{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,18]],"date-time":"2025-11-18T12:17:30Z","timestamp":1763468250961,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":42,"publisher":"ACM","license":[{"start":{"date-parts":[[2015,4,17]],"date-time":"2015-04-17T00:00:00Z","timestamp":1429228800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["CCF-1333594,CNS-1228843"],"award-info":[{"award-number":["CCF-1333594,CNS-1228843"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100000002","name":"National Institutes of Health","doi-asserted-by":"publisher","award":["R01 LM011028-01"],"award-info":[{"award-number":["R01 LM011028-01"]}],"id":[{"id":"10.13039\/100000002","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2015,4,17]]},"DOI":"10.1145\/2741948.2741966","type":"proceedings-article","created":{"date-parts":[[2015,4,13]],"date-time":"2015-04-13T12:40:32Z","timestamp":1428928832000},"page":"1-16","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":17,"title":["Maxoid"],"prefix":"10.1145","author":[{"given":"Yuanzhong","family":"Xu","sequence":"first","affiliation":[{"name":"The University of Texas at Austin"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Emmett","family":"Witchel","sequence":"additional","affiliation":[{"name":"The University of Texas at Austin"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2015,4,17]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.22"},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/2184489.2184500"},{"key":"e_1_3_2_2_4_1","volume-title":"USENIX Security Symposium","author":"Bugiel Sven","year":"2013","unstructured":"Sven Bugiel , Stephan Heuser , and Ahmad-Reza Sadeghi . Flexible and fine-grained mandatory access control on Android for diverse security and privacy policies . In USENIX Security Symposium , 2013 . Sven Bugiel, Stephan Heuser, and Ahmad-Reza Sadeghi. Flexible and fine-grained mandatory access control on Android for diverse security and privacy policies. In USENIX Security Symposium, 2013."},{"key":"e_1_3_2_2_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2007.37"},{"key":"e_1_3_2_2_6_1","volume-title":"Information Security Conference (ISC)","author":"Conti Mauro","year":"2010","unstructured":"Mauro Conti , Vu Thien Nga Nguyen , and Bruno Crispo . CRePE : Context-related policy enforcement for Android . In Information Security Conference (ISC) , 2010 . Mauro Conti, Vu Thien Nga Nguyen, and Bruno Crispo. CRePE: Context-related policy enforcement for Android. In Information Security Conference (ISC), 2010."},{"key":"e_1_3_2_2_7_1","volume-title":"Dan S Wallach. QUIRE: Lightweight Provenance for Smart Phone Operating Systems. In USENIX Security Symposium","author":"Dietz Michael","year":"2011","unstructured":"Michael Dietz , Shashi Shekhar , Yuliy Pisetsky , Anhei Shu , and Dan S Wallach. QUIRE: Lightweight Provenance for Smart Phone Operating Systems. In USENIX Security Symposium , 2011 . Michael Dietz, Shashi Shekhar, Yuliy Pisetsky, Anhei Shu, and Dan S Wallach. QUIRE: Lightweight Provenance for Smart Phone Operating Systems. In USENIX Security Symposium, 2011."},{"key":"e_1_3_2_2_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/1352592.1352624"},{"key":"e_1_3_2_2_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/1095810.1095813"},{"key":"e_1_3_2_2_10_1","volume-title":"Anmol Sheth. TaintDroid: An Information-Flow Tracking System for Real-time Privacy Monitoring on Smartphones. In USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Enck William","year":"2010","unstructured":"William Enck , Peter Gilbert , Byung-Gon Chun , Landon P Cox , Jaeyeon Jung , Patrick McDaniel , and Anmol Sheth. TaintDroid: An Information-Flow Tracking System for Real-time Privacy Monitoring on Smartphones. In USENIX Symposium on Operating Systems Design and Implementation (OSDI) , 2010 . William Enck, Peter Gilbert, Byung-Gon Chun, Landon P Cox, Jaeyeon Jung, Patrick McDaniel, and Anmol Sheth. TaintDroid: An Information-Flow Tracking System for Real-time Privacy Monitoring on Smartphones. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2010."