{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,26]],"date-time":"2025-06-26T20:10:03Z","timestamp":1750968603819,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":42,"publisher":"ACM","license":[{"start":{"date-parts":[[2017,10,30]],"date-time":"2017-10-30T00:00:00Z","timestamp":1509321600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Natural Science Foundation of China","award":["61472165","61572278"],"award-info":[{"award-number":["61472165","61572278"]}]},{"name":"National Key Research and Development Program of China","award":["2016YFB0800102"],"award-info":[{"award-number":["2016YFB0800102"]}]},{"name":"U.S. Office of Naval Research","award":["N00014-16-1-3214","N00014-16-1-3216"],"award-info":[{"award-number":["N00014-16-1-3214","N00014-16-1-3216"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2017,10,30]]},"DOI":"10.1145\/3133956.3133975","type":"proceedings-article","created":{"date-parts":[[2017,10,27]],"date-time":"2017-10-27T12:48:18Z","timestamp":1509108498000},"page":"1051-1063","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":4,"title":["Vulnerable Implicit Service"],"prefix":"10.1145","author":[{"given":"Lingguang","family":"Lei","sequence":"first","affiliation":[{"name":"Chinese Academy of Sciences & Chinese Academy of Sciences, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yi","family":"He","sequence":"additional","affiliation":[{"name":"Tsinghua University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kun","family":"Sun","sequence":"additional","affiliation":[{"name":"George Mason University, Fairfax, VA, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jiwu","family":"Jing","sequence":"additional","affiliation":[{"name":"Chinese Academy of Sciences & Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yuewu","family":"Wang","sequence":"additional","affiliation":[{"name":"Chinese Academy of Sciences & Chinese Academy of Sciences, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Qi","family":"Li","sequence":"additional","affiliation":[{"name":"Tsinghua University, Beijing, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jian","family":"Weng","sequence":"additional","affiliation":[{"name":"Jinan University, Guangzhou, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2017,10,30]]},"reference":[{"key":"e_1_3_2_2_1_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23384"},{"key":"e_1_3_2_2_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/2666356.2594299"},{"key":"e_1_3_2_2_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2015.61"},{"key":"e_1_3_2_2_4_1","volume-title":"2015 30th IEEE\/ACM International Conference on. IEEE, 669--679","author":"Barros Paulo","year":"2015","unstructured":"Paulo Barros, Ren\u00e9 Just, Suzanne Millstein, Paul Vines, Werner Dietl, Michael D Ernst, et almbox. 2015. Static Analysis of Implicit Control Flow: Resolving Java Reflection and Android Intents (T) Automated Software Engineering (ASE), 2015 30th IEEE\/ACM International Conference on. IEEE, 669--679."},{"volume-title":"Presented as part of the 22nd USENIX Security Symposium (USENIX Security 13). 131--146.","author":"Bugiel Sven","key":"e_1_3_2_2_5_1","unstructured":"Sven Bugiel, Stephen Heuser, and Ahmad-Reza Sadeghi. 2013. Flexible and fine-grained mandatory access control on Android for diverse security and privacy policies. In Presented as part of the 22nd USENIX Security Symposium (USENIX Security 13). 131--146."},{"key":"e_1_3_2_2_6_1","volume-title":"2016 IEEE European Symposium on. IEEE, 47--62","author":"Calzavara Stefano","year":"2016","unstructured":"Stefano Calzavara, Ilya Grishchenko, and Matteo Maffei. 2016. Horndroid: Practical and sound static analysis of android applications by smt solving Security and Privacy (EuroS&P), 2016 IEEE European Symposium on. IEEE, 47--62."