{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,30]],"date-time":"2026-03-30T02:31:12Z","timestamp":1774837872013,"version":"3.50.1"},"publisher-location":"Berlin, Heidelberg","reference-count":38,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783642402029","type":"print"},{"value":"9783642402036","type":"electronic"}],"license":[{"start":{"date-parts":[[2013,1,1]],"date-time":"2013-01-01T00:00:00Z","timestamp":1356998400000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-40203-6_43","type":"book-chapter","created":{"date-parts":[[2013,8,14]],"date-time":"2013-08-14T02:48:53Z","timestamp":1376448533000},"page":"775-792","source":"Crossref","is-referenced-by-count":35,"title":["Run-Time Enforcement of Information-Flow Properties on Android"],"prefix":"10.1007","author":[{"given":"Limin","family":"Jia","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jassim","family":"Aljuraidan","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Elli","family":"Fragkaki","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lujo","family":"Bauer","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Michael","family":"Stroucken","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kazuhide","family":"Fukushima","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shinsaku","family":"Kiyomoto","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yutaka","family":"Miyake","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"43_CR1","unstructured":"Aljuraidan, J., Fragkaki, E., Bauer, L., Jia, L., Fukushima, K., Kiyomoto, S., Miyake, Y.: Run-time enforcement of information-flow properties on Android. Technical Report CMU-CyLab-12-015, Carnegie Mellon University (2012)"},{"key":"43_CR2","doi-asserted-by":"crossref","unstructured":"Arden, O., George, M.D., Liu, J., Vikram, K., Askarov, A., Myers, A.C.: Sharing mobile code securely with information flow control. In: Proc. IEEE S&P (2012)","DOI":"10.1109\/SP.2012.22"},{"key":"43_CR3","doi-asserted-by":"crossref","unstructured":"Austin, T.H., Flanagan, C.: Multiple facets for dynamic information flow. In: Proc. POPL (2012)","DOI":"10.1145\/2103656.2103677"},{"key":"43_CR4","doi-asserted-by":"crossref","unstructured":"Bohannon, A., Pierce, B.C., Sj\u00f6berg, V., Weirich, S., Zdancewic, S.: Reactive noninterference. In: Proc. CCS (2009)","DOI":"10.1145\/1653662.1653673"},{"key":"43_CR5","unstructured":"Bugiel, S., Davi, L., Dmitrienko, A., Fischer, T., Sadeghi, A.R., Shastry, B.: Towards taming privilege-escalation attacks on Android. In: Proc. NDSS (2012)"},{"key":"43_CR6","doi-asserted-by":"crossref","unstructured":"Chaudhuri, A.: Language-based security on Android. In: Proc. PLAS (2009)","DOI":"10.1145\/1554339.1554341"},{"key":"43_CR7","doi-asserted-by":"crossref","unstructured":"Chin, E., Felt, A.P., Greenwood, K., Wagner, D.: Analyzing inter-application communication in Android. In: Proc. MobiSys (2011)","DOI":"10.1145\/1999995.2000018"},{"key":"43_CR8","doi-asserted-by":"crossref","unstructured":"Chudnov, A., Naumann, D.A.: Information flow monitor inlining. In: Proc. IEEE CSF (2010)","DOI":"10.1109\/CSF.2010.21"},{"key":"43_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"346","DOI":"10.1007\/978-3-642-18178-8_30","volume-title":"Information Security","author":"L. Davi","year":"2011","unstructured":"Davi, L., Dmitrienko, A., Sadeghi, A.-R., Winandy, M.: Privilege escalation attacks on Android. In: Burmester, M., Tsudik, G., Magliveras, S., Ili\u0107, I. (eds.) ISC 2010. LNCS, vol.