},{"key":"e_1_3_2_2_11_1","volume-title":"USENIX Security Symposium","author":"Felt Adrienne Porter","year":"2011","unstructured":"Adrienne Porter Felt , Helen J Wang , Alexander Moshchuk , Steve Hanna , and Erika Chin . Permission re-delegation : Attacks and defenses . In USENIX Security Symposium , 2011 . Adrienne Porter Felt, Helen J Wang, Alexander Moshchuk, Steve Hanna, and Erika Chin. Permission re-delegation: Attacks and defenses. In USENIX Security Symposium, 2011."},{"key":"e_1_3_2_2_12_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Giffin Daniel B","year":"2012","unstructured":"Daniel B Giffin , Amit Levy , Deian Stefan , David Terei , David Mazieres , John Mitchell , and Alejandro Russo . Hails : Protecting data privacy in untrusted web applications . In USENIX Symposium on Operating Systems Design and Implementation (OSDI) , 2012 . Daniel B Giffin, Amit Levy, Deian Stefan, David Terei, David Mazieres, John Mitchell, and Alejandro Russo. Hails: Protecting data privacy in untrusted web applications. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2012."},{"key":"e_1_3_2_2_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046780"},{"key":"e_1_3_2_2_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1352592.1352603"},{"key":"e_1_3_2_2_15_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-40203-6_43"},{"key":"e_1_3_2_2_16_1","volume-title":"Kim and Nickolai Zeldovich. Practical and Effective Sandboxing for Non-root Users. In USENIX Annual Technical Conference (ATC)","author":"Taesoo","year":"2013","unstructured":"Taesoo Kim and Nickolai Zeldovich. Practical and Effective Sandboxing for Non-root Users. In USENIX Annual Technical Conference (ATC) , 2013 . Taesoo Kim and Nickolai Zeldovich. Practical and Effective Sandboxing for Non-root Users. In USENIX Annual Technical Conference (ATC), 2013."},{"key":"e_1_3_2_2_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294293"},{"key":"e_1_3_2_2_18_1","volume-title":"USENIX Symposium on Networked Systems Design and Implementation (NSDI)","author":"Lee Sangmin","year":"2013","unstructured":"Sangmin Lee , Edmund L Wong , Deepak Goel , Mike Dahlin , and Vitaly Shmatikov . &pi;box : a platform for privacy-preserving apps . In USENIX Symposium on Networked Systems Design and Implementation (NSDI) , 2013 . Sangmin Lee, Edmund L Wong, Deepak Goel, Mike Dahlin, and Vitaly Shmatikov. &pi;box: a platform for privacy-preserving apps. In USENIX Symposium on Networked Systems Design and Implementation (NSDI), 2013."},{"key":"e_1_3_2_2_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/1629575.1629606"},{"key":"e_1_3_2_2_20_1","volume-title":"USENIX Security Symposium","author":"Livshits Benjamin","year":"2013","unstructured":"Benjamin Livshits and Jaeyeon Jung . Automatic mediation of privacy-sensitive resource access in smartphone applications . In USENIX Security Symposium , 2013 . Benjamin Livshits and Jaeyeon Jung. Automatic mediation of privacy-sensitive resource access in smartphone applications. In USENIX Security Symposium, 2013."},{"key":"e_1_3_2_2_21_1","volume-title":"USENIX Annual Technical Conference (ATC)","author":"Loscocco Peter","year":"2001","unstructured":"Peter Loscocco and Stephen Smalley . Integrating flexible support for security policies into the linux operating system . In USENIX Annual Technical Conference (ATC) , 2001 . Peter Loscocco and Stephen Smalley. Integrating flexible support for security policies into the linux operating system. In USENIX Annual Technical Conference (ATC), 2001."},{"key":"e_1_3_2_2_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516722"},{"key":"e_1_3_2_2_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/268998.266669"},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/1755688.1755732"},{"key":"e_1_3_2_2_25_1","doi-asserted-by":"publisher","DOI":"10.1002\/sec.360"},{"key":"e_1_3_2_2_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/2414456.2414498"},{"key":"e_1_3_2_2_27_1","volume-title":"USENIX Annual Technical Conference (ATC)","author":"Potter Shaya","year":"2010","unstructured":"Shaya Potter and Jason Nieh . Apiary : Easy-to-use desktop application fault containment on commodity operating systems . In USENIX Annual Technical Conference (ATC) , 2010 . Shaya Potter and Jason Nieh. Apiary: Easy-to-use desktop application fault containment on commodity operating systems. In USENIX Annual Technical Conference (ATC), 2010."