{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,4]],"date-time":"2026-06-04T16:51:51Z","timestamp":1780591911833,"version":"3.54.1"},"reference-count":142,"publisher":"Association for Computing Machinery (ACM)","issue":"3","license":[{"start":{"date-parts":[[2021,4,28]],"date-time":"2021-04-28T00:00:00Z","timestamp":1619568000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Priv. Secur."],"published-print":{"date-parts":[[2021,8,31]]},"abstract":"<jats:p>Android is the most widely deployed end-user focused operating system. With its growing set of use cases encompassing communication, navigation, media consumption, entertainment, finance, health, and access to sensors, actuators, cameras, or microphones, its underlying security model needs to address a host of practical threats in a wide variety of scenarios while being useful to non-security experts. The model needs to strike a difficult balance between security, privacy, and usability for end users, assurances for app developers, and system performance under tight hardware constraints. While many of the underlying design principles have implicitly informed the overall system architecture, access control mechanisms, and mitigation techniques, the Android security model has previously not been formally published. This article aims to both document the abstract model and discuss its implications. Based on a definition of the threat model and Android ecosystem context in which it operates, we analyze how the different security measures in past and current Android implementations work together to mitigate these threats. There are some special cases in applying the security model, and we discuss such deliberate deviations from the abstract model.<\/jats:p>","DOI":"10.1145\/3448609","type":"journal-article","created":{"date-parts":[[2021,4,28]],"date-time":"2021-04-28T22:12:02Z","timestamp":1619647922000},"page":"1-35","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":53,"title":["The Android Platform Security Model"],"prefix":"10.1145","volume":"24","author":[{"given":"Ren\u00e9","family":"Mayrhofer","sequence":"first","affiliation":[{"name":"Google and Johannes Kepler University Linz, Austria"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Jeffrey Vander","family":"Stoep","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Chad","family":"Brubaker","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Nick","family":"Kralevich","sequence":"additional","affiliation":[{"name":"Google, USA"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2021,4,28]]},"reference":[{"key":"e_1_2_1_1_1","unstructured":"2015. Stagefright Vulnerability Report. Retrieved from https:\/\/www.kb.cert.org\/vuls\/id\/924951.  2015. Stagefright Vulnerability Report. Retrieved from https:\/\/www.kb.cert.org\/vuls\/id\/924951."},{"key":"e_1_2_1_2_1","unstructured":"2017. BlueBorne. Retrieved from https:\/\/go.armis.com\/hubfs\/BlueBorne%20-%20Android%20Exploit%20(20171130).pdf?t&equals;1529364695784.  2017. BlueBorne. Retrieved from https:\/\/go.armis.com\/hubfs\/BlueBorne%20-%20Android%20Exploit%20(20171130).pdf?t&equals;1529364695784."},{"key":"e_1_2_1_3_1","unstructured":"2017. CVE-2017-13177. Retrieved from https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name&equals;CVE-2017-13177.  2017. CVE-2017-13177. Retrieved from https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name&equals;CVE-2017-13177."},{"key":"e_1_2_1_4_1","unstructured":"2018. Retrieved from https:\/\/www.stonetemple.com\/mobile-vs-desktop-usage-study\/.  