\u00a06531, pp. 346\u2013360. Springer, Heidelberg (2011)"},{"key":"43_CR10","unstructured":"Dietz, M., Shekhar, S., Pisetsky, Y., Shu, A., Wallach, D.S.: Quire: Lightweight provenance for smart phone operating systems. In: Proc. USENIX Sec. (2011)"},{"key":"43_CR11","unstructured":"Enck, W., Gilbert, P., gon Chun, B., Cox, L.P., Jung, J., McDaniel, P., Sheth, A.N.: TaintDroid: An information-flow tracking system for realtime privacy monitoring on smartphones. In: Proc. OSDI (2010)"},{"key":"43_CR12","unstructured":"Enck, W., Octeau, D., McDaniel, P., Chaudhuri, S.: A study of Android application security. In: Proc. USENIX Sec. (2011)"},{"key":"43_CR13","unstructured":"Felt, A.P., Wang, H., Moshchuk, A., Hanna, S., Chin, E.: Permission re-delegation: Attacks and defenses. In: Proc. USENIX Sec. (2011)"},{"key":"43_CR14","doi-asserted-by":"crossref","first-page":"5","DOI":"10.3233\/JCS-1994\/1995-3103","volume":"3","author":"R. Focardi","year":"1994","unstructured":"Focardi, R., Gorrieri, R.: A classification of security properties for process algebras. J. of Comput. Secur.\u00a03, 5\u201333 (1994)","journal-title":"J. of Comput. Secur."},{"key":"43_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-642-33167-1_1","volume-title":"Computer Security \u2013 ESORICS 2012","author":"E. Fragkaki","year":"2012","unstructured":"Fragkaki, E., Bauer, L., Jia, L., Swasey, D.: Modeling and enhancing android\u2019s permission system. In: Foresti, S., Yung, M., Martinelli, F. (eds.) ESORICS 2012. LNCS, vol.\u00a07459, pp. 1\u201318. Springer, Heidelberg (2012)"},{"key":"43_CR16","doi-asserted-by":"crossref","unstructured":"Hedin, D., Sabelfeld, A.: Information-flow security for a core of JavaScript. In: Proc. IEEE CSF (2012)","DOI":"10.1109\/CSF.2012.19"},{"key":"43_CR17","doi-asserted-by":"crossref","unstructured":"Hornyack, P., Han, S., Jung, J., Schechter, S., Wetherall, D.: These aren\u2019t the droids you\u2019re looking for: Retrofitting Android to protect data from imperious applications. In: Proc. CCS (2011)","DOI":"10.1145\/2046707.2046780"},{"key":"43_CR18","doi-asserted-by":"crossref","unstructured":"Krohn, M., Tromer, E.: Noninterference for a practical DIFC-based operating system. In: Proc. IEEE S&P (2009)","DOI":"10.1109\/SP.2009.23"},{"key":"43_CR19","doi-asserted-by":"crossref","unstructured":"Krohn, M., Yip, A., Brodsky, M., Cliffer, N., Kaashoek, M.F., Kohler, E., Morris, R.: Information flow control for standard OS abstractions. In: Proc. SOSP (2007)","DOI":"10.1145\/1294261.1294293"},{"key":"43_CR20","unstructured":"Loftus, J.: DefCon dings reveal Google product security risks (2011), \n                    \n                      http:\/\/gizmodo.com\/5828478\/\n                    \n                    \n                   (accessed July 10, 2012)"},{"key":"43_CR21","unstructured":"Marforio, C., Francillon, A., \u010capkun, S.: Application collusion attack on the permission-based security model and its implications for modern smartphone systems. Technical Report 724, ETH Zurich (April 2011)"},{"key":"43_CR22","doi-asserted-by":"crossref","unstructured":"Moore, S., Chong, S.: Static analysis for efficient hybrid information-flow control. In: Proc. IEEE CSF (2011)","DOI":"10.1109\/CSF.2011.17"},{"key":"43_CR23","doi-asserted-by":"crossref","unstructured":"Myers, A.C.: Practical mostly-static information flow control. In: Proc. POPL (1999)","DOI":"10.1145\/292540.292561"},{"key":"43_CR24","doi-asserted-by":"crossref","unstructured":"Nauman, M., Khan, S., Zhang, X.: Apex: extending Android permission model and enforcement with user-defined runtime constraints. In: Proc. ASIACCS (2010)","DOI":"10.1145\/1755688.1755732"},{"key":"43_CR25","unstructured":"NTT Data Corporation: TOMOYO Linux (2012), \n                    \n                      