{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,15]],"date-time":"2025-05-15T04:47:39Z","timestamp":1747284459854,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":34,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783662549698"},{"type":"electronic","value":"9783662549704"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-662-54970-4_3","type":"book-chapter","created":{"date-parts":[[2017,5,16]],"date-time":"2017-05-16T02:02:55Z","timestamp":1494900175000},"page":"41-59","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":16,"title":["Android UI Deception Revisited: Attacks and Defenses"],"prefix":"10.1007","author":[{"given":"Earlence","family":"Fernandes","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Qi Alfred","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Justin","family":"Paupore","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Georg","family":"Essl","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"J. Alex","family":"Halderman","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Z. Morley","family":"Mao","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Atul","family":"Prakash","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,5,17]]},"reference":[{"key":"3_CR1","unstructured":"Android UI Deception PoC Code. https:\/\/github.com\/earlence\/AndroidUIDeceptionRevisitedFC16. Accessed Oct 2015"},{"key":"3_CR2","unstructured":"Apple XCodeGhost Attack. http:\/\/www.apple.com\/cn\/xcodeghost\/#english. Accessed Oct 2015"},{"key":"3_CR3","unstructured":"Activity hijacking pattern for Android. http:\/\/capec.mitre.org\/data\/definitions\/501.html. Accessed Oct 2015"},{"key":"3_CR4","unstructured":"Android Touch-Event Hijacking. https:\/\/blog.lookout.com\/blog\/2010\/12\/09\/android-touch-event-hijacking\/. Accessed Oct 2015"},{"key":"3_CR5","unstructured":"Akhawe, D., He, W., Li, Z., Moazzezi, R., Song, D.: Clickjacking revisited: a perceptual view of UI security. In: Proceedings of the 8th USENIX Conference on Offensive Technologies, WOOT 2014, pp. 1\u20131. USENIX Association, Berkeley, CA, USA (2014). http:\/\/dl.acm.org\/citation.cfm?id=2671293.2671294"},{"key":"3_CR6","unstructured":"Lovejoy, B.: Beware authentication popups in iOS Mail: bug allows convincing-looking phishing attacks. http:\/\/9to5mac.com\/2015\/06\/10\/ios-mail-phishing-popup\/. Accessed Dec 2015"},{"key":"3_CR7","doi-asserted-by":"crossref","unstructured":"Bianchi, A., Corbetta, J., Invernizzi, L., Fratantonio, Y., Kruegel, C., Vigna, G.: What the app. is that? deception and countermeasures in the android user interface. In: Proceedings of the IEEE Symposium on Security and Privacy (SP), San Jose, CA, May 2015","DOI":"10.1109\/SP.2015.62"},{"key":"3_CR8","unstructured":"Castillo, C.: McAfee Labs. Phishing attack replaces banking app. with malware. Published. http:\/\/blogs.mcafee.com\/mcafee-labs\/phishing-attack-replaces-android-banking-apps-with-malware. Accessed Oct 2015"},{"key":"3_CR9","unstructured":"Chebyshev, V., Unuchek, R.: Mobile malware evolution in 2013. http:\/\/securelist.com\/analysis\/kaspersky-security-bulletin\/58335\/mobile-malware-evolution-2013\/. Accessed Oct 2015"},{"key":"3_CR10","unstructured":"Chen, J., Chen, H., Bauman, E., Lin, Z., Zang, B., Guan, H.: You shouldn\u2019t collect my secrets: thwarting sensitive keystroke leakage in mobile ime apps. In: 24th USENIX Security Symposium (USENIX Security 15), pp. 657\u2013690. USENIX Association, Washington, D.C. https:\/\/www.usenix.org\/conference\/usenixsecurity15\/technical-sessions\/presentation\/chen-jin"},{"key":"3_CR11","unstructured":"Chen, Q.A., Qian, Z., Mao, Z.M.: Peeking into your app. without