},{"key":"e_1_3_2_2_7_1","volume-title":"USENIX Security","volume":"14","author":"Chen Qi Alfred","year":"2014","unstructured":"Qi Alfred Chen, Zhiyun Qian, and Zhuoqing Morley Mao. 2014. Peeking into Your App without Actually Seeing It: UI State Inference and Novel Android Attacks. USENIX Security, Vol. Vol. 14. 1037--1052."},{"key":"e_1_3_2_2_8_1","volume-title":"Adrienne Porter Felt","author":"Chin Erika","year":"2011","unstructured":"Erika Chin, Adrienne Porter Felt, Kate Greenwood, and David Wagner 2011. Analyzing inter-application communication in Android Proceedings of the 9th international conference on Mobile systems, applications, and services. ACM, 239--252."},{"volume-title":"Optimization of object-oriented programs using static class hierarchy analysis European Conference on Object-Oriented Programming","author":"Dean Jeffrey","key":"e_1_3_2_2_9_1","unstructured":"Jeffrey Dean, David Grove, and Craig Chambers. 1995. Optimization of object-oriented programs using static class hierarchy analysis European Conference on Object-Oriented Programming. Springer, 77--101."},{"key":"e_1_3_2_2_10_1","doi-asserted-by":"crossref","unstructured":"Manuel Egele David Brumley Yanick Fratantonio and Christopher Kruegel 2013. An empirical study of cryptographic misuse in android applications Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security. ACM 73--84.","DOI":"10.1145\/2508859.2516693"},{"volume-title":"USENIX security symposium","author":"Enck William","key":"e_1_3_2_2_11_1","unstructured":"William Enck, Damien Octeau, Patrick McDaniel, and Swarat Chaudhuri 2011. A Study of Android Application Security.. In USENIX security symposium, Vol. Vol. 2. 2."},{"key":"e_1_3_2_2_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/2046707.2046779"},{"key":"e_1_3_2_2_13_1","volume-title":"2016 IEEE Symposium on. IEEE, 377--396","author":"Fratantonio Yanick","year":"2016","unstructured":"Yanick Fratantonio, Antonio Bianchi, William Robertson, Engin Kirda, Christopher Kruegel, and Giovanni Vigna 2016. Triggerscope: Towards detecting logic bombs in android applications Security and Privacy (SP), 2016 IEEE Symposium on. IEEE, 377--396."},{"key":"e_1_3_2_2_14_1","volume-title":"Damien Octeau, and Patrick McDaniel","author":"Fritz Christian","year":"2013","unstructured":"Christian Fritz, Steven Arzt, Siegfried Rasthofer, Eric Bodden, Alexandre Bartel, Jacques Klein, Yves Le Traon, Damien Octeau, and Patrick McDaniel 2013. Highly precise taint analysis for Android applications. EC SPRIDE, TU Darmstadt, Tech. Rep (2013)."},{"key":"e_1_3_2_2_15_1","unstructured":"Google 2017. Android Application Fundamentals. https:\/\/developer.android.com\/guide\/components\/fundamentals.html. (2017)."},{"key":"e_1_3_2_2_16_1","unstructured":"Google 2017. GooglePlay. https:\/\/play.google.com\/store\/apps?hl=en. (2017)."},{"key":"e_1_3_2_2_17_1","unstructured":"Google. 2017 Intents and Intent Filters. https:\/\/developer.android.com\/guide\/components\/intents-filters.html. (2017)."},{"key":"e_1_3_2_2_18_1","unstructured":"Google. 2017. Service Component. https:\/\/developer.android.com\/guide\/topics\/manifestservice-element.html. (2017)."},{"key":"e_1_3_2_2_19_1","unstructured":"Google. 2017. Shared-Preferences:Saving Key-Value Sets. (2017)."},{"key":"e_1_3_2_2_20_1","unstructured":"Google. 2017. Uses SDK Element in Android Application Manifest File. https:\/\/developer.android.com\/guide\/topics\/manifest\/uses-sdk-element.html. (2017)."},{"key":"e_1_3_2_2_21_1","doi-asserted-by":"crossref","unstructured":"Michael I Gordon Deokhwan Kim Jeff H Perkins Limei Gilham Nguyen Nguyen and Martin C Rinard. 