{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,10,30]],"date-time":"2024-10-30T08:21:23Z","timestamp":1730276483303,"version":"3.28.0"},"reference-count":43,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2014,8]]},"DOI":"10.1109\/issa.2014.6950501","type":"proceedings-article","created":{"date-parts":[[2014,11,13]],"date-time":"2014-11-13T03:09:30Z","timestamp":1415848170000},"page":"1-8","source":"Crossref","is-referenced-by-count":0,"title":["Security objectives, controls and metrics development for an Android smartphone application"],"prefix":"10.1109","author":[{"given":"Reijo M.","family":"Savola","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Markku","family":"Kylanpaa","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"journal-title":"SMACK Permissive Mode Support","year":"0","author":"aciicmez","key":"19"},{"key":"35","first-page":"21","article-title":"Directions in security metrics research","volume":"7564","author":"jansen","year":"2009","journal-title":"U S National Institute of Standards and Technology NISTIR"},{"journal-title":"Smack Team Smack Userspace Library","year":"0","key":"17"},{"journal-title":"Common Criteria for Information Technology Security Evaluation-Part I Introduction and General Model Internationalorganization for Standardization and the International Electrotechnical Commission","year":"2005","key":"36"},{"key":"18","article-title":"Add security hooks to binder and implement the hooks for SELinux","author":"smalley","year":"0","journal-title":"Android Kernel Patch"},{"key":"33","article-title":"Measuring cyber security information assurance","author":"bartol","year":"2009","journal-title":"A State-of-the-Art Report Information Assurance Technology Analysis Center"},{"journal-title":"Tizen Security\/Overview","year":"0","key":"15"},{"key":"34","doi-asserted-by":"publisher","DOI":"10.1145\/1719030.1719036"},{"key":"16","article-title":"Patch for Smack labelling support in udev","author":"reshetova","year":"0","journal-title":"Systemddevel Mailing List"},{"key":"39","doi-asserted-by":"publisher","DOI":"10.1145\/2046614.2046624"},{"journal-title":"Google Android Compatibility Test Suite","year":"0","key":"13"},{"journal-title":"The Simplified Mandatory Access Control Kernel","year":"0","author":"schautler","key":"14"},{"journal-title":"Internationalorganization for Standardization and the International Electrotechnical Commission","article-title":"Information technology-security techniquesinformation security management-Measurement","year":"2009","key":"37"},{"key":"11","first-page":"522","article-title":"Towards a framework for security measurement","author":"wang","year":"1997","journal-title":"Proceedings of 20th National Information Systems Security Conference"},{"journal-title":"Android OS Security Risks and Limitations-A Practical Evaluation","year":"2012","author":"fedler","key":"38"},{"key":"12","article-title":"Security enhanced (se) android: Bringing flexible mac to android","author":"smally","year":"2013","journal-title":"20th Annual Network and Distributed System Security Symposium (NDss 2013)"},{"journal-title":"Another LSM Stacking Approach","year":"0","author":"edge","key":"21"},{"journal-title":"Smack Description from the Linux Source Tree","year":"0","author":"schaufler","key":"20"},{"journal-title":"Samsung Samsung KNOX Technical Details","year":"0","key":"43"},{"journal-title":"Cyanogen Mod's Incognito Mode","year":"0","author":"willis","key":"42"},{"journal-title":"Cyanogenmod-Android Community Operating System","year":"0","key":"41"},{"journal-title":"Flexible and Fine-grained Mandatory Access Control on Android for Diverse Security and Privacy Policies","year":"2013","author":"bugiel","key":"40"},{"key":"22","article-title":"Integrity-checked block devices with device mapper","author":"baines","year":"2011","journal-title":"Linux Security Symposium"},{"journal-title":"Integrity Measurement Arhitecture","year":"0","author":"kasatkin","key":"23"},{"journal-title":"Dm-integrity Integrity Protection Device-mapper Target","year":"0","author":"kasatkin","key":"24"},{"journal-title":"The 3 16 Merge Window Concludes","year":"0","author":"edge","key":"25"},{"key":"26","first-page":"1","author":"nauman","year":"2010","journal-title":"Beyond Kernel-level Integrity Measurement Enabling Remote Attestation for the Android Platform-Trust and Trustworthy Computing"},{"key":"27","first-page":"100","article-title":"Operational security assurance evaluation in open infrastructures","author":"haddad","year":"2010","journal-title":"Proc CRiSIS"},{"journal-title":"The goal question metric approach","year":"1994","author":"basili","key":"28"},{"key":"29","article-title":"A taxonomy of decomposition strategies based on structures, behaviors, and Goals","author":"koopman","year":"1995","journal-title":"Design Theory &Methodology '95"},{"key":"3","first-page":"21","article-title":"Directions in security metrics research","volume":"7564","author":"jansen","year":"2009","journal-title":"U S National Institute of Standards and Technology NISTIR"},{"key":"2","doi-asserted-by":"publisher","DOI":"10.3745\/JIPS.2009.5.4.197"},{"key":"10","first-page":"358","article-title":"Development of measurable security for a distributed messaging system","volume":"2","author":"savoia","year":"2010","journal-title":"International Journal on Advances in Security 2009"},{"key":"1","first-page":"8","article-title":"Toward risk-driven security Measurement for Android smartphone platforms","volume":"2013","author":"savoia","year":"2013","journal-title":"Information Security for South Africa (ISSA)"},{"key":"30","doi-asserted-by":"publisher","DOI":"10.1007\/BF02919970"},{"journal-title":"Evolution of Public Safety and Security Mobile Networks","year":"2011","author":"peltola","key":"7"},{"key":"6","first-page":"8","author":"savoia","year":"0","journal-title":"Strategies for Security Measurement Objective Decomposition"},{"journal-title":"Security Metrics Replacing Fear","year":"2007","author":"jaquith","key":"32"},{"volume":"2005","journal-title":"Common Criteria for Information Technology Security Evaluation-Part I Introduction and General Model Internationalorganization for Standardization and the International Electrotechnical Commission","year":"2005","key":"5"},{"key":"31","first-page":"824","article-title":"Complete guide to security and privacy metrics-measuring regulatory Compliance","author":"herrmann","year":"2007","journal-title":"Operational Resilience and ROI Auerbach Publications"},{"journal-title":"ITSEC Information Technology Security Evaluation Criteria (ITSEC)","year":"1991","key":"4"},{"journal-title":"TETRA Advocate's Handbook","year":"2003","author":"gray","key":"9"},{"journal-title":"Malicious Android Applications","year":"2010","author":"boutet","key":"8"}],"event":{"name":"2014 Information Security for South Africa (ISSA)","start":{"date-parts":[[2014,8,13]]},"location":"Johannesburg, South Africa","end":{"date-parts":[[2014,8,14]]}},"container-title":["2014 Information Security for South Africa"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6940061\/6950479\/06950501.pdf?arnumber=6950501","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2017,3,24]],"date-time":"2017-03-24T00:20:13Z","timestamp":1490314813000},"score":1,"resource":{"primary":{"URL":"http:\/\/ieeexplore.ieee.org\/document\/6950501\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2014,8]]},"references-count":43,"URL":"https:\/\/doi.org\/10.1109\/issa.2014.6950501","relation":{},"subject":[],"published":{"date-parts":[[2014,8]]}}}