actually seeing it: ui state inference and novel android attacks. In: Proceedings of the 23rd USENIX Security Symposium (2014)"},{"key":"3_CR12","doi-asserted-by":"crossref","unstructured":"Chin, E., Felt, A.P., Greenwood, K., Wagner, D.: Analyzing inter-application communication in android. In: Proceedings of the 9th International Conference on Mobile Systems, Applications, and Services, MobiSys 2011, pp. 239\u2013252, NY, USA (2011). http:\/\/doi.acm.org\/10.1145\/1999995.2000018","DOI":"10.1145\/1999995.2000018"},{"key":"3_CR13","unstructured":"Clickjacking SideChannel Demonstration videos. https:\/\/sites.google.com\/site\/clickjackingsidechannels\/. Accessed Oct 2015"},{"key":"3_CR14","doi-asserted-by":"crossref","unstructured":"Dhamija, R., Tygar, J.D.: The battle against phishing: dynamic security skins. In: Proceedings of the 2005 Symposium on Usable Privacy and Security, SOUPS 2005, pp. 77\u201388, NY, USA (2005). http:\/\/doi.acm.org\/10.1145\/1073001.1073009","DOI":"10.1145\/1073001.1073009"},{"key":"3_CR15","doi-asserted-by":"crossref","unstructured":"Dhamija, R., Tygar, J.D., Hearst, M.: Why phishing works. In: Proceedings of the SIGCHI Conference on Human Factors in Computing Systems, CHI 2006, pp. 581\u2013590, NY, USA (2006). http:\/\/doi.acm.org\/10.1145\/1124772.1124861","DOI":"10.1145\/1124772.1124861"},{"key":"3_CR16","unstructured":"Felt, A.P., Wagner, D.: Phishing on mobile devices. In: W2SP (2011)"},{"key":"3_CR17","unstructured":"Fernandes, E., Chen, Q., Essl, G., Halderman, J.A., Mao, Z.M., Prakash, A.: TIVOs: trusted visual I\/O paths for android. Technical report CSE-TR-586-14, CSE Department, University of Michigan, Ann Arbor (2014)"},{"key":"3_CR18","doi-asserted-by":"crossref","unstructured":"Fette, I., Sadeh, N., Tomasic, A.: Learning to detect phishing emails. In: Proceedings of the 16th International Conference on World Wide Web, WWW 2007, pp. 649\u2013656, NY, USA (2007). http:\/\/doi.acm.org\/10.1145\/1242572.1242660","DOI":"10.1145\/1242572.1242660"},{"key":"3_CR19","doi-asserted-by":"crossref","unstructured":"Hao, S., Liu, B., Nath, S., Halfond, W.G., Govindan, R.: PUMA: programmable UI-automation for large-scale dynamic analysis of mobile apps. In: Proceedings of the 12th Annual International Conference on Mobile Systems, Applications, and Services, MobiSys 2014, pp. 204\u2013217, NY, USA (2014). http:\/\/doi.acm.org\/10.1145\/2594368.2594390","DOI":"10.1145\/2594368.2594390"},{"key":"3_CR20","unstructured":"Huang, L.S., Moshchuk, A., Wang, H.J., Schechter, S., Jackson, C.: Clickjacking: attacks and defenses. In: Proceedings of the 21st USENIX Conference on Security Symposium, Security 2012, pp. 22\u201322. USENIX Association, Berkeley, CA, USA (2012). http:\/\/dl.acm.org\/citation.cfm?id=2362793.2362815"},{"key":"3_CR21","unstructured":"Kaspersky: svpeng android malware targets banking apps. http:\/\/www.kaspersky.com\/about\/news\/virus\/2014\/Kaspersky-Lab-detects-mobile-Trojan-Svpeng-Financial-malware-with-ransomware-capabilities-now-targeting-US-users. Accessed Oct 2015"},{"key":"3_CR22","unstructured":"Kelly, M.: Badlepricon: bitcoin gets the mobile malware treatment in Google Play. https:\/\/blog.lookout.com\/blog\/2014\/04\/24\/badlepricon-bitcoin\/. Accessed Oct 2015"},{"key":"3_CR23","unstructured":"Liu, B., Nath, S., Govindan, R., Liu, J.: DECAF: detecting and characterizing ad fraud in mobile apps. In: NSDI (2014)"},{"key":"3_CR24","doi-asserted-by":"crossref","unstructured":"Liu, D., Cuervo, E., Pistol, V., Scudellari, R., Cox, L.P.: ScreenPass: secure password entry on touchscreen devices. In: Proceeding of the 11th Annual International Conference on