2018. Retrieved from https:\/\/www.stonetemple.com\/mobile-vs-desktop-usage-study\/."},{"key":"e_1_2_1_5_1","unstructured":"2018. Retrieved from http:\/\/gs.statcounter.com\/platform-market-share\/desktop-mobile-tablet.  2018. Retrieved from http:\/\/gs.statcounter.com\/platform-market-share\/desktop-mobile-tablet."},{"key":"e_1_2_1_6_1","unstructured":"2018. Android Enterprise Security White Paper. Retrieved from https:\/\/source.android.com\/security\/reports\/Google_Android_Enterprise_Security_Whitepaper_2018.pdf.  2018. Android Enterprise Security White Paper. Retrieved from https:\/\/source.android.com\/security\/reports\/Google_Android_Enterprise_Security_Whitepaper_2018.pdf."},{"key":"e_1_2_1_7_1","unstructured":"2018. Android Security 2017 Year In Review. Retrieved from https:\/\/source.android.com\/security\/reports\/Google_Android_Security_2017_Report_Final.pdf.  2018. Android Security 2017 Year In Review. Retrieved from https:\/\/source.android.com\/security\/reports\/Google_Android_Security_2017_Report_Final.pdf."},{"key":"e_1_2_1_8_1","unstructured":"2018. CVE-2017-17558: Remote Code Execution in Media Frameworks. Retrieved from https:\/\/source.android.com\/security\/bulletin\/2018-06-01#kernel-components.  2018. CVE-2017-17558: Remote Code Execution in Media Frameworks. Retrieved from https:\/\/source.android.com\/security\/bulletin\/2018-06-01#kernel-components."},{"key":"e_1_2_1_9_1","unstructured":"2018. CVE-2018-9341: Remote Code Execution in Media Frameworks. Retrieved from https:\/\/source.android.com\/security\/bulletin\/2018-06-01#media-framework.  2018. CVE-2018-9341: Remote Code Execution in Media Frameworks. Retrieved from https:\/\/source.android.com\/security\/bulletin\/2018-06-01#media-framework."},{"key":"e_1_2_1_10_1","unstructured":"2018. SVE-2018-11599: Theft of Arbitrary Files Leading to Emails and Email Accounts Takeover. Retrieved from https:\/\/security.samsungmobile.com\/securityUpdate.smsb.  2018. SVE-2018-11599: Theft of Arbitrary Files Leading to Emails and Email Accounts Takeover. Retrieved from https:\/\/security.samsungmobile.com\/securityUpdate.smsb."},{"key":"e_1_2_1_11_1","unstructured":"2018. SVE-2018-11633: Buffer Overflow in Trustlet. Retrieved from https:\/\/security.samsungmobile.com\/securityUpdate.smsb.  2018. SVE-2018-11633: Buffer Overflow in Trustlet. Retrieved from https:\/\/security.samsungmobile.com\/securityUpdate.smsb."},{"key":"e_1_2_1_12_1","unstructured":"2019. Android Now FIDO2 Certified. Retrieved from https:\/\/fidoalliance.org\/android-now-fido2-certified-accelerating-global-migration-beyond-passwords\/.  2019. Android Now FIDO2 Certified. Retrieved from https:\/\/fidoalliance.org\/android-now-fido2-certified-accelerating-global-migration-beyond-passwords\/."},{"key":"e_1_2_1_13_1","first-page":"18013","article-title":"Personal identification\u2014ISO-compliant driving licence\u2014Part 5: Mobile driving licence (mDL) application","year":"2020","unstructured":"2020 . Personal identification\u2014ISO-compliant driving licence\u2014Part 5: Mobile driving licence (mDL) application . Draft International Standard: ISO\/IEC DIS 18013 - 18015 . 2020. Personal identification\u2014ISO-compliant driving licence\u2014Part 5: Mobile driving licence (mDL) application. Draft International Standard: ISO\/IEC DIS 18013-5.","journal-title":"Draft International Standard: ISO\/IEC DIS"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.33"},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/322796.322806"},{"key":"e_1_2_1_16_1","volume-title":"How We Fought Bad Apps and Malicious Developers","author":"Ahn Andrew","year":"2017","unstructured":"Andrew Ahn . 