{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,14]],"date-time":"2026-03-14T17:57:19Z","timestamp":1773511039016,"version":"3.50.1"},"reference-count":15,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"5","license":[{"start":{"date-parts":[[2021,9,1]],"date-time":"2021-09-01T00:00:00Z","timestamp":1630454400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,9,1]],"date-time":"2021-09-01T00:00:00Z","timestamp":1630454400000},"content-version":"am","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2021,9,1]],"date-time":"2021-09-01T00:00:00Z","timestamp":1630454400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2021,9,1]],"date-time":"2021-09-01T00:00:00Z","timestamp":1630454400000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"name":"Combat Capabilities Development Command Army Research Laboratory ARL","award":["W911NF-13-2-0045 (ARL Cyber Security Collaborative Research Alliance)"],"award-info":[{"award-number":["W911NF-13-2-0045 (ARL Cyber Security Collaborative Research Alliance)"]}]},{"name":"National Science Foundation","award":["CNS-1801534"],"award-info":[{"award-number":["CNS-1801534"]}]},{"name":"Googles 2020 Android Security and Privacy Research Award"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Secur. Privacy"],"published-print":{"date-parts":[[2021,9]]},"DOI":"10.1109\/msec.2021.3090564","type":"journal-article","created":{"date-parts":[[2021,8,2]],"date-time":"2021-08-02T20:36:00Z","timestamp":1627936560000},"page":"16-25","source":"Crossref","is-referenced-by-count":6,"title":["Demystifying Android\u2019s Scoped Storage Defense"],"prefix":"10.1109","volume":"19","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-5288-6032","authenticated-orcid":false,"given":"Yu-Tsung","family":"Lee","sequence":"first","affiliation":[{"name":"Penn State University"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Haining","family":"Chen","sequence":"additional","affiliation":[{"name":"Google"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4964-1170","authenticated-orcid":false,"given":"Trent","family":"Jaeger","sequence":"additional","affiliation":[{"name":"Penn State University"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref10","article-title":"The Android platform security model","author":"mayrhofer","year":"2019"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1147\/sj.133.0230"},{"key":"ref12","article-title":"Aware: Reventing abuse of privacy-sensitive sensors via operation bindings","author":"petracca","year":"0","journal-title":"Proc 26th USENIX Security Symp"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978344"},{"key":"ref14","year":"2020","journal-title":"OS Share Market"},{"key":"ref15","first-page":"585","article-title":"STING: Finding name resolution vulnerabilities in programs","author":"vijayakumar","year":"0","journal-title":"Proc 21st USENIX Security Symp"},{"key":"ref4","year":"0","journal-title":"Permissions overview URL"},{"key":"ref3","year":"0","journal-title":"FileProvider URL"},{"key":"ref6","year":"0","journal-title":"Storage updates in Android 11 URL"},{"key":"ref5","year":"0","journal-title":"Storage access framework URL"},{"key":"ref8","article-title":"PolyScope: Multi-policy access control analysis to triage android systems","author":"lee","year":"0","journal-title":"Proc 30th USENIX Security Symp"},{"key":"ref7","author":"karamitas","year":"2021","journal-title":"Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2009.10"},{"key":"ref1","first-page":"131","article-title":"Checking for race conditions in file accesses","volume":"9","author":"bishop","year":"1996","journal-title":"Comput Syst"},{"key":"ref9","author":"makkaveev","year":"2018","journal-title":"Man-in-the-disk Android apps exposed via external storage"}],"container-title":["IEEE Security & Privacy"],"original-title":[],"link":[{"URL":"https:\/\/ieeexplore.ieee.org\/ielam\/8013\/9529122\/9502925-aam.pdf","content-type":"application\/pdf","content-version":"am","intended-application":"syndication"},{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8013\/9529122\/09502925.pdf?arnumber=9502925","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,5,10]],"date-time":"2022-05-10T14:52:22Z","timestamp":1652194342000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/9502925\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,9]]},"references-count":15,"journal-issue":{"issue":"5"},"URL":"https:\/\/doi.org\/10.1109\/msec.2021.3090564","relation":{},"ISSN":["1540-7993","1558-4046"],"issn-type":[{"value":"1540-7993","type":"print"},{"value":"1558-4046","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,9]]}}}