},{"key":"e_1_3_2_2_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1542476.1542484"},{"key":"e_1_3_2_2_29_1","volume-title":"USENIX Symposium on Networked Systems Design and Implementation (NSDI)","author":"Roy Indrajit","year":"2010","unstructured":"Indrajit Roy , Srinath Setty , Ann Kilzer , Vitaly Shmatikov , and Emmett Witchel . Airavat : Security and privacy for MapReduce . In USENIX Symposium on Networked Systems Design and Implementation (NSDI) , April 2010 . Indrajit Roy, Srinath Setty, Ann Kilzer, Vitaly Shmatikov, and Emmett Witchel. Airavat: Security and privacy for MapReduce. In USENIX Symposium on Networked Systems Design and Implementation (NSDI), April 2010."},{"key":"e_1_3_2_2_30_1","volume-title":"USENIX Security Symposium","author":"Shekhar Shashi","year":"2012","unstructured":"Shashi Shekhar , Michael Dietz , and Dan S Wallach . Adsplit : Separating smartphone advertising from applications . In USENIX Security Symposium , 2012 . Shashi Shekhar, Michael Dietz, and Dan S Wallach. Adsplit: Separating smartphone advertising from applications. In USENIX Security Symposium, 2012."},{"key":"e_1_3_2_2_31_1","volume-title":"USENIX Security Symposium","author":"Singh Kapil","year":"2009","unstructured":"Kapil Singh , Sumeer Bhola , and Wenke Lee . xBook : Redesigning privacy control in social networking platforms . In USENIX Security Symposium , 2009 . Kapil Singh, Sumeer Bhola, and Wenke Lee. xBook: Redesigning privacy control in social networking platforms. In USENIX Security Symposium, 2009."},{"key":"e_1_3_2_2_32_1","volume-title":"Network and Distributed System Security Symposium (NDSS)","author":"Smalley Stephen","year":"2013","unstructured":"Stephen Smalley and Robert Craig . Security enhanced (SE) android : Bringing flexible mac to android . In Network and Distributed System Security Symposium (NDSS) , 2013 . Stephen Smalley and Robert Craig. Security enhanced (SE) android: Bringing flexible mac to android. In Network and Distributed System Security Symposium (NDSS), 2013."},{"key":"e_1_3_2_2_33_1","volume-title":"Gail Kaiser. Pebbles: Fine-Grained Data Management Abstractions for Modern Operating Systems. In USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Spahn Riley","year":"2014","unstructured":"Riley Spahn , Jonathan Bell , Michael Z. Lee , Sravan Bhamidipati , Roxana Geambasu , and Gail Kaiser. Pebbles: Fine-Grained Data Management Abstractions for Modern Operating Systems. In USENIX Symposium on Operating Systems Design and Implementation (OSDI) , 2014 . Riley Spahn, Jonathan Bell, Michael Z. Lee, Sravan Bhamidipati, Roxana Geambasu, and Gail Kaiser. Pebbles: Fine-Grained Data Management Abstractions for Modern Operating Systems. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2014."},{"key":"e_1_3_2_2_34_1","unstructured":"The SQLite Query Planner. http:\/\/www.sqlite.org\/optoverview.html.  The SQLite Query Planner. http:\/\/www.sqlite.org\/optoverview.html."},{"key":"e_1_3_2_2_35_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Stefan Deian","year":"2014","unstructured":"Deian Stefan , Edward Z. Yang , Petr Marchenko , Alejandro Russo , Dave Herman , Brad Karp , and David Mazi\u00e8res . Protecting Users by Confining JavaScript with COWL . In USENIX Symposium on Operating Systems Design and Implementation (OSDI) , 2014 . Deian Stefan, Edward Z. Yang, Petr Marchenko, Alejandro Russo, Dave Herman, Brad Karp, and David Mazi\u00e8res. Protecting Users by Confining JavaScript with COWL. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2014."