{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,3]],"date-time":"2026-03-03T16:13:29Z","timestamp":1772554409872,"version":"3.50.1"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer International Publishing","isbn-type":[{"value":"9783319271361","type":"print"},{"value":"9783319271378","type":"electronic"}],"license":[{"start":{"date-parts":[[2015,1,1]],"date-time":"2015-01-01T00:00:00Z","timestamp":1420070400000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-27137-8_37","type":"book-chapter","created":{"date-parts":[[2015,11,16]],"date-time":"2015-11-16T11:24:23Z","timestamp":1447673063000},"page":"504-516","source":"Crossref","is-referenced-by-count":9,"title":["A Real-time Android Malware Detection System Based on Network Traffic Analysis"],"prefix":"10.1007","author":[{"given":"Hongbo","family":"Han","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhenxiang","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Qiben","family":"Yan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lizhi","family":"Peng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lei","family":"Zhang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,12,16]]},"reference":[{"key":"37_CR1","doi-asserted-by":"crossref","unstructured":"Yajin, Z., Xuxian, J.: Dissecting android malware: characterization and evolution. In: 2012 IEEE Symposium on Security and Privacy (SP), pp. 95\u2013109. IEEE (2012)","DOI":"10.1109\/SP.2012.16"},{"key":"37_CR2","doi-asserted-by":"crossref","unstructured":"Becher, M., Freiling, F.C., Hoffmann, J., Holz T., Uellenbeck, S., Wolf, C.: Mobile security catching up? revealing the nuts and bolts of the security of mobile devices. In: 2011 IEEE Symposium on Security and Privacy (SP), pp. 96\u2013111. IEEE (2011)","DOI":"10.1109\/SP.2011.29"},{"key":"37_CR3","unstructured":"Daniel, A., Michael, S., Malte, H., Hugo, G., Konrad, R., Cert, S.: Effective and Explainable Detection of Android Malware in Your Pocket, DREBIN (2014)"},{"key":"37_CR4","doi-asserted-by":"publisher","first-page":"205","DOI":"10.1016\/j.cose.2014.02.007","volume":"43","author":"Z Fang","year":"2014","unstructured":"Fang, Z., Han, W., Li, Y.: Permission based android security: issues and countermeasures. Comput. Secur. 43, 205\u2013218 (2014)","journal-title":"Comput. Secur."},{"key":"37_CR5","unstructured":"Jesus, F.: Smali: An Assembler\/Disassembler For Androids Dex Format, Google Project Hosting (2013). http:\/\/code.google.com\/p\/smali"},{"key":"37_CR6","unstructured":"Lok-Kwong, Y., Yin, H.: DroidScope: seamlessly reconstructing the OS and Dalvik semantic views for dynamic android malware analysis. In: Usenix Security Symposium, pp. 569\u2013584 (2012)"},{"key":"37_CR7","doi-asserted-by":"crossref","unstructured":"Falaki, H., Lymberopoulos, D., Mahajan, R., Kandula, S., Estrin, D.: A first look at traffic on smartphones. In: Proceedings of the 10th ACM SIGCOMM Conference on Internet Measurement, pp. 281\u2013287. ACM, November 2010","DOI":"10.1145\/1879141.1879176"},{"key":"37_CR8","doi-asserted-by":"crossref","unstructured":"Cheng, J., Wong, S.H.Y., Yang, H., Lu S.: Smartsiren: virus detection and alert for smartphones. In: Proceedings of the 5th International Conference on Mobile Systems, Applications and Services, pp. 258\u2013271. ACM (2007)","DOI":"10.1145\/1247660.1247690"},{"key":"37_CR9","doi-asserted-by":"crossref","unstructured":"Tenenboim-Chekina, L., Barad, O., Shabtai, A., Mimran, D., Shapira, B., Elovici, Y.: Detecting application update attack on mobile devices through network features. In: INFOCOM (2013)","DOI":"10.1109\/INFCOMW.2013.6970755"},{"key":"37_CR10","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1016\/j.cose.2014.02.009","volume":"43","author":"A Shabtai","year":"2014","unstructured":"Shabtai, A., Tenenboim-Chekina, L., Mimran, D., Rokach, L., Shapira, B., Elovici, Y.: Mobile malware detection through analysis of deviations in application network behavior. Comput. Secur. 43, 1\u201318 (2014)","journal-title":"Comput. Secur."},{"key":"37_CR11","doi-asserted-by":"crossref","unstructured":"Jin, R., Wang, B.: Malware detection for mobile devices using software-defined networking. In: 2013 Second GENI Research and Educational Experiment Workshop (GREE), pp. 81\u201388. IEEE (2013)","DOI":"10.1109\/GREE.2013.24"},{"key":"37_CR12","unstructured":"Antonakakis, M., Perdisci, R., Lee, W., Vasiloglou, N., Dagon, D.: Detecting malware domains at the upper DNS hierarchy. In: USENIX Security Symposium (2011)"},{"key":"37_CR13","unstructured":"Bilge, L., Kirda, E., Kruegel, C., Balduzzi, M., Antipolis, S.: EXPOSURE: Finding Malicious Domains Using Passive DNS Analysis, NDSS (2011)"},{"key":"37_CR14","unstructured":"Charles, L., Manos, A., Bradley, R., Patrick, T., Wenke, L.: The core of the matter: analyzing malicious traffic in cellular carriers. In: NDSS (2013)"},{"key":"37_CR15","unstructured":"Kanei, F., Yoshioka, K., Matsumoto, T.: Observing DNS Communication of Android Malware using Sandbox Analysis, Ieice Technical report Information and Communication System Security, 112 (2013)"},{"key":"37_CR16","unstructured":"Mockapetris, P.: Domain Names-Concepts andFacilities. RFC 1034. X.509 Internet Public Key Infrastructure Online Certificate Status Protocol-OCSP. RFC 2560 (1987)"},{"issue":"6","key":"37_CR17","first-page":"697","volume":"19","author":"P Mockapetris","year":"1987","unstructured":"Mockapetris, P.: Domain names-implementation and specification, request for comments 1035. Usc Inf. Sci. Inst. Mar. 19(6), 697 (1987)","journal-title":"Usc Inf. Sci. Inst. Mar."},{"key":"37_CR18","unstructured":"URLVoid. https:\/\/www.urlvoid.com"},{"key":"37_CR19","unstructured":"VirusTotal. https:\/\/www.virustotal.com"},{"key":"37_CR20","unstructured":"Micro, T.: http:\/\/global.sitesafety.trendmicro.com"},{"key":"37_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"192","DOI":"10.1007\/978-3-319-08509-8_11","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"S Schiavoni","year":"2014","unstructured":"Schiavoni, S., Maggi, F., Cavallaro, L., Zanero, S.: Phoenix: DGA-based botnet tracking and intelligence. In: Dietrich, S. (ed.) DIMVA 2014. LNCS, vol. 8550, pp. 192\u2013211. Springer, Heidelberg (2014)"}],"container-title":["Lecture Notes in Computer Science","Algorithms and Architectures for Parallel Processing"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-27137-8_37","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,31]],"date-time":"2025-05-31T12:04:54Z","timestamp":1748693094000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-27137-8_37"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319271361","9783319271378"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-27137-8_37","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015]]}}}