http:\/\/tomoyo.sourceforge.jp\/\n                    \n                    \n                   (accessed April 10, 2012)"},{"key":"43_CR26","doi-asserted-by":"crossref","unstructured":"Ongtang, M., McLaughlin, S.E., Enck, W., McDaniel, P.D.: Semantically rich application-centric security in Android. In: Proc. ACSAC (2009)","DOI":"10.1109\/ACSAC.2009.39"},{"key":"43_CR27","unstructured":"Passeri, P.: One year of Android malware (full list) (2011), \n                    \n                      http:\/\/hackmageddon.com\/2011\/08\/11\/one-year-of-android-malware-full-list\/\n                    \n                    \n                   (accessed July 10, 2012)"},{"key":"43_CR28","doi-asserted-by":"crossref","unstructured":"Rafnsson, W., Sabelfeld, A.: Limiting information leakage in event-based communication. In: Proc. PLAS (2011)","DOI":"10.1145\/2166956.2166960"},{"key":"43_CR29","doi-asserted-by":"crossref","unstructured":"Russo, A., Sabelfeld, A.: Dynamic vs. static flow-sensitive security analysis. In: Proc. IEEE CSF (2010)","DOI":"10.1109\/CSF.2010.20"},{"key":"43_CR30","doi-asserted-by":"crossref","unstructured":"Ryan, P.Y.A., Schneider, S.A.: Process algebra and non-interference. J. Comput. Secur. 9(1-2) (2001)","DOI":"10.3233\/JCS-2001-91-204"},{"issue":"1","key":"43_CR31","doi-asserted-by":"publisher","first-page":"5","DOI":"10.1109\/JSAC.2002.806121","volume":"21","author":"A. Sabelfeld","year":"2003","unstructured":"Sabelfeld, A., Myers, A.C.: Language-based information-flow security. IEEE Journal Sel. Area. Comm.\u00a021(1), 5\u201319 (2003)","journal-title":"IEEE Journal Sel. Area. Comm."},{"key":"43_CR32","unstructured":"Schlegel, R., Zhang, K., Zhou, X., Intwala, M., Kapadia, A., Wang, X.: Soundcomber: A stealthy and context-aware sound trojan for smartphones. In: Proc. NDSS (2011)"},{"key":"43_CR33","doi-asserted-by":"crossref","unstructured":"Shin, W., Kiyomoto, S., Fukushima, K., Tanaka, T.: A formal model to analyze the permission authorization and enforcement in the Android framework. In: Proc. SocialCom\/PASSAT (2010)","DOI":"10.1109\/SocialCom.2010.140"},{"key":"43_CR34","unstructured":"Shin, W., Kwak, S., Kiyomoto, S., Fukushima, K., Tanaka, T.: A small but non-negligible flaw in the Android permission scheme. In: Proc. POLICY (2010)"},{"key":"43_CR35","doi-asserted-by":"crossref","unstructured":"Yip, A., Wang, X., Zeldovich, N., Kaashoek, M.F.: Improving application security with data flow assertions. In: Proc. SOSP (2009)","DOI":"10.1145\/1629575.1629604"},{"key":"43_CR36","unstructured":"Zeldovich, N., Boyd-Wickizer, S., Kohler, E., Mazi\u00e8res, D.: Making information flow explicit in HiStar. In: Proc. OSDI (2006)"},{"key":"43_CR37","unstructured":"Zeldovich, N., Boyd-Wickizer, S., Mazi\u00e8res, D.: Securing distributed systems with information flow control. In: Proc. NSDI (2008)"},{"key":"43_CR38","doi-asserted-by":"crossref","unstructured":"Zhang, D., Askarov, A., Myers, A.C.: Language-based control and mitigation of timing channels. In: Proc. PLDI (2012)","DOI":"10.1145\/2254064.2254078"}],"container-title":["Lecture Notes in Computer Science","Computer Security \u2013 ESORICS 2013"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-40203-6_43","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,6,2]],"date-time":"2019-06-02T20:47:06Z","timestamp":1559508426000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-40203-6_43"}},"subtitle":["(Extended Abstract)"],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642402029","9783642402036"],"references-count":38,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-40203-6_43","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2013]]}}}