{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T12:13:49Z","timestamp":1763468029923,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":46,"publisher":"ACM","license":[{"start":{"date-parts":[[2011,6,28]],"date-time":"2011-06-28T00:00:00Z","timestamp":1309219200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2011,6,28]]},"DOI":"10.1145\/1999995.2000017","type":"proceedings-article","created":{"date-parts":[[2011,6,28]],"date-time":"2011-06-28T17:34:50Z","timestamp":1309282490000},"page":"225-238","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":21,"title":["Security versus energy tradeoffs in host-based mobile malware detection"],"prefix":"10.1145","author":[{"given":"Jeffrey","family":"Bickford","sequence":"first","affiliation":[{"name":"Rutgers University, New Brunswick, NJ, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"H. Andr\u00e9s","family":"Lagar-Cavilla","sequence":"additional","affiliation":[{"name":"AT&T Labs - Research, Florham Park, NJ, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alexander","family":"Varshavsky","sequence":"additional","affiliation":[{"name":"AT&T Labs - Research, Florham Park, NJ, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Vinod","family":"Ganapathy","sequence":"additional","affiliation":[{"name":"Rutgers University, New Brunswick, NJ, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Liviu","family":"Iftode","sequence":"additional","affiliation":[{"name":"Rutgers University, New Brunswick, NJ, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2011,6,28]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"OKl4 microvisor. http:\/\/www.ok-labs.com\/products\/okl4-microvisor.  OKl4 microvisor. http:\/\/www.ok-labs.com\/products\/okl4-microvisor."},{"key":"e_1_3_2_1_2_1","unstructured":"Viliv S5 Real Pocket PC. http:\/\/www.myviliv.com\/v4\/product\/s5\/s5.asp.  Viliv S5 Real Pocket PC. http:\/\/www.myviliv.com\/v4\/product\/s5\/s5.asp."},{"key":"e_1_3_2_1_3_1","unstructured":"VMware Mobile Virtualization Platform. www.vmware.com\/technology\/mobile\/.  VMware Mobile Virtualization Platform. www.vmware.com\/technology\/mobile\/."},{"key":"e_1_3_2_1_4_1","unstructured":"Rootkits Part 1 of 3: A Growing Threat. http:\/\/download.nai.com\/Products\/mcafee-avert\/whitepapers\/akapoor_rootk%its1.pdf April 2006. MacAfee AVERT Labs Whitepaper.  Rootkits Part 1 of 3: A Growing Threat. http:\/\/download.nai.com\/Products\/mcafee-avert\/whitepapers\/akapoor_rootk%its1.pdf April 2006. MacAfee AVERT Labs Whitepaper."},{"key":"e_1_3_2_1_5_1","volume-title":"December","author":"0","year":"2009","unstructured":"201 0 threat predictions. http:\/\/www.mcafee.com\/us\/resources\/reports\/rp-threat-predictions-2010.pdf , December 2009 . MacAfee AVERT Labs Whitepaper . 2010 threat predictions. http:\/\/www.mcafee.com\/us\/resources\/reports\/rp-threat-predictions-2010.pdf, December 2009. MacAfee AVERT Labs Whitepaper."},{"journal-title":"News. Use Your Cell to Monitor Your Smart Home. http:\/\/abcnews.go.com\/Technology\/video\/monitor-home-cell-phone-9887403.","author":"ABC","key":"e_1_3_2_1_6_1","unstructured":"ABC News. Use Your Cell to Monitor Your Smart Home. http:\/\/abcnews.go.com\/Technology\/video\/monitor-home-cell-phone-9887403. ABC News. Use Your Cell to Monitor Your Smart Home. http:\/\/abcnews.go.com\/Technology\/video\/monitor-home-cell-phone-9887403."},{"key":"e_1_3_2_1_7_1","unstructured":"ARM. Cortex-a9 processor. http:\/\/www.arm.com\/products\/processors\/cortex-a\/cortex-a9.php.  ARM. Cortex-a9 processor. http:\/\/www.arm.com\/products\/processors\/cortex-a\/cortex-a9.php."},{"key":"e_1_3_2_1_8_1","unstructured":"AT&T. AT&T T-Mobile and Verizon Wireless Announce Joint Venture to Build National Mobile Commerce Network. http:\/\/www.att.com\/gen\/press-room?pid=18767&cdvn=news&newsarticleid=313%69&mapcode=corporate|financial.  AT&T. AT&T T-Mobile and Verizon Wireless Announce Joint Venture to Build National Mobile Commerce Network. http:\/\/www.att.com\/gen\/press-room?pid=18767&cdvn=news&newsarticleid=313%69&mapcode=corporate|financial."