{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,21]],"date-time":"2026-06-21T13:02:45Z","timestamp":1782046965707,"version":"3.54.5"},"publisher-location":"Cham","reference-count":34,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783030129804","type":"print"},{"value":"9783030129811","type":"electronic"}],"license":[{"start":{"date-parts":[[2019,1,1]],"date-time":"2019-01-01T00:00:00Z","timestamp":1546300800000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019]]},"DOI":"10.1007\/978-3-030-12981-1_23","type":"book-chapter","created":{"date-parts":[[2019,2,6]],"date-time":"2019-02-06T11:59:55Z","timestamp":1549454395000},"page":"329-345","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["MUI-defender: CNN-Driven, Network Flow-Based Information Theft Detection for Mobile Users"],"prefix":"10.1007","author":[{"given":"Zhenyu","family":"Cheng","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Xunxun","family":"Chen","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Yongzheng","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Shuhao","family":"Li","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jian","family":"Xu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2019,2,7]]},"reference":[{"key":"23_CR1","unstructured":"Cisco visual networking index: Global mobile data traffic forecast update, 2016\u20132021 white paper. \n                    https:\/\/goo.gl\/ylTuVx\n                    \n                  . Accessed 28 Mar 2017"},{"issue":"6","key":"23_CR2","doi-asserted-by":"publisher","first-page":"259","DOI":"10.1145\/2666356.2594299","volume":"49","author":"S Arzt","year":"2014","unstructured":"Arzt, S., et al.: Flowdroid: precise context, flow, field, object-sensitive and lifecycle-aware taint analysis for Android apps. ACM Sigplan Not. 49(6), 259\u2013269 (2014)","journal-title":"ACM Sigplan Not."},{"key":"23_CR3","unstructured":"Atkins, J.B., Dobson, R.W.A.: Monitoring system for a mobile communication network for traffic analysis using a hierarchical approach. US Patent 7,830,812, 9 Nov 2010"},{"key":"23_CR4","doi-asserted-by":"crossref","unstructured":"Barford, P., Kline, J., Plonka, D., Ron, A.: A signal analysis of network traffic anomalies. In: Proceedings of the 2nd ACM SIGCOMM Workshop on Internet measurement, pp. 71\u201382. ACM (2002)","DOI":"10.1145\/637209.637210"},{"key":"23_CR5","doi-asserted-by":"crossref","unstructured":"Barford, P., Plonka, D.: Characteristics of network traffic flow anomalies. In: Proceedings of the 1st ACM SIGCOMM Workshop on Internet Measurement, pp. 69\u201373. ACM (2001)","DOI":"10.1145\/505208.505211"},{"key":"23_CR6","doi-asserted-by":"crossref","unstructured":"Benson, T., Akella, A., Maltz, D.A.: Network traffic characteristics of data centers in the wild. In: Proceedings of the 10th ACM SIGCOMM Conference on Internet Measurement, pp. 267\u2013280. ACM (2010)","DOI":"10.1145\/1879141.1879175"},{"key":"23_CR7","doi-asserted-by":"crossref","unstructured":"Beresford, A.R., Rice, A., Skehin, N., Sohan, R.: Mockdroid: trading privacy for application functionality on smartphones. In: Proceedings of the 12th Workshop on Mobile Computing Systems and Applications, pp. 49\u201354. ACM (2011)","DOI":"10.1145\/2184489.2184500"},{"key":"23_CR8","unstructured":"Chandra, R.: Network traffic monitoring for search popularity analysis. US Patent 7,594,011, 22 Sept 2009"},{"key":"23_CR9","doi-asserted-by":"crossref","unstructured":"Conti, M., Mancini, L.V., Spolaor, R., Verde, N.V.: Can\u2019t you hear me knocking: identification of user actions on Android apps via traffic analysis. In: Proceedings of the 5th ACM Conference on Data and Application Security and Privacy, pp. 297\u2013304. ACM (2015)","DOI":"10.1145\/2699026.2699119"},{"issue":"1","key":"23_CR10","doi-asserted-by":"publisher","first-page":"114","DOI":"10.1109\/TIFS.2015.2478741","volume":"11","author":"M Conti","year":"2016","unstructured":"Conti, M., Mancini, L.V., Spolaor, R., Verde, N.V.: Analyzing Android encrypted network traffic to identify user actions. IEEE Trans. Inf. Forensics Secur. 11(1), 114\u2013125 (2016)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"issue":"2","key":"23_CR11","doi-asserted-by":"publisher","first-page":"159","DOI":"10.1016\/j.pmcj.2005.12.003","volume":"2","author":"J Deng","year":"2006","unstructured":"Deng, J., Han, R., Mishra, S.: Decorrelating wireless sensor network traffic to inhibit traffic analysis attacks. Perv. Mob. Comput. 2(2), 159\u2013186 (2006)","journal-title":"Perv. Mob. Comput."