2018. How We Fought Bad Apps and Malicious Developers in 2017 . Retrieved from https:\/\/android-developers.googleblog.com\/2018\/01\/how-we-fought-bad-apps-and-malicious.html. Andrew Ahn. 2018. How We Fought Bad Apps and Malicious Developers in 2017. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/01\/how-we-fought-bad-apps-and-malicious.html."},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1080\/07421222.2016.1243947"},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/CoCoNet.2015.7411305"},{"key":"e_1_2_1_19_1","unstructured":"AOSP. [n.d.]. Android Compatibility Definition Document. Retrieved from https:\/\/source.android.com\/compatibility\/cdd.  AOSP. [n.d.]. Android Compatibility Definition Document. Retrieved from https:\/\/source.android.com\/compatibility\/cdd."},{"key":"e_1_2_1_20_1","unstructured":"AOSP. [n.d.]. Android Enterprise Recommended Requirements. https:\/\/www.android.com\/enterprise\/recommended\/requirements\/.  AOSP. [n.d.]. Android Enterprise Recommended Requirements. https:\/\/www.android.com\/enterprise\/recommended\/requirements\/."},{"key":"e_1_2_1_21_1","unstructured":"AOSP. [n.d.]. Android Platform Permissions Requesting Guidance. Retrieved from https:\/\/material.io\/design\/platform-guidance\/android-permissions.html#request-types.  AOSP. [n.d.]. Android Platform Permissions Requesting Guidance. Retrieved from https:\/\/material.io\/design\/platform-guidance\/android-permissions.html#request-types."},{"key":"e_1_2_1_22_1","unstructured":"AOSP. [n.d.]. Android Verified Boot Flow. Retrieved from https:\/\/source.android.com\/security\/verifiedboot\/boot-flow.  AOSP. [n.d.]. Android Verified Boot Flow. Retrieved from https:\/\/source.android.com\/security\/verifiedboot\/boot-flow."},{"key":"e_1_2_1_23_1","unstructured":"AOSP. [n.d.]. App Manifest Overview. Retrieved from https:\/\/developer.android.com\/guide\/topics\/manifest\/manifest-intro.  AOSP. [n.d.]. App Manifest Overview. Retrieved from https:\/\/developer.android.com\/guide\/topics\/manifest\/manifest-intro."},{"key":"e_1_2_1_24_1","unstructured":"AOSP. [n.d.]. App Manifest Permission Element. Retrieved from https:\/\/developer.android.com\/guide\/topics\/manifest\/permission-element.  AOSP. [n.d.]. App Manifest Permission Element. Retrieved from https:\/\/developer.android.com\/guide\/topics\/manifest\/permission-element."},{"key":"e_1_2_1_25_1","unstructured":"AOSP. [n.d.]. Developer Documentation android.security.identity. Retrieved from https:\/\/developer.android.com\/reference\/android\/security\/identity\/package-summary.  AOSP. [n.d.]. Developer Documentation android.security.identity. Retrieved from https:\/\/developer.android.com\/reference\/android\/security\/identity\/package-summary."},{"key":"e_1_2_1_26_1","unstructured":"AOSP. [n.d.]. Developer Documentation android.security.keystore.KeyGenParameterSpec. Retrieved from https:\/\/developer.android.com\/reference\/android\/security\/keystore\/KeyGenParameterSpec.  AOSP. [n.d.]. Developer Documentation android.security.keystore.KeyGenParameterSpec. Retrieved from https:\/\/developer.android.com\/reference\/android\/security\/keystore\/KeyGenParameterSpec."},{"key":"e_1_2_1_27_1","unstructured":"AOSP. [n.d.]. Gatekeeper. Retrieved from https:\/\/source.android.com\/security\/authentication\/gatekeeper.  AOSP. [n.d.]. Gatekeeper. Retrieved from https:\/\/source.android.com\/security\/authentication\/gatekeeper."},{"key":"e_1_2_1_28_1","unstructured":"AOSP. [n.d.]