2015. Information Flow Analysis of Android Applications in DroidSafe. NDSS. Citeseer.","DOI":"10.14722\/ndss.2015.23089"},{"key":"e_1_3_2_2_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2480362.2480706"},{"key":"e_1_3_2_2_23_1","unstructured":"PSU SIIS Lab. 2014. coal solver. http:\/\/siis.cse.psu.edu\/coal\/. (2014)."},{"key":"e_1_3_2_2_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-36579-6_12"},{"key":"e_1_3_2_2_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/2786805.2786879"},{"key":"e_1_3_2_2_26_1","volume-title":"Steven Arzt, Siegfried Rasthofer, Eric Bodden, Damien Octeau, and Patrick McDaniel.","author":"Li Li","year":"2015","unstructured":"Li Li, Alexandre Bartel, Tegawend\u00e9 F Bissyand\u00e9, Jacques Klein, Yves Le Traon, Steven Arzt, Siegfried Rasthofer, Eric Bodden, Damien Octeau, and Patrick McDaniel. 2015. Iccta: Detecting inter-component privacy leaks in android apps Proceedings of the 37th International Conference on Software Engineering-Volume 1. IEEE Press, 280--291."},{"volume-title":"Droidra: Taming reflection to support whole-program analysis of android apps Proceedings of the 25th International Symposium on Software Testing and Analysis. ACM, 318--329","author":"Li Li","key":"e_1_3_2_2_27_1","unstructured":"Li Li, Tegawend\u00e9 F Bissyand\u00e9, Damien Octeau, and Jacques Klein 2016. Droidra: Taming reflection to support whole-program analysis of android apps Proceedings of the 25th International Symposium on Software Testing and Analysis. ACM, 318--329."},{"key":"e_1_3_2_2_28_1","volume-title":"Victor Van Der Veen, and Christian Platzer","author":"Lindorfer Martina","year":"2014","unstructured":"Martina Lindorfer, Matthias Neugschwandtner, Lukas Weichselbaum, Yanick Fratantonio, Victor Van Der Veen, and Christian Platzer. 2014. Andrubis-1,000,000 apps later: A view on current Android malware behaviors 2014 Third International Workshop on Building Analysis Datasets and Gathering Experience Returns for Security (BADGERS). IEEE, 3--17."},{"key":"e_1_3_2_2_29_1","doi-asserted-by":"crossref","unstructured":"Long Lu Zhichun Li Zhenyu Wu Wenke Lee and Guofei Jiang 2012. Chex: statically vetting android apps for component hijacking vulnerabilities Proceedings of the 2012 ACM conference on Computer and communications security. ACM 229--240.","DOI":"10.1145\/2382196.2382223"},{"key":"e_1_3_2_2_30_1","volume-title":"2013 29th IEEE International Conference on. IEEE, 70--79","author":"McDonnell Tyler","year":"2013","unstructured":"Tyler McDonnell, Baishakhi Ray, and Miryung Kim 2013. An empirical study of api stability and adoption in the android ecosystem Software Maintenance (ICSM), 2013 29th IEEE International Conference on. IEEE, 70--79."},{"volume-title":"Composite constant propagation: Application to android inter-component communication analysis Proceedings of the 37th International Conference on Software Engineering-Volume 1","author":"Octeau Damien","key":"e_1_3_2_2_31_1","unstructured":"Damien Octeau, Daniel Luchaup, Matthew Dering, Somesh Jha, and Patrick McDaniel 2015. Composite constant propagation: Application to android inter-component communication analysis Proceedings of the 37th International Conference on Software Engineering-Volume 1. IEEE Press, 77--88."},{"volume-title":"Presented as part of the 22nd USENIX Security Symposium (USENIX Security 13). 543--558.","author":"Octeau Damien","key":"e_1_3_2_2_32_1","unstructured":"Damien Octeau, Patrick McDaniel, Somesh Jha, Alexandre Bartel, Eric Bodden, Jacques Klein, and Yves Le Traon 2013. Effective inter-component communication mapping in android: An essential step towards holistic security analysis. In Presented as part of the 22nd USENIX Security Symposium (USENIX Security 13). 543--558."