Mobile Systems, Applications, and Services, MobiSys 2013, pp. 291\u2013304, NY, USA (2013). http:\/\/doi.acm.org\/10.1145\/2462456.2465425","DOI":"10.1145\/2462456.2465425"},{"key":"3_CR25","unstructured":"Niemietz, M., Schwenk, J.: UI redressing attacks on android devices. In: Proceedings of BlackHat Abu Dhabi (2012)"},{"key":"3_CR26","doi-asserted-by":"crossref","unstructured":"Schechter, S.E., Dhamija, R., Ozment, A., Fischer, I.: The emperor\u2019s new security indicators. In: Proceedings of the 2007 IEEE Symposium on Security and Privacy, SP 2007, pp. 51\u201365 (2007). http:\/\/dx.doi.org\/10.1109\/SP.2007.35","DOI":"10.1109\/SP.2007.35"},{"key":"3_CR27","unstructured":"Android 5.0 Screen Pinning. https:\/\/support.google.com\/nexus\/answer\/6118421?hl=en. Accessed Oct 2015"},{"key":"3_CR28","unstructured":"Tong, T., Evans, D.: GuarDroid: a trusted path for password entry. In: Proceedings of Mobile Security Technologies (MoST) (2013)"},{"key":"3_CR29","unstructured":"TrendMicro: mobile phishing attacks ask for government ids. http:\/\/blog.trendmicro.com\/trendlabs-security-intelligence\/mobile-phishing-attack-asks-for-users-government-ids\/. Accessed Oct 2015"},{"key":"3_CR30","unstructured":"Unuchek, R.: Svpeng android malware targets Google Play with fake credit card window. http:\/\/securelist.com\/blog\/incidents\/63746\/latest-version-of-svpeng-targets-users-in-us\/. Accessed Oct 2015"},{"key":"3_CR31","unstructured":"Whittaker, C., Ryner, B., Nazif, M.: Large-scale automatic classification of phishing pages. In: NDSS (2010)"},{"key":"3_CR32","doi-asserted-by":"crossref","unstructured":"Wu, M., Miller, R.C., Garfinkel, S.L.: Do security toolbars actually prevent phishing attacks? In: Proceedings of the SIGCHI Conference on Human Factors in Computing Systems, CHI 2006, pp. 601\u2013610, NY, USA (2006). http:\/\/doi.acm.org\/10.1145\/1124772.1124863","DOI":"10.1145\/1124772.1124863"},{"key":"3_CR33","unstructured":"Zhang, Y., Xue, H., Wei, T.: Occupy your icons silently on android. http:\/\/www.fireeye.com\/blog\/technical\/2014\/04\/occupy_your_icons_silently_on_android.html. Accessed Oct 2015"},{"key":"3_CR34","unstructured":"Chen, Z., Wei, T., Xue, H., Zhang, Y.: Three new masque attacks against iOS: demolishing, breaking and hijacking. https:\/\/www.fireeye.com\/blog\/threat-research\/2015\/06\/three_new_masqueatt.html. Accessed Dec 2015"}],"container-title":["Lecture Notes in Computer Science","Financial Cryptography and Data Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-662-54970-4_3","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,4,2]],"date-time":"2024-04-02T16:49:06Z","timestamp":1712076546000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-662-54970-4_3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783662549698","9783662549704"],"references-count":34,"URL":"https:\/\/doi.org\/10.1007\/978-3-662-54970-4_3","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]},"assertion":[{"value":"17 May 2017","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"FC","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Financial Cryptography and Data Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Christ Church","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Barbados","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2016","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"22 February 2016","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"26 February 2016","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"fc2016","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"http:\/\/fc16.ifca.ai\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}