. Hardware-backed Keystore. Retrieved from https:\/\/source.android.com\/security\/keystore\/.  AOSP. [n.d.]. Hardware-backed Keystore. Retrieved from https:\/\/source.android.com\/security\/keystore\/."},{"key":"e_1_2_1_29_1","unstructured":"AOSP. [n.d.]. Intents and Intent Filters. Retrieved from https:\/\/developer.android.com\/guide\/components\/intents-filters.  AOSP. [n.d.]. Intents and Intent Filters. Retrieved from https:\/\/developer.android.com\/guide\/components\/intents-filters."},{"key":"e_1_2_1_30_1","unstructured":"AOSP. [n.d.]. Network security configuration. Retrieved from https:\/\/developer.android.com\/training\/articles\/security-config.  AOSP. [n.d.]. Network security configuration. Retrieved from https:\/\/developer.android.com\/training\/articles\/security-config."},{"key":"e_1_2_1_31_1","unstructured":"AOSP. [n.d.]. Privacy: MAC Randomization. Retrieved from https:\/\/source.android.com\/devices\/tech\/connect\/wifi-mac-randomization.  AOSP. [n.d.]. Privacy: MAC Randomization. Retrieved from https:\/\/source.android.com\/devices\/tech\/connect\/wifi-mac-randomization."},{"key":"e_1_2_1_32_1","unstructured":"AOSP. [n.d.]. Privileged Permission Allowlisting. Retrieved from https:\/\/source.android.com\/devices\/tech\/config\/perms-whitelist.  AOSP. [n.d.]. Privileged Permission Allowlisting. Retrieved from https:\/\/source.android.com\/devices\/tech\/config\/perms-whitelist."},{"key":"e_1_2_1_33_1","unstructured":"AOSP. [n.d.]. Restrictions on Non-SDK Interfaces. Retrieved from https:\/\/developer.android.com\/distribute\/best-practices\/develop\/restrictions-non-sdk-interfaces.  AOSP. [n.d.]. Restrictions on Non-SDK Interfaces. Retrieved from https:\/\/developer.android.com\/distribute\/best-practices\/develop\/restrictions-non-sdk-interfaces."},{"key":"e_1_2_1_34_1","unstructured":"AOSP. [n.d.]. Security Updates and Resources\u2014Process Types. Retrieved from https:\/\/source.android.com\/security\/overview\/updates-resources#process_types.  AOSP. [n.d.]. Security Updates and Resources\u2014Process Types. Retrieved from https:\/\/source.android.com\/security\/overview\/updates-resources#process_types."},{"key":"e_1_2_1_35_1","unstructured":"AOSP. [n.d.]. Verifying Boot. Retrieved from https:\/\/source.android.com\/security\/verifiedboot\/verified-boot.  AOSP. [n.d.]. Verifying Boot. Retrieved from https:\/\/source.android.com\/security\/verifiedboot\/verified-boot."},{"key":"e_1_2_1_36_1","unstructured":"AOSP. [n.d.]. Verifying Hardware-backed Key Pairs with Key Attestation. Retrieved from https:\/\/developer.android.com\/training\/articles\/security-key-attestation.  AOSP. [n.d.]. Verifying Hardware-backed Key Pairs with Key Attestation. Retrieved from https:\/\/developer.android.com\/training\/articles\/security-key-attestation."},{"key":"e_1_2_1_37_1","unstructured":"AOSP. 2018. Android Protected Confirmation. Retrieved from https:\/\/developer.android.com\/preview\/features\/security#android-protected-confirmation.  AOSP. 2018. Android Protected Confirmation. Retrieved from https:\/\/developer.android.com\/preview\/features\/security#android-protected-confirmation."},{"key":"e_1_2_1_38_1","unstructured":"AOSP. 2018. Android Verified Boot 2.0. Retrieved from https:\/\/android.googlesource.com\/platform\/external\/avb\/+\/android11-release\/README.md.  AOSP. 2018. Android Verified Boot 2.0. Retrieved from https:\/\/android.googlesource.com\/platform\/external\/avb\/+\/android11-release\/README.md."},{"key":"e_1_2_1_39_1","unstructured":"AOSP. 2018. APK Signature Scheme v3. Retrieved from https:\/\/source.android.com\/security\/apksigning\/v3.  