{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,4,18]],"date-time":"2025-04-18T05:14:12Z","timestamp":1744953252130,"version":"3.40.3"},"publisher-location":"Cham","reference-count":18,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031491863"},{"type":"electronic","value":"9783031491870"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-49187-0_12","type":"book-chapter","created":{"date-parts":[[2023,11,30]],"date-time":"2023-11-30T12:02:36Z","timestamp":1701345756000},"page":"226-245","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Certificate Reuse in\u00a0Android Applications"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0009-0009-7206-8614","authenticated-orcid":false,"given":"Fatemeh","family":"Nezhadian","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6316-7789","authenticated-orcid":false,"given":"Enrico","family":"Branca","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1923-319X","authenticated-orcid":false,"given":"Natalia","family":"Stakhanova","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2023,12,1]]},"reference":[{"key":"12_CR1","doi-asserted-by":"crossref","unstructured":"Allix, K., Bissyand\u00e9, T.F., Klein, J., Traon, Y.L.: AndroZoo: collecting millions of Android apps for the research community. In: 2016 IEEE\/ACM 13th Working Conference on Mining Software Repositories (MSR), pp. 468\u2013471 (2016)","DOI":"10.1145\/2901739.2903508"},{"key":"12_CR2","doi-asserted-by":"crossref","unstructured":"Barker, E., Chen, L., Roginsky, A., Vassilev, A., Davis, R., Simon, S.: Recommendation for pair-wise key establishment using integer factorization cryptography. Technical report, National Institute of Standards and Technology, Gaithersburg, MD (2019). https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-56Br2.pdf","DOI":"10.6028\/NIST.SP.800-56Br2"},{"key":"12_CR3","doi-asserted-by":"publisher","unstructured":"Boeyen, S., Santesson, S., Polk, T., Housley, R., Farrell, S., Cooper, D.: Internet X.509 public key infrastructure certificate and certificate revocation list (CRL) profile. RFC 5280 (2008). https:\/\/doi.org\/10.17487\/RFC5280. https:\/\/www.rfc-editor.org\/info\/rfc5280","DOI":"10.17487\/RFC5280"},{"key":"12_CR4","doi-asserted-by":"crossref","unstructured":"Egele, M., Brumley, D., Fratantonio, Y., Kruegel, C.: An empirical study of cryptographic misuse in Android applications. In: Proceedings of the 2013 ACM SIGSAC Conference on Computer & Communications Security, CCS 2013, pp. 73\u201384. Association for Computing Machinery, New York (2013)","DOI":"10.1145\/2508859.2516693"},{"key":"12_CR5","doi-asserted-by":"crossref","unstructured":"Fahl, S., Dechand, S., Perl, H., Fischer, F., Smrcek, J., Smith, M.: Hey, NSA: stay away from my market! Future proofing app markets against powerful attackers. In: Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security, CCS 2014, pp. 1143\u20131155. Association for Computing Machinery (2014)","DOI":"10.1145\/2660267.2660311"},{"key":"12_CR6","unstructured":"Falliere, N., Murchu, L., Chien, E.: W32.Stuxnet Dossier (2010). https:\/\/www.wired.com\/images_blogs\/threatlevel\/2010\/11\/w32_stuxnet_dossier.pdf"},{"key":"12_CR7","doi-asserted-by":"crossref","unstructured":"Gao, J., Kong, P., Li, L., Bissyand\u00e9, T.F., Klein, J.: Negative results on mining crypto-API usage rules in Android apps. In: 2019 IEEE\/ACM 16th International Conference on Mining Software Repositories (MSR), pp. 388\u2013398 (2019)","DOI":"10.1109\/MSR.2019.00065"},{"key":"12_CR8","unstructured":"Kang, H., Jang, J.W., Mohaisen, A., Kim, H.K.: AndroTracker: creator information based Android malware classification system (2014)"},{"key":"12_CR9","doi-asserted-by":"crossref","unstructured":"Kim, D., Kwon, B.J., Dumitra\u015f, T.: Certified malware: measuring breaches of trust in the windows code-signing PKI. In: Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS 2017, pp. 1435\u20131448. Association for Computing Machinery, New York (2017)","DOI":"10.1145\/3133956.3133958"},{"key":"12_CR10","doi-asserted-by":"crossref","unstructured":"Li, J., Lin, Z., Caballero, J., Zhang, Y., Gu, D.: K-Hunt: pinpointing insecure cryptographic keys from execution traces. In: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, CCS 2018, pp. 412\u2013425. ACM, New York (2018)","DOI":"10.1145\/3243734.3243783"},{"key":"12_CR11","doi-asserted-by":"crossref","unstructured":"Li, X., Jiang, J., Benton, S., Xiong, Y., Zhang, L.: A large-scale study on API misuses in the wild. In: 2021 14th IEEE Conference on Software Testing, Verification and Validation (ICST), Los Alamitos, CA, USA, pp. 241\u2013252. IEEE Computer Society (2021)","DOI":"10.1109\/ICST49551.2021.00034"},{"key":"12_CR12","doi-asserted-by":"crossref","unstructured":"Muslukhov, I., Boshmaf, Y., Beznosov, K.: Source attribution of cryptographic API misuse in Android applications. In: Proceedings of the 2018 on Asia Conference on Computer and Communications Security, ASIACCS 2018, pp. 133\u2013146. Association for Computing Machinery, New York (2018)","DOI":"10.1145\/3196494.3196538"},{"key":"12_CR13","doi-asserted-by":"crossref","unstructured":"Piccolboni, L., Guglielmo, G.D., Carloni, L.P., Sethumadhavan, S.: CRYLOGGER: detecting crypto misuses dynamically. In: 2021 IEEE Symposium on Security and Privacy (SP). IEEE (2021)","DOI":"10.1109\/SP40001.2021.00010"},{"key":"12_CR14","doi-asserted-by":"crossref","unstructured":"Rahaman, S., et al.: CryptoGuard: high precision detection of cryptographic vulnerabilities in massive-sized Java projects. In: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security, CCS 2019, pp. 2455\u20132472. Association for Computing Machinery, New York (2019)","DOI":"10.1145\/3319535.3345659"},{"key":"12_CR15","unstructured":"Research, K.L.G., Team, A.: The Duqu 2.0 persistence module (2015). https:\/\/securelist.com\/blog\/research\/70641\/the-duqu-2-0-persistence-module\/"},{"key":"12_CR16","doi-asserted-by":"crossref","unstructured":"Wickert, A.K., Baumg\u00e4rtner, L., Schlichtig, M., Narasimhan, K., Mezini, M.: To fix or not to fix: a critical study of crypto-misuses in the wild. In: 2022 IEEE International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom), Los Alamitos, CA, USA, pp. 315\u2013322. IEEE Computer Society (2022)","DOI":"10.1109\/TrustCom56396.2022.00051"},{"key":"12_CR17","unstructured":"Zhang, L., Chen, J., Diao, W., Guo, S., Weng, J., Zhang, K.: CryptoREX: large-scale analysis of cryptographic misuse in IoT devices. In: 22nd International Symposium on Research in Attacks, Intrusions and Defenses (RAID 2019), Chaoyang District, Beijing, pp. 151\u2013164. USENIX Association (2019)"},{"key":"12_CR18","doi-asserted-by":"crossref","unstructured":"Zhang, Z., Diao, W., Hu, C., Guo, S., Zuo, C., Li, L.: An empirical study of potentially malicious third-party libraries in Android apps. In: Proceedings of the 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks, WiSec 2020, pp. 144\u2013154. Association for Computing Machinery, New York (2020)","DOI":"10.1145\/3395351.3399346"}],"container-title":["Lecture Notes in Computer Science","Information Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-49187-0_12","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,4,8]],"date-time":"2025-04-08T21:35:26Z","timestamp":1744148126000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-49187-0_12"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031491863","9783031491870"],"references-count":18,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-49187-0_12","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"1 December 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ISC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Groningen","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"The Netherlands","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"15 November 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"17 November 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"isw2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/isc23.cs.rug.nl\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}