{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,11]],"date-time":"2026-03-11T23:01:00Z","timestamp":1773270060351,"version":"3.50.1"},"publisher-location":"Singapore","reference-count":33,"publisher":"Springer Nature Singapore","isbn-type":[{"value":"9789819562022","type":"print"},{"value":"9789819562039","type":"electronic"}],"license":[{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2026,1,1]],"date-time":"2026-01-01T00:00:00Z","timestamp":1767225600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026]]},"DOI":"10.1007\/978-981-95-6203-9_20","type":"book-chapter","created":{"date-parts":[[2026,1,2]],"date-time":"2026-01-02T02:26:24Z","timestamp":1767320784000},"page":"369-389","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Tracing Your Roots: Exploring the\u00a0Security Issues of\u00a0Root Certificates in\u00a0Android TLS Connections"],"prefix":"10.1007","author":[{"given":"Xinyu","family":"Wei","sequence":"first","affiliation":[]},{"given":"Yuewu","family":"Wang","sequence":"additional","affiliation":[]},{"given":"Lingguang","family":"Lei","sequence":"additional","affiliation":[]},{"given":"Peng","family":"Wang","sequence":"additional","affiliation":[]},{"given":"Chunjing","family":"Kou","sequence":"additional","affiliation":[]},{"given":"Siyuan","family":"Ma","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2026,1,2]]},"reference":[{"key":"20_CR1","unstructured":"jadx. https:\/\/github.com\/skylot\/jadx"},{"key":"20_CR2","unstructured":"Android Developers: Network security config. https:\/\/developer.android.com\/privacy-and-security\/security-config"},{"key":"20_CR3","unstructured":"Appfigures: App intelligence. https:\/\/appfigures.com\/app-intelligence"},{"key":"20_CR4","doi-asserted-by":"crossref","unstructured":"Brubaker, C., Jana, S., Ray, B., Khurshid, S., Shmatikov, V.: Using frankencerts for automated adversarial testing of certificate validation in SSL\/TLS implementations. In: 2014 IEEE Symposium on Security and Privacy, pp. 114\u2013129. IEEE (2014)","DOI":"10.1109\/SP.2014.15"},{"key":"20_CR5","doi-asserted-by":"crossref","unstructured":"Chen, C., Tian, C., Duan, Z., Zhao, L.: RFC-directed differential testing of certificate validation in SSL\/TLS implementations. In: Proceedings of the 40th International Conference on Software Engineering, pp. 859\u2013870 (2018)","DOI":"10.1145\/3180155.3180226"},{"key":"20_CR6","unstructured":"CVE Program: CVE-2020-0416: Android keystore service stack overflow vulnerability (2020). https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2020-0416"},{"key":"20_CR7","unstructured":"CVE Program: CVE-2022-20418: Android keystore service authorization bypass vulnerability (2022). https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2022-20418"},{"key":"20_CR8","unstructured":"CVE Program: CVE-2023-21265: Improper root CA certificate management vulnerability (2023). https:\/\/nvd.nist.gov\/vuln\/detail\/cve-2023-21265"},{"key":"20_CR9","unstructured":"DigiCert: What is a certificate authority (2021). https:\/\/www.digicert.com\/cn\/blog\/what-is-a-certificate-authority"},{"key":"20_CR10","doi-asserted-by":"crossref","unstructured":"Fahl, S., Harbach, M., Muders, T., Baumg\u00e4rtner, L., Freisleben, B., Smith, M.: Why Eve and Mallory love Android: an analysis of Android SSL in security. In: Proceedings of the 2012 ACM Conference on Computer and Communications Security, pp. 50\u201361 (2012)","DOI":"10.1145\/2382196.2382205"},{"key":"20_CR11","doi-asserted-by":"crossref","unstructured":"Felt, A.P., et al.: Improving SSL warnings: comprehension and adherence. In: Proceedings of the 33rd Annual ACM Conference on Human Factors in Computing Systems, pp. 2893\u20132902 (2015)","DOI":"10.1145\/2702123.2702442"},{"key":"20_CR12","doi-asserted-by":"crossref","unstructured":"Fu, Y., Wang, Q., Lin, J., Sun, A., Lu, L.: Exploring the security issues of trusted CA certificate management. In: Information and Communications Security: 23rd International Conference, ICICS 2021, Chongqing, China, 19\u201321 November 2021, Proceedings, Part I 23, pp. 384\u2013401. Springer, Heidelberg (2021)","DOI":"10.1007\/978-3-030-86890-1_22"},{"key":"20_CR13","unstructured":"Google: WebDriver for Chrome. https:\/\/developer.chrome.com\/docs\/chromedriver\/downloads"},{"key":"20_CR14","unstructured":"Google Security Team: Distrusting WoSign and StartCom (2016). https:\/\/security.googleblog.com\/2016\/10\/distrusting-wosign-and-startcom.html"},{"key":"20_CR15","doi-asserted-by":"crossref","unstructured":"He, B., et al.: Vetting SSL usage in applications with SSLINT. In: 2015 IEEE Symposium on Security and Privacy, pp. 519\u2013534. IEEE (2015)","DOI":"10.1109\/SP.2015.38"},{"key":"20_CR16","unstructured":"Krombholz, K., Mayer, W., Schmiedecker, M., Weippl, E.: I have no idea what i\u2019m doing-on the usability of deploying HTTPS. In: 26th USENIX Security Symposium (USENIX Security 17), pp. 1339\u20131356 (2017)"},{"key":"20_CR17","doi-asserted-by":"crossref","unstructured":"Kumar, D., et al.: Tracking certificate misissuance in the wild. In: 2018 IEEE Symposium on Security and Privacy (SP), pp. 785\u2013798. IEEE (2018)","DOI":"10.1109\/SP.2018.00015"},{"key":"20_CR18","doi-asserted-by":"crossref","unstructured":"Lee, J., Wallach, D.S.: Removing secrets from Android\u2019s TLS. In: NDSS (2018)","DOI":"10.14722\/ndss.2018.23365"},{"key":"20_CR19","doi-asserted-by":"crossref","unstructured":"Ma, Z., Austgen, J., Mason, J., Durumeric, Z., Bailey, M.: Tracing your roots: exploring the TLS trust anchor ecosystem. In: Proceedings of the 21st ACM Internet Measurement Conference, pp. 179\u2013194 (2021)","DOI":"10.1145\/3487552.3487813"},{"key":"20_CR20","unstructured":"matlink\/gplaycli. https:\/\/github.com\/matlink\/gplaycli"},{"key":"20_CR21","unstructured":"NIST: Recommendation for key management part 3: application-specific key management guidance (2015). https:\/\/nvlpubs.nist.gov\/nistpubs\/SpecialPublications\/NIST.SP.800-57Pt3r1.pdf"},{"key":"20_CR22","unstructured":"Oltrogge, M.: TLS on Android\u2013Evolution over the last decade (2021)"},{"key":"20_CR23","doi-asserted-by":"crossref","unstructured":"Onwuzurike, L., De\u00a0Cristofaro, E.: Danger is my middle name: experimenting with SSL vulnerabilities in Android apps. In: Proceedings of the 8th ACM Conference on Security & Privacy in Wireless and Mobile Networks, pp.\u00a01\u20136 (2015)","DOI":"10.1145\/2766498.2766522"},{"key":"20_CR24","doi-asserted-by":"crossref","unstructured":"Perl, H., Fahl, S., Smith, M.: You won\u2019t be needing these any more: on removing unused certificates from trust stores. In: International Conference on Financial Cryptography and Data Security, pp. 307\u2013315. Springer, Heidelberg (2014)","DOI":"10.1007\/978-3-662-45472-5_20"},{"key":"20_CR25","unstructured":"Pourali, S., Yu, X., Zhao, L., Mannan, M., Youssef, A.: Racing for TLS certificate validation: a hijacker\u2019s guide to the Android TLS Galaxy. In: 33rd USENIX Security Symposium (USENIX Security 24), pp. 683\u2013700 (2024)"},{"key":"20_CR26","doi-asserted-by":"crossref","unstructured":"Purushothaman, J., Thompson, E., Abdou, A.: Position paper: certificate root stores\u2014an area of unity or disparity? In: Proceedings of the 15th Workshop on Cyber Security Experimentation and Test, pp. 105\u2013110 (2022)","DOI":"10.1145\/3546096.3546110"},{"key":"20_CR27","unstructured":"Salesforce: End of support for Android 6.0 OS (2020). https:\/\/help.salesforce.com\/s\/articleView?id=000380538&type=1"},{"key":"20_CR28","unstructured":"The OpenSSL Project: X.509 certificate management. https:\/\/docs.openssl.org\/1.1.1\/man1\/x509.html"},{"key":"20_CR29","doi-asserted-by":"crossref","unstructured":"Vallina-Rodriguez, N., Amann, J., Kreibich, C., Weaver, N., Paxson, V.: A tangled mass: the Android root certificate stores. In: Proceedings of the 10th ACM International on Conference on emerging Networking Experiments and Technologies, pp. 141\u2013148 (2014)","DOI":"10.1145\/2674005.2675015"},{"key":"20_CR30","doi-asserted-by":"publisher","first-page":"110609","DOI":"10.1016\/j.jss.2020.110609","volume":"167","author":"Y Wang","year":"2020","unstructured":"Wang, Y., et al.: Identifying vulnerabilities of SSL\/TLS certificate verification in Android apps with static and dynamic analysis. J. Syst. Softw. 167, 110609 (2020)","journal-title":"J. Syst. Softw."},{"key":"20_CR31","unstructured":"Wikipedia: Flame (malware). https:\/\/en.wikipedia.org\/wiki\/Flame_(malware)"},{"key":"20_CR32","unstructured":"Wilson, K.: Distrusting new CNNIC certificates (2015). https:\/\/blog.mozilla.org\/security\/2015\/04\/02\/distrusting-new-cnnic-certificates\/"},{"key":"20_CR33","doi-asserted-by":"crossref","unstructured":"Zhang, Y., et al.: Rusted anchors: a national client-side view of hidden root CAs in the Web PKI ecosystem. In: Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security, pp. 1373\u20131387 (2021)","DOI":"10.1145\/3460120.3484768"}],"container-title":["Lecture Notes in Computer Science","Information Security and Cryptology"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-981-95-6203-9_20","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,3,11]],"date-time":"2026-03-11T07:36:39Z","timestamp":1773214599000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-981-95-6203-9_20"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026]]},"ISBN":["9789819562022","9789819562039"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-981-95-6203-9_20","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026]]},"assertion":[{"value":"2 January 2026","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"Inscrypt","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Security and Cryptology","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Xi'an","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"China","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2025","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 October 2025","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19 October 2025","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"21","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"cisc22025","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/inscrypt2025.xidian.edu.cn\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}