AOSP. 2018. APK Signature Scheme v3. Retrieved from https:\/\/source.android.com\/security\/apksigning\/v3."},{"key":"e_1_2_1_40_1","unstructured":"AOSP. 2018. SELinux for Android 8.0: Changes & Customizations. Retrieved from https:\/\/source.android.com\/security\/selinux\/images\/SELinux_Treble.pdf.  AOSP. 2018. SELinux for Android 8.0: Changes & Customizations. Retrieved from https:\/\/source.android.com\/security\/selinux\/images\/SELinux_Treble.pdf."},{"key":"e_1_2_1_41_1","unstructured":"AOSP. 2019. Restrictions on Starting Activities from the Background. Retrieved from https:\/\/developer.android.com\/guide\/components\/activities\/background-starts.  AOSP. 2019. Restrictions on Starting Activities from the Background. Retrieved from https:\/\/developer.android.com\/guide\/components\/activities\/background-starts."},{"key":"e_1_2_1_42_1","unstructured":"AOSP. 2020. Android 11 Biometric Authentication. Retrieved from https:\/\/developer.android.com\/about\/versions\/11\/features#biometric-auth.  AOSP. 2020. Android 11 Biometric Authentication. Retrieved from https:\/\/developer.android.com\/about\/versions\/11\/features#biometric-auth."},{"key":"e_1_2_1_43_1","unstructured":"AOSP. 2020. Security and Privacy Enhancements in Android 10. Retrieved from https:\/\/source.android.com\/security\/enhancements\/enhancements10.  AOSP. 2020. Security and Privacy Enhancements in Android 10. Retrieved from https:\/\/source.android.com\/security\/enhancements\/enhancements10."},{"key":"e_1_2_1_44_1","unstructured":"Dan Austin and Jeff Vander Stoep. 2016. Hardening the media stack. Retrieved from https:\/\/android-developers.googleblog.com\/2016\/05\/hardening-media-stack.html.  Dan Austin and Jeff Vander Stoep. 2016. Hardening the media stack. Retrieved from https:\/\/android-developers.googleblog.com\/2016\/05\/hardening-media-stack.html."},{"key":"e_1_2_1_45_1","volume-title":"Proceedings of the 4th USENIX Conference on Offensive Technologies (WOOT\u201910)","author":"Aviv Adam J.","unstructured":"Adam J. Aviv , Katherine Gibson , Evan Mossop , Matt Blaze , and Jonathan M. Smith . 2010. Smudge attacks on smartphone touch screens . In Proceedings of the 4th USENIX Conference on Offensive Technologies (WOOT\u201910) . USENIX Association, Berkeley, CA, 1--7. Adam J. Aviv, Katherine Gibson, Evan Mossop, Matt Blaze, and Jonathan M. Smith. 2010. Smudge attacks on smartphone touch screens. In Proceedings of the 4th USENIX Conference on Offensive Technologies (WOOT\u201910). USENIX Association, Berkeley, CA, 1--7."},{"key":"e_1_2_1_46_1","volume-title":"Proceedings of the 2014 ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec\u201914)","author":"Barrera David","unstructured":"David Barrera , Daniel McCarney , Jeremy Clark , and Paul C . van Oorschot. 2014. Baton: Certificate agility for Android\u2019s decentralized signing infrastructure . In Proceedings of the 2014 ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec\u201914) . Association for Computing Machinery, New York, NY, 1--12. DOI:https:\/\/doi.org\/10.1145\/2627393.2627397 David Barrera, Daniel McCarney, Jeremy Clark, and Paul C. van Oorschot. 2014. Baton: Certificate agility for Android\u2019s decentralized signing infrastructure. In Proceedings of the 2014 ACM Conference on Security and Privacy in Wireless and Mobile Networks (WiSec\u201914). Association for Computing Machinery, New York, NY, 1--12. DOI:https:\/\/doi.org\/10.1145\/2627393.2627397"},{"key":"e_1_2_1_48_1","unstructured":"James Bender. 