},{"key":"23_CR12","unstructured":"Desnos, A., et al.: Androguard: Reverse engineering, malware and goodware analysis of android applications (2013). \n                    google.com\/p\/androguard"},{"issue":"3","key":"23_CR13","doi-asserted-by":"publisher","first-page":"99","DOI":"10.1145\/2494522","volume":"57","author":"W Enck","year":"2014","unstructured":"Enck, W., et al.: Taintdroid: an information flow tracking system for real-time privacy monitoring on smartphones. Commun. ACM 57(3), 99\u2013106 (2014)","journal-title":"Commun. ACM"},{"key":"23_CR14","doi-asserted-by":"crossref","unstructured":"Falaki, H., Lymberopoulos, D., Mahajan, R., Kandula, S., Estrin, D.: A first look at traffic on smartphones. In: Proceedings of the 10th ACM SIGCOMM Conference on Internet Measurement, pp. 281\u2013287. ACM (2010)","DOI":"10.1145\/1879141.1879176"},{"key":"23_CR15","doi-asserted-by":"crossref","unstructured":"Fusco, F., Deri, L.: High speed network traffic analysis with commodity multi-core systems. In: Proceedings of the 10th ACM SIGCOMM Conference on Internet Measurement, pp. 218\u2013224. ACM (2010)","DOI":"10.1145\/1879141.1879169"},{"key":"23_CR16","doi-asserted-by":"crossref","unstructured":"Grace, M., Zhou, Y., Zhang, Q., Zou, S., Jiang, X.: RiskRanker: scalable and accurate zero-day android malware detection. In: Proceedings of the 10th International Conference on Mobile Systems, Applications, and Services, pp. 281\u2013294. ACM (2012)","DOI":"10.1145\/2307636.2307663"},{"key":"23_CR17","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"171","DOI":"10.1007\/3-540-36467-6_13","volume-title":"Privacy Enhancing Technologies","author":"A Hintz","year":"2003","unstructured":"Hintz, A.: Fingerprinting websites using traffic analysis. In: Dingledine, R., Syverson, P. (eds.) PET 2002. LNCS, vol. 2482, pp. 171\u2013178. Springer, Heidelberg (2003). \n                    https:\/\/doi.org\/10.1007\/3-540-36467-6_13"},{"key":"23_CR18","doi-asserted-by":"crossref","unstructured":"Lakhina, A., Papagiannaki, K., Crovella, M., Diot, C., Kolaczyk, E.D., Taft, N.: Structural analysis of network traffic flows. In: ACM SIGMETRICS Performance Evaluation Review, vol. 32, pp. 61\u201372. ACM (2004)","DOI":"10.1145\/1012888.1005697"},{"issue":"11","key":"23_CR19","doi-asserted-by":"publisher","first-page":"2278","DOI":"10.1109\/5.726791","volume":"86","author":"Y LeCun","year":"1998","unstructured":"LeCun, Y., Bottou, L., Bengio, Y., Haffner, P.: Gradient-based learning applied to document recognition. Proc. IEEE 86(11), 2278\u20132324 (1998)","journal-title":"Proc. IEEE"},{"key":"23_CR20","doi-asserted-by":"crossref","unstructured":"Liberatore, M., Levine, B.N.: Inferring the source of encrypted HTTP connections. In: Proceedings of the 13th ACM Conference on Computer and Communications Security, pp. 255\u2013263. ACM (2006)","DOI":"10.1145\/1180405.1180437"},{"key":"23_CR21","unstructured":"Mah, B.A.: An empirical model of HTTP network traffic. In: Proceedings of Sixteenth Annual Joint Conference of the IEEE Computer and Communications Societies. Driving the Information Revolution, INFOCOM 1997, vol. 2, pp. 592\u2013600. IEEE (1997)"},{"key":"23_CR22","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-74048-3","volume-title":"Information Retrieval for Music and Motion","author":"M M\u00fcller","year":"2007","unstructured":"M\u00fcller, M.: Information Retrieval for Music and Motion, vol. 2. Springer, Heidelberg (2007). \n                    https:\/\/doi.org\/10.1007\/978-3-540-74048-3"},{"key":"23_CR23","doi-asserted-by":"crossref","unstructured":"Neasbitt, C., Perdisci, R., Li, K., Nelms, T.: ClickMiner: towards forensic reconstruction of user-browser interactions from network traces. In: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, pp. 1244\u20131255. ACM (2014)","DOI":"10.1145\/2660267.2660268"},{"key":"23_CR24","doi-asserted-by":"crossref","unstructured":"Qadeer, M.A., Iqbal, A., Zahid, M., Siddiqui, M.R.: Network traffic analysis and intrusion detection using packet sniffer. In: Second International Conference on Communication Software and Networks, ICCSN 2010, pp. 313\u2013317. IEEE (2010)","DOI":"10.1109\/ICCSN.2010.104"},{"key":"23_CR25","unstructured":"Schmidt, A.D., et al.: Enhancing security of Linux-based Android devices. In: Proceedings of 15th International Linux Kongress. Lehmann (2008)"},{"key":"23_CR26","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.cose.2014.02.009","volume":"43","author":"A Shabtai","year":"2014","unstructured":"Shabtai, A., Tenenboim-Chekina, L., Mimran, D., Rokach, L., Shapira, B., Elovici, Y.: Mobile malware detection through analysis of deviations in application network behavior. Comput. Secur. 43, 1\u201318 (2014)","journal-title":"Comput. Secur."