},{"key":"e_1_3_2_1_9_1","volume-title":"Proc. 12th Workshop on Hot Topic in Operating Systems","author":"Chun B.","year":"2009","unstructured":"B. Chun and P. Maniatis . Augmented Smartphone Applications Through Clone Cloud Execution . In Proc. 12th Workshop on Hot Topic in Operating Systems , May 2009 . B. Chun and P. Maniatis. Augmented Smartphone Applications Through Clone Cloud Execution. In Proc. 12th Workshop on Hot Topic in Operating Systems, May 2009."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2008.29"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2010.38"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2007.25"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/945445.945462"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1734583.1734596"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1378600.1378626"},{"key":"e_1_3_2_1_16_1","volume-title":"Proc. USENIX Security Symposium","author":"Chen S.","year":"2005","unstructured":"S. Chen , J. Xu , E. C. Sezer , P. Gauriar , and R. K. Iyer . Non-control-data Attacks Are Realistic Threats . In Proc. USENIX Security Symposium , August 2005 . S. Chen, J. Xu, E. C. Sezer, P. Gauriar, and R. K. Iyer. Non-control-data Attacks Are Realistic Threats. In Proc. USENIX Security Symposium, August 2005."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/1814433.1814441"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653691"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.scico.2007.01.015"},{"volume-title":"SCanDroid: Automated Security Certification of Android Applications. Manuscript","author":"Fuchs A. P.","key":"e_1_3_2_1_21_1","unstructured":"A. P. Fuchs , A. Chaudhuri , and J. S. Foster . SCanDroid: Automated Security Certification of Android Applications. Manuscript , Univ. of Maryland , http:\/\/www.cs.umd.edu\/ avik\/projects\/scandroidascaa. A. P. Fuchs, A. Chaudhuri, and J. S. Foster. SCanDroid: Automated Security Certification of Android Applications. Manuscript, Univ. of Maryland, http:\/\/www.cs.umd.edu\/ avik\/projects\/scandroidascaa."},{"key":"e_1_3_2_1_22_1","volume-title":"Proc. Network and Distributed Systems Security Symposium","author":"Garfinkel T.","year":"2003","unstructured":"T. Garfinkel and M. Rosenblum . A Virtual Machine Introspection Based Architecture for Intrusion Detection . In Proc. Network and Distributed Systems Security Symposium , 2003 . T. Garfinkel and M. Rosenblum. A Virtual Machine Introspection Based Architecture for Intrusion Detection. In Proc. Network and Distributed Systems Security Symposium, 2003."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/1734583.1734592"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-16161-2_10"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1950365.1950398"},{"key":"e_1_3_2_1_26_1","volume-title":"Xen on ARM: System Virtualization Using Xen Hypervisor for ARM-Based Secure Mobile Phones. In Consumer Communications and Networking Conference","author":"Hwang J.","year":"2008","unstructured":"J. Hwang , S. Suh , S. Heo , C. Park , J. Ryu , S. Park , and C. Kim . Xen on ARM: System Virtualization Using Xen Hypervisor for ARM-Based Secure Mobile Phones. In Consumer Communications and Networking Conference , January 2008 . J. Hwang, S. Suh, S. Heo, C. Park, J. Ryu, S. Park, and C. Kim. Xen on ARM: System Virtualization Using Xen Hypervisor for ARM-Based Secure Mobile Phones. In Consumer Communications and Networking Conference, January 2008."},{"key":"e_1_3_2_1_27_1","volume-title":"Proc. USENIX Security Symposium","author":"Petroni N. L.","year":"2004","unstructured":"N. L. Petroni Jr ., T. Fraser , J. Molina , and W. A. Arbaugh . Copilot - a Coprocessor-based Kernel Runtime Integrity Monitor . In Proc. USENIX Security Symposium , 2004 . N. L. Petroni Jr., T. Fraser, J. Molina, and W. A. Arbaugh. Copilot - a Coprocessor-based Kernel Runtime Integrity Monitor. In Proc. USENIX Security Symposium, 2004."},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1378600.1378627"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/1629575.1629596"},{"key":"e_1_3_2_1_30_1","volume-title":"Proc. 17th USENIX Security Symposium","author":"Litty L.","year":"2008","unstructured":"L. Litty , H. A. Lagar-Cavilla , and D. Lie . Hypervisor Support for Identifying Covertly Executing Binaries . In Proc. 17th USENIX Security Symposium , August 2008 . L. Litty, H. A. Lagar-Cavilla, and D. Lie. Hypervisor Support for Identifying Covertly Executing Binaries. In Proc. 17th USENIX Security Symposium, August 2008."