{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,13]],"date-time":"2026-02-13T21:29:17Z","timestamp":1771018157397,"version":"3.50.1"},"reference-count":80,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","issue":"2","license":[{"start":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T00:00:00Z","timestamp":1769904000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T00:00:00Z","timestamp":1769904000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T00:00:00Z","timestamp":1769904000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"funder":[{"DOI":"10.13039\/501100001381","name":"National Research Foundation Singapore","doi-asserted-by":"publisher","id":[{"id":"10.13039\/501100001381","id-type":"DOI","asserted-by":"publisher"}]},{"name":"Cyber Security Agency under its National Cybersecurity R&#x0026;D Programme","award":["NCRP25-P04-TAICeN"],"award-info":[{"award-number":["NCRP25-P04-TAICeN"]}]},{"name":"Ministry of Education, Singapore under its Academic Research Fund Tier 2","award":["T2EP20223-0043"],"award-info":[{"award-number":["T2EP20223-0043"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IIEEE Trans. Software Eng."],"published-print":{"date-parts":[[2026,2]]},"DOI":"10.1109\/tse.2025.3626788","type":"journal-article","created":{"date-parts":[[2025,11,7]],"date-time":"2025-11-07T18:10:04Z","timestamp":1762539004000},"page":"428-448","source":"Crossref","is-referenced-by-count":0,"title":["FCGHunter: Towards Evaluating Robustness of Graph-Based Android Malware Detection"],"prefix":"10.1109","volume":"52","author":[{"ORCID":"https:\/\/orcid.org\/0009-0008-7885-1135","authenticated-orcid":false,"given":"Shiwen","family":"Song","sequence":"first","affiliation":[{"name":"Singapore Management University, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-1288-6502","authenticated-orcid":false,"given":"Xiaofei","family":"Xie","sequence":"additional","affiliation":[{"name":"Singapore Management University, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9080-6865","authenticated-orcid":false,"given":"Ruitao","family":"Feng","sequence":"additional","affiliation":[{"name":"Faculty of Science and Engineering, Southern Cross University, Coffs Harbour, NSW, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-8002-8068","authenticated-orcid":false,"given":"Qi","family":"Guo","sequence":"additional","affiliation":[{"name":"Tianjin University, Tianjin, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9477-4100","authenticated-orcid":false,"given":"Sen","family":"Chen","sequence":"additional","affiliation":[{"name":"College of Cryptology and Cyber Science, Nankai University, Tianjin, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2018.00061"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2020.2982635"},{"key":"ref3","first-page":"1955","article-title":"Mind your weight (s): A large-scale study on insufficient machine learning model protection in mobile apps","volume-title":"Proc. 30th USENIX Secur. Symp. (USENIX)","author":"Sun","year":"2021"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23247"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1145\/3162625"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2019.00155"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1016\/j.cose.2020.101740"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2019.00023"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1145\/3313391"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417291"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3442381.3450044"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1145\/3597503.3623320"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/3097983.3098026"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1145\/3132747.3132785"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3293882.3330579"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00108"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.49"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE43902.2021.00038"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/SP46214.2022.9833659"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1109\/AI4Mobile.2019.8672711"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2019.2932228"},{"key":"ref22","first-page":"20297","article-title":"Guided adversarial attack for evaluating and enhancing adversarial defenses","volume-title":"Proc. Adv. Neural Inf. Process. Syst.","volume":"33","author":"Sriramanan","year":"2020"},{"key":"ref23","first-page":"1181","article-title":"Black-box adversarial example attack towards FCG based Android malware detection under incomplete feature information","volume-title":"Proc. 32nd USENIX Secur. Symp. (USENIX)","author":"Li","year":"2023"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/3611643.3616309"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1145\/3374664.3375728"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.4018\/IJSSCI.2021010105"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1145\/3501256"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3485387"},{"key":"ref29","first-page":"4768","article-title":"A unified approach to interpreting model predictions","volume-title":"Proc. 31st Int. Conf. Neural Inf. Process. Syst. (NIPS)","author":"Lundberg","year":"2017"},{"key":"ref30","article-title":"Anonymous","year":"2024"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1109\/TSMC.2019.2958382"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2021.3094824"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1145\/3576915.3623117"},{"key":"ref34","doi-asserted-by":"publisher","DOI":"10.1016\/j.eng.2019.12.012"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1145\/3293475.3293489"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1016\/0146-664X(80)90054-4"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.3390\/s24165150"},{"key":"ref38","first-page":"1122","article-title":"Robust