2018. Google Play security metadata and offline app distribution. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/06\/google-play-security-metadata-and.html.  James Bender. 2018. Google Play security metadata and offline app distribution. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/06\/google-play-security-metadata-and.html."},{"key":"e_1_2_1_49_1","volume-title":"Proceedings of the USENIX Security Symposium","volume":"12","author":"Bhatkar Sandeep","unstructured":"Sandeep Bhatkar , Daniel C. DuVarney , and R. Sekar . 2003. Address obfuscation: An efficient approach to combat a board range of memory error exploits . In Proceedings of the USENIX Security Symposium , Volume 12 . USENIX Association, Berkeley, CA, 8--8. http:\/\/dl.acm.org\/citation.cfm?id&equals;1251353.1251361 Sandeep Bhatkar, Daniel C. DuVarney, and R. Sekar. 2003. Address obfuscation: An efficient approach to combat a board range of memory error exploits. In Proceedings of the USENIX Security Symposium, Volume 12. USENIX Association, Berkeley, CA, 8--8. http:\/\/dl.acm.org\/citation.cfm?id&equals;1251353.1251361"},{"key":"e_1_2_1_50_1","unstructured":"Chad Brubaker. 2014. Introducing nogotofail\u2014A network traffic security testing tool. Retrieved from https:\/\/security.googleblog.com\/2014\/11\/introducing-nogotofaila-network-traffic.html.  Chad Brubaker. 2014. Introducing nogotofail\u2014A network traffic security testing tool. Retrieved from https:\/\/security.googleblog.com\/2014\/11\/introducing-nogotofaila-network-traffic.html."},{"key":"e_1_2_1_51_1","unstructured":"Chad Brubaker. 2018. Protecting Users with TLS by Default in Android P. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/04\/protecting-users-with-tls-by-default-in.html.  Chad Brubaker. 2018. Protecting Users with TLS by Default in Android P. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/04\/protecting-users-with-tls-by-default-in.html."},{"key":"e_1_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2019.00076"},{"key":"e_1_2_1_53_1","unstructured":"Pierre Carru. 2017. Attack TrustZone with Rowhammer. Retrieved from http:\/\/www.eshard.com\/wp-content\/plugins\/email-before-download\/download.php?dl&equals;9465aa084ff0f070a3acedb56bcb34f5.  Pierre Carru. 2017. Attack TrustZone with Rowhammer. Retrieved from http:\/\/www.eshard.com\/wp-content\/plugins\/email-before-download\/download.php?dl&equals;9465aa084ff0f070a3acedb56bcb34f5."},{"key":"e_1_2_1_54_1","unstructured":"Dan Cashman. 2017. SELinux in Android O: Separating Policy to Allow for Independent Updates. Retrieved from https:\/\/events.static.linuxfound.org\/sites\/events\/files\/slides\/LSS%20-%20Treble%20%27n%27%20SELinux.pdf.  Dan Cashman. 2017. SELinux in Android O: Separating Policy to Allow for Independent Updates. Retrieved from https:\/\/events.static.linuxfound.org\/sites\/events\/files\/slides\/LSS%20-%20Treble%20%27n%27%20SELinux.pdf."},{"key":"e_1_2_1_55_1","unstructured":"Jen Chai. 2019. Giving users more control over their location data. Retrieved from https:\/\/android-developers.googleblog.com\/2019\/03\/giving-users-more-control-over-their.html.  Jen Chai. 2019. Giving users more control over their location data. Retrieved from https:\/\/android-developers.googleblog.com\/2019\/03\/giving-users-more-control-over-their.html."},{"key":"e_1_2_1_56_1","doi-asserted-by":"publisher","DOI":"10.1145\/3134600.3134638"},{"key":"e_1_2_1_57_1","unstructured":"Haining Chen Vishwath Mohan Kevin Chyn and Liz Louis. 