},{"issue":"1","key":"23_CR27","doi-asserted-by":"publisher","first-page":"3","DOI":"10.1109\/TMC.2010.133","volume":"10","author":"C Sommer","year":"2011","unstructured":"Sommer, C., German, R., Dressler, F.: Bidirectionally coupled network and road traffic simulation for improved IVC analysis. IEEE Trans. Mob. Comput. 10(1), 3\u201315 (2011)","journal-title":"IEEE Trans. Mob. Comput."},{"key":"23_CR28","doi-asserted-by":"crossref","unstructured":"St\u00f6ber, T., Frank, M., Schmitt, J., Martinovic, I.: Who do you sync you are?: smartphone fingerprinting via application behaviour. In: Proceedings of the Sixth ACM Conference on Security and Privacy in Wireless and Mobile Networks, pp. 7\u201312. ACM (2013)","DOI":"10.1145\/2462096.2462099"},{"issue":"4","key":"23_CR29","first-page":"58","volume":"47","author":"DJ Tan","year":"2015","unstructured":"Tan, D.J., Chua, T.W., Thing, V.L., et al.: Securing Android: a survey, taxonomy, and challenges. ACM Comput. Surv. (CSUR) 47(4), 58 (2015)","journal-title":"ACM Comput. Surv. (CSUR)"},{"key":"23_CR30","doi-asserted-by":"crossref","unstructured":"Tang, D., Baker, M.: Analysis of a local-area wireless network. In: Proceedings of the 6th Annual International Conference on Mobile Computing and Networking, pp. 1\u201310. ACM (2000)","DOI":"10.1145\/345910.345912"},{"key":"23_CR31","doi-asserted-by":"crossref","unstructured":"Wei, X., Gomez, L., Neamtiu, I., Faloutsos, M.: Profiledroid: multi-layer profiling of android applications. In: Proceedings of the 18th Annual International Conference on Mobile Computing and Networking, pp. 137\u2013148. ACM (2012)","DOI":"10.1145\/2348543.2348563"},{"issue":"4","key":"23_CR32","doi-asserted-by":"publisher","first-page":"1381","DOI":"10.1109\/TIFS.2012.2197392","volume":"7","author":"S Yu","year":"2012","unstructured":"Yu, S., Zhao, G., Dou, W., James, S.: Predicted packet padding for anonymous web browsing against traffic analysis attacks. IEEE Trans. Inf. Forensics Secur. 7(4), 1381\u20131393 (2012)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"23_CR33","doi-asserted-by":"crossref","unstructured":"Zhou, Y., Jiang, X.: Dissecting android malware: characterization and evolution. In: 2012 IEEE Symposium on Security and Privacy (SP), pp. 95\u2013109. IEEE (2012)","DOI":"10.1109\/SP.2012.16"},{"key":"23_CR34","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"93","DOI":"10.1007\/978-3-642-21599-5_7","volume-title":"Trust and Trustworthy Computing","author":"Y Zhou","year":"2011","unstructured":"Zhou, Y., Zhang, X., Jiang, X., Freeh, V.W.: Taming information-stealing smartphone applications (on Android). In: McCune, J.M., Balacheff, B., Perrig, A., Sadeghi, A.-R., Sasse, A., Beres, Y. (eds.) Trust 2011. LNCS, vol. 6740, pp. 93\u2013107. Springer, Heidelberg (2011). \n                    https:\/\/doi.org\/10.1007\/978-3-642-21599-5_7"}],"container-title":["Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering","Collaborative Computing: Networking, Applications and Worksharing"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-030-12981-1_23","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,21]],"date-time":"2019-05-21T01:19:01Z","timestamp":1558401541000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-030-12981-1_23"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019]]},"ISBN":["9783030129804","9783030129811"],"references-count":34,"URL":"https:\/\/doi.org\/10.1007\/978-3-030-12981-1_23","relation":{},"ISSN":["1867-8211","1867-822X"],"issn-type":[{"value":"1867-8211","type":"print"},{"value":"1867-822X","type":"electronic"}],"subject":[],"published":{"date-parts":[[2019]]},"assertion":[{"value":"7 February 2019","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"CollaborateCom","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Collaborative Computing: Networking, Applications and Worksharing","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Shanghai","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2018","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"1 December 2018","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"3 December 2018","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"14","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"colcom2018","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/collaboratecom.eai-conferences.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Single-blind","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"http:\/\/confy.eai.eu","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"77","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"33","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"20","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"43% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information"}}]}}