},{"key":"e_1_3_2_1_31_1","unstructured":"LWN.net. A New Adore Root Kit. lwn.net\/Articles\/75990\/.  LWN.net. A New Adore Root Kit. lwn.net\/Articles\/75990\/."},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/1352592.1352625"},{"key":"e_1_3_2_1_33_1","volume-title":"Proc. USENIX Annual Technical Conference","author":"McVoy L.","year":"1996","unstructured":"L. McVoy and C. Staelin . lmbench: Portable tools for performance analysis . In Proc. USENIX Annual Technical Conference , 1996 . L. McVoy and C. Staelin. lmbench: Portable tools for performance analysis. In Proc. USENIX Annual Technical Conference, 1996."},{"key":"e_1_3_2_1_34_1","unstructured":"E. Monti. iPhone Rootkit? There's an App for That. http:\/\/sandiego.toorcon.org\/index.php?option=com_content&task=view&id=4%8&Itemid=9 October 2010.  E. Monti. iPhone Rootkit? There's an App for That. http:\/\/sandiego.toorcon.org\/index.php?option=com_content&task=view&id=4%8&Itemid=9 October 2010."},{"key":"e_1_3_2_1_35_1","volume-title":"August","author":"Neiger G.","year":"2006","unstructured":"G. Neiger , A. Santoni , F. Leung , D. Rodgers , and R. Uhlig . Intel Virtualization Technology: Hardware Support for Efficient Processor Virtualization. 10(3) , August 2006 . G. Neiger, A. Santoni, F. Leung, D. Rodgers, and R. Uhlig. Intel Virtualization Technology: Hardware Support for Efficient Processor Virtualization. 10(3), August 2006."},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/1734583.1734595"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/1622103.1629656"},{"key":"e_1_3_2_1_38_1","unstructured":"N. Percoco and C. Papathanasiou. This Is Not the Droid You're Looking For... http:\/\/www.defcon.org\/images\/defcon-18\/dc-18-presentations\/Trustwave-Sp%iderlabs\/DEFCON-18-Trustwave-Spiderlabs-Android-Rootkit-WP.pdf July 2010.  N. Percoco and C. Papathanasiou. This Is Not the Droid You're Looking For... http:\/\/www.defcon.org\/images\/defcon-18\/dc-18-presentations\/Trustwave-Sp%iderlabs\/DEFCON-18-Trustwave-Spiderlabs-Android-Rootkit-WP.pdf July 2010."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315260"},{"key":"e_1_3_2_1_40_1","volume-title":"Proc. USENIX Security Symposium","author":"Petroni N. L.","year":"2006","unstructured":"N. L. Petroni , T. Fraser , A. Walters , and W. A. Arbaugh . An Architecture for Specification-based Detection of Semantic Integrity Violations of Kernel Dynamic Data . In Proc. USENIX Security Symposium , August 2006 . N. L. Petroni, T. Fraser, A. Walters, and W. A. Arbaugh. An Architecture for Specification-based Detection of Semantic Integrity Violations of Kernel Dynamic Data. In Proc. USENIX Security Symposium, August 2006."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1145\/1920261.1920313"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.5555\/1433006.1433008"},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294294"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1145\/1315245.1315313"},{"key":"e_1_3_2_1_45_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2005.24"},{"key":"e_1_3_2_1_46_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653728"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/1133373.1133423"}],"event":{"name":"MobiSys'11: The 9th International Conference on Mobile Systems, Applications, and Services","sponsor":["SIGMOBILE ACM Special Interest Group on Mobility of Systems, Users, Data and Computing","SIGOPS ACM Special Interest Group on Operating Systems"],"location":"Bethesda Maryland USA","acronym":"MobiSys'11"},"container-title":["Proceedings of the 9th international conference on Mobile systems, applications, and services"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1999995.2000017","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1999995.2000017","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T11:05:51Z","timestamp":1750244751000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1999995.2000017"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011,6,28]]},"references-count":46,"alternative-id":["10.1145\/1999995.2000017","10.1145\/1999995"],"URL":"https:\/\/doi.org\/10.1145\/1999995.2000017","relation":{},"subject":[],"published":{"date-parts":[[2011,6,28]]},"assertion":[{"value":"2011-06-28","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}