decision trees against adversarial examples","volume-title":"Proc. Int. Conf. Mach. Learn.","author":"Chen","year":"2019"},{"key":"ref39","article-title":"FCGHUNTER","year":"2024"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1007\/11688839_3"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1145\/3447548.3467416"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.11919\/j.issn.1002-0829.215044"},{"key":"ref43","first-page":"331","article-title":"MaskDroid: Robust Android malware detection with masked graph representations","volume-title":"Proc. 39th IEEE\/ACM Int. Conf. Autom. Softw. Eng.","author":"Zheng","year":"2024"},{"key":"ref44","article-title":"Androzoo","year":"2024"},{"key":"ref45","article-title":"Virustotal","year":"2024"},{"key":"ref46","article-title":"Virusshare","year":"2024"},{"key":"ref47","first-page":"729","article-title":"$\\{${TESSERACT$\\}$}: Eliminating experimental bias in malware classification across space and time","volume-title":"Proc. 28th USENIX Security Symp. (USENIX Secur.)","author":"Pendlebury","year":"2019"},{"key":"ref48","first-page":"3971","article-title":"Dos and don\u2019ts of machine learning in computer security","volume-title":"Proc. 31st USENIX Secur. Symp. (USENIX Security)","author":"Arp","year":"2022"},{"key":"ref49","article-title":"Unraveling the key of machine learning solutions for Android malware detection","author":"Liu","year":"2024"},{"key":"ref50","article-title":"Breaking out from the TESSERACT: Reassessing ML-based malware detection under spatio-temporal drift","author":"Chow","year":"2025"},{"key":"ref51","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66399-9_4"},{"key":"ref52","article-title":"Discriminatory analysis: Nonparametric discrimination: small sample performance","author":"Fix","year":"1952"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.29172\/7c2a6982-6d72-4cd8-bba6-2fccb06a7011"},{"key":"ref54","first-page":"1115","article-title":"Adversarial attack on graph structured data","volume-title":"Proc. Int. Conf. Mach. Learn.","author":"Dai","year":"2018"},{"key":"ref55","article-title":"HRAT","year":"2024"},{"key":"ref56","doi-asserted-by":"publisher","DOI":"10.1145\/3321707.3321749"},{"key":"ref57","doi-asserted-by":"publisher","DOI":"10.1609\/aaai.v34i04.5753"},{"key":"ref58","doi-asserted-by":"publisher","DOI":"10.1145\/3576915.3623130"},{"key":"ref59","doi-asserted-by":"publisher","DOI":"10.1016\/j.ins.2015.09.056"},{"key":"ref60","doi-asserted-by":"crossref","first-page":"468","DOI":"10.1145\/2901739.2903508","article-title":"AndroZoo: Collecting millions of Android apps for the research community","volume-title":"Proc. 13th Int. Conf. Mining Softw. Repositories","author":"Allix","year":"2016"},{"key":"ref61","doi-asserted-by":"publisher","DOI":"10.1007\/s10618-025-01127-1"},{"key":"ref62","first-page":"2176","article-title":"Android malware family labeling: Perspectives from the industry","volume-title":"Proc. 39th IEEE\/ACM Int. Conf. Autom. Softw. Eng.","author":"Wang","year":"2024"},{"key":"ref63","doi-asserted-by":"publisher","DOI":"10.1007\/s11416-021-00390-2"},{"key":"ref64","first-page":"1127","article-title":"Continuous learning for Android malware detection","volume-title":"Proc. 32nd USENIX Secur. Symp. (USENIX)","author":"Chen","year":"2023"},{"key":"ref65","first-page":"132","article-title":"Automatic microbenchmark generation to prevent dead code elimination and constant folding","volume-title":"Proc. 31st IEEE\/ACM Int. Conf. Autom. Softw. Eng.","author":"Rodriguez-Cancio","year":"2016"},{"key":"ref66","doi-asserted-by":"publisher","DOI":"10.1145\/3503222.3507764"},{"key":"ref67","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/2025.naacl-long.501"},{"key":"ref68","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE48619.2023.00191"},{"key":"ref69","doi-asserted-by":"publisher","DOI":"10.1145\/3643749"},{"key":"ref70","doi-asserted-by":"publisher","DOI":"10.1145\/3180155.3180228"},{"key":"ref71","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2021.3100877"},{"key":"ref72","article-title":"Androguard","year":"2024"},{"key":"ref73","article-title":"Flowdroid","year":"2024"},{"key":"ref74","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00073"},{"key":"ref75","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2020.3003571"},{"key":"ref76","doi-asserted-by":"publisher","DOI":"10.1109\/ICPADS53394.2021.00084"},{"key":"ref77","first-page":"1487","article-title":"Explanation-guided backdoor poisoning attacks against malware classifiers","volume-title":"Proc. 30th USENIX Security Symp. (USENIX)","author":"Severi","year":"2021"},{"key":"ref78","doi-asserted-by":"publisher","DOI":"10.1145\/3508398.3511510"},{"key":"ref79","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-031-20096-0_20"},{"key":"ref80","first-page":"7375","article-title":"$\\{${AIRS$\\}$}: Explanation for deep reinforcement learning based security applications","volume-title":"Proc. 32nd USENIX Secur. Symp. (USENIX Security)","author":"Yu","year":"2023"}],"container-title":["IEEE Transactions on Software Engineering"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/32\/11395383\/11231183.pdf?arnumber=11231183","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,2,13]],"date-time":"2026-02-13T20:49:45Z","timestamp":1771015785000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11231183\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,2]]},"references-count":80,"journal-issue":{"issue":"2"},"URL":"https:\/\/doi.org\/10.1109\/tse.2025.3626788","relation":{},"ISSN":["0098-5589","1939-3520","2326-3881"],"issn-type":[{"value":"0098-5589","type":"print"},{"value":"1939-3520","type":"electronic"},{"value":"2326-3881","type":"electronic"}],"subject":[],"published":{"date-parts":[[2026,2]]}}}