\/2976749.2978343"},{"key":"19_CR24","unstructured":"Symantec: Internet Security Threat Report. https:\/\/www4.symantec.com\/mktginfo\/whitepaper\/ISTR\/21347932_GA-internet-security-threat-report-volume-20-2015-social_v2.pdf , April 2015"},{"key":"19_CR25","doi-asserted-by":"crossref","unstructured":"Taylor, V.F., Martinovic, I.: To update or not to update: insights from a two-year study of android app evolution. In: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security, ASIA CCS 2017, pp. 45\u201357 (2017)","DOI":"10.1145\/3052973.3052990"},{"key":"19_CR26","unstructured":"TrendMicro: Trendlabssm 1Q 2014 Security Roundup (2014). http:\/\/www.trendmicro.com\/cloud-content\/us\/pdfs\/security-intelligence\/reports\/rpt-cybercrime-hits-the-unexpected.pdf"},{"key":"19_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1007\/3-540-46423-9_2","volume-title":"Compiler Construction","author":"R Vall\u00e9e-Rai","year":"2000","unstructured":"Vall\u00e9e-Rai, R., Gagnon, E., Hendren, L., Lam, P., Pominville, P., Sundaresan, V.: Optimizing Java Bytecode Using the Soot Framework: Is It Feasible? In: Watt, D.A. (ed.) CC 2000. LNCS, vol. 1781, pp. 18\u201334. Springer, Heidelberg (2000). https:\/\/doi.org\/10.1007\/3-540-46423-9_2"},{"key":"19_CR28","unstructured":"WALA: WALA documentation: CallGraph (2014)"},{"key":"19_CR29","doi-asserted-by":"crossref","unstructured":"Wang, K., Zhang, Y., Liu, P.: Call me back!: attacks on system server and system apps in android through synchronous callback. In: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, CCS 2016, pp. 92\u2013103 (2016)","DOI":"10.1145\/2976749.2978342"},{"key":"19_CR30","doi-asserted-by":"crossref","unstructured":"Wei, F., Roy, S., Ou, X., Robby: AmanDroid: a precise and general inter-component data flow analysis framework for security vetting of android apps. In: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, pp. 1329\u20131341. ACM, Scottsdale (2014)","DOI":"10.1145\/2660267.2660357"},{"issue":"3","key":"19_CR31","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3183575","volume":"21","author":"Fengguo Wei","year":"2018","unstructured":"Wei, F., Roy, S., Ou, X., Robby: AmanDroid: a precise and general inter-component data flow analysis framework for security vetting of android apps. ACM Trans. Priv. Secur. 21(3), 14:1\u201314:32 (2018)","journal-title":"ACM Transactions on Privacy and Security"}],"container-title":["Lecture Notes in Computer Science","From Database to Cyber Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-04834-1_19","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,11,6]],"date-time":"2019-11-06T04:11:31Z","timestamp":1573013491000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-04834-1_19"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783030048334","9783030048341"],"references-count":31,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-04834-1_19","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2018]]}}}