},{"key":"e_1_3_2_2_33_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2014.23328"},{"key":"e_1_3_2_2_34_1","doi-asserted-by":"crossref","unstructured":"Siegfried Rasthofer Steven Arzt Marc Miltenberger and Eric Bodden 2016. Harvesting runtime values in android applications that feature anti-analysis techniques Proceedings of the Annual Symposium on Network and Distributed System Security (NDSS).","DOI":"10.14722\/ndss.2016.23066"},{"volume-title":"Precise interprocedural dataflow analysis via graph reachability Proceedings of the 22nd ACM SIGPLAN-SIGACT symposium on Principles of programming languages. ACM, 49--61","author":"Reps Thomas","key":"e_1_3_2_2_35_1","unstructured":"Thomas Reps, Susan Horwitz, and Mooly Sagiv. 1995. Precise interprocedural dataflow analysis via graph reachability Proceedings of the 22nd ACM SIGPLAN-SIGACT symposium on Principles of programming languages. ACM, 49--61."},{"key":"e_1_3_2_2_36_1","volume-title":"NDSS","volume":"310","author":"Smalley Stephen","year":"2013","unstructured":"Stephen Smalley and Robert Craig 2013. Security Enhanced (SE) Android: Bringing Flexible MAC to Android. NDSS, Vol. Vol. 310. 20--38."},{"key":"e_1_3_2_2_37_1","doi-asserted-by":"publisher","DOI":"10.1145\/2591971.2592003"},{"volume-title":"EASEAndroid: automatic policy analysis and refinement for security enhanced android via large-scale semi-supervised learning 24th USENIX Security Symposium (USENIX Security 15). 351--366","author":"Wang Ruowen","key":"e_1_3_2_2_38_1","unstructured":"Ruowen Wang, William Enck, Douglas Reeves, Xinwen Zhang, Peng Ning, Dingbang Xu, Wu Zhou, and Ahmed M Azab. 2015. EASEAndroid: automatic policy analysis and refinement for security enhanced android via large-scale semi-supervised learning 24th USENIX Security Symposium (USENIX Security 15). 351--366."},{"key":"e_1_3_2_2_39_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660357"},{"key":"e_1_3_2_2_40_1","unstructured":"Michelle Y Wong and David Lie 2016. Intellidroid: A targeted input generator for the dynamic analysis of android malware Proceedings of the Annual Symposium on Network and Distributed System Security (NDSS)."},{"key":"e_1_3_2_2_41_1","first-page":"201638","article-title":"Toward Engineering a Secure Android Ecosystem","volume":"49","author":"Xu Meng","year":"2016","unstructured":"Meng Xu, Chengyu Song, Yang Ji, Ming-Wei Shih, Kangjie Lu, Cong Zheng, Ruian Duan, Yeongjin Jang, Byoungyoung Lee, Chenxiong Qian, et almbox. 2016. Toward Engineering a Secure Android Ecosystem: A Survey of Existing TechniquesACM Computing Surveys (CSUR) Vol. 49, 2 (201638.","journal-title":"A Survey of Existing TechniquesACM Computing Surveys (CSUR)"},{"key":"e_1_3_2_2_42_1","doi-asserted-by":"crossref","unstructured":"Mu Zhang and Heng Yin. 2014 AppSealer: Automatic Generation of Vulnerability-Specific Patches for Preventing Component Hijacking Attacks in Android Applications. NDSS. endthebibliography","DOI":"10.14722\/ndss.2014.23255"}],"event":{"name":"CCS '17: 2017 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Dallas Texas USA","acronym":"CCS '17"},"container-title":["Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3133975","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3133956.3133975","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,26]],"date-time":"2025-06-26T19:34:00Z","timestamp":1750966440000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3133956.3133975"}},"subtitle":["A Revisit"],"short-title":[],"issued":{"date-parts":[[2017,10,30]]},"references-count":42,"alternative-id":["10.1145\/3133956.3133975","10.1145\/3133956"],"URL":"https:\/\/doi.org\/10.1145\/3133956.3133975","relation":{},"subject":[],"published":{"date-parts":[[2017,10,30]]},"assertion":[{"value":"2017-10-30","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}