},{"key":"e_1_3_2_2_36_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Tang Yang","year":"2012","unstructured":"Yang Tang , Phillip Ames , Sravan Bhamidipati , Ashish Bijlani , Roxana Geambasu , and Nikhil Sarda . CleanOS : Limiting mobile data exposure with idle eviction . In USENIX Symposium on Operating Systems Design and Implementation (OSDI) , 2012 . Yang Tang, Phillip Ames, Sravan Bhamidipati, Ashish Bijlani, Roxana Geambasu, and Nikhil Sarda. CleanOS: Limiting mobile data exposure with idle eviction. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2012."},{"key":"e_1_3_2_2_37_1","volume-title":"USENIX Workshop on Hot Topics in Security (HotSec)","author":"Tiwari Mohit","year":"2012","unstructured":"Mohit Tiwari , Prashanth Mohan , Andrew Osheroff , Hilfi Alkaff , Elaine Shi , Eric Love , Dawn Song , and Krste Asanovi\u0107 . Context-centric security . In USENIX Workshop on Hot Topics in Security (HotSec) , 2012 . Mohit Tiwari, Prashanth Mohan, Andrew Osheroff, Hilfi Alkaff, Elaine Shi, Eric Love, Dawn Song, and Krste Asanovi\u0107. Context-centric security. In USENIX Workshop on Hot Topics in Security (HotSec), 2012."},{"key":"e_1_3_2_2_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/2000064.2000087"},{"key":"e_1_3_2_2_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/2342549.2342561"},{"key":"e_1_3_2_2_40_1","volume-title":"USENIX Security Symposium","author":"Watson Robert N. M.","year":"2010","unstructured":"Robert N. M. Watson , Jonathan Anderson , Ben Laurie , and Kris Kennaway . Capsicum : Practical capabilities for unix . In USENIX Security Symposium , 2010 . Robert N. M. Watson, Jonathan Anderson, Ben Laurie, and Kris Kennaway. Capsicum: Practical capabilities for unix. In USENIX Security Symposium, 2010."},{"key":"e_1_3_2_2_41_1","volume-title":"USENIX Security Symposium","author":"Xu Rubin","year":"2012","unstructured":"Rubin Xu , Hassen Sa\u00efdi , and Ross Anderson . Aurasium : Practical policy enforcement for android applications . In USENIX Security Symposium , 2012 . Rubin Xu, Hassen Sa\u00efdi, and Ross Anderson. Aurasium: Practical policy enforcement for android applications. In USENIX Security Symposium, 2012."},{"key":"e_1_3_2_2_42_1","volume-title":"USENIX Symposium on Operating Systems Design and Implementation (OSDI)","author":"Zeldovich Nickolai","year":"2006","unstructured":"Nickolai Zeldovich , Silas Boyd-Wickizer , Eddie Kohler , and David Mazi\u00e8res . Making information flow explicit in HiStar . In USENIX Symposium on Operating Systems Design and Implementation (OSDI) , 2006 . Nickolai Zeldovich, Silas Boyd-Wickizer, Eddie Kohler, and David Mazi\u00e8res. Making information flow explicit in HiStar. In USENIX Symposium on Operating Systems Design and Implementation (OSDI), 2006."},{"key":"e_1_3_2_2_43_1","volume-title":"Network and Distributed System Security Symposium (NDSS)","author":"Zhou Yajin","year":"2013","unstructured":"Yajin Zhou and Xuxian Jiang . Detecting passive content leaks and pollution in android applications . In Network and Distributed System Security Symposium (NDSS) , 2013 . Yajin Zhou and Xuxian Jiang. Detecting passive content leaks and pollution in android applications. In Network and Distributed System Security Symposium (NDSS), 2013."}],"event":{"name":"EuroSys '15: Tenth EuroSys Conference 2015","sponsor":["SIGOPS ACM Special Interest Group on Operating Systems"],"location":"Bordeaux France","acronym":"EuroSys '15"},"container-title":["Proceedings of the Tenth European Conference on Computer Systems"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2741948.2741966","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2741948.2741966","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T06:12:37Z","timestamp":1750227157000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2741948.2741966"}},"subtitle":["transparently confining mobile applications with custom views of state"],"short-title":[],"issued":{"date-parts":[[2015,4,17]]},"references-count":42,"alternative-id":["10.1145\/2741948.2741966","10.1145\/2741948"],"URL":"https:\/\/doi.org\/10.1145\/2741948.2741966","relation":{},"subject":[],"published":{"date-parts":[[2015,4,17]]},"assertion":[{"value":"2015-04-17","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}