2020. Lockscreen and Authentication Improvements in Android 11. Retrieved from https:\/\/android-developers.googleblog.com\/2020\/09\/lockscreen-and-authentication.html.  Haining Chen Vishwath Mohan Kevin Chyn and Liz Louis. 2020. Lockscreen and Authentication Improvements in Android 11. Retrieved from https:\/\/android-developers.googleblog.com\/2020\/09\/lockscreen-and-authentication.html."},{"key":"e_1_2_1_58_1","doi-asserted-by":"publisher","DOI":"10.1145\/3317549.3319727"},{"key":"e_1_2_1_59_1","first-page":"4","article-title":"Adiantum: Length-preserving encryption for entry-level processors","volume":"2018","author":"Crowley Paul","year":"2018","unstructured":"Paul Crowley and Eric Biggers . 2018 . Adiantum: Length-preserving encryption for entry-level processors . IACR Trans. Symmetr. Cryptol. 2018 , 4 (Dec. 2018), 39--61. DOI:https:\/\/doi.org\/10.13154\/tosc.v2018.i4.39-61 Paul Crowley and Eric Biggers. 2018. Adiantum: Length-preserving encryption for entry-level processors. IACR Trans. Symmetr. Cryptol. 2018, 4 (Dec. 2018), 39--61. DOI:https:\/\/doi.org\/10.13154\/tosc.v2018.i4.39-61","journal-title":"IACR Trans. Symmetr. Cryptol."},{"key":"e_1_2_1_60_1","unstructured":"Edward Cunningham. 2017. Improving app security and performance on Google Play for years to come. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/12\/improving-app-security-and-performance.html.  Edward Cunningham. 2017. Improving app security and performance on Google Play for years to come. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/12\/improving-app-security-and-performance.html."},{"key":"e_1_2_1_61_1","volume-title":"Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914)","author":"Davi Lucas","year":"2014","unstructured":"Lucas Davi , Ahmad-Reza Sadeghi , Daniel Lehmann , and Fabian Monrose . 2014 . Stitching the gadgets: On the ineffectiveness of coarse-grained control-flow integrity protection . In Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914) . USENIX Association, Berkeley, CA, 401--416. Lucas Davi, Ahmad-Reza Sadeghi, Daniel Lehmann, and Fabian Monrose. 2014. Stitching the gadgets: On the ineffectiveness of coarse-grained control-flow integrity protection. In Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914). USENIX Association, Berkeley, CA, 401--416."},{"key":"e_1_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1145\/1124772.1124861"},{"key":"e_1_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIT.1983.1056650"},{"key":"e_1_2_1_65_1","doi-asserted-by":"publisher","DOI":"10.1145\/3025453.3025636"},{"key":"e_1_2_1_66_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2009.26"},{"key":"e_1_2_1_67_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382205"},{"key":"e_1_2_1_68_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516655"},{"key":"e_1_2_1_69_1","doi-asserted-by":"publisher","DOI":"10.1145\/1814433.1814453"},{"key":"e_1_2_1_70_1","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2014.2386139"},{"key":"e_1_2_1_71_1","volume-title":"Proceedings of the USENIX Summit on Hot Topics in Security (HotSec\u201912)","author":"Felt Adrienne Porter","unstructured":"Adrienne Porter Felt , Serge Egelman , Matthew Finifter , Devdatta Akhawe , and David A. Wagner . 2012. How to ask for permission . In Proceedings of the USENIX Summit on Hot Topics in Security (HotSec\u201912) . Adrienne Porter Felt, Serge Egelman, Matthew Finifter, Devdatta Akhawe, and David A. Wagner. 2012. How to ask for permission. In Proceedings of the USENIX Summit on Hot Topics in Security (HotSec\u201912)."},{"key":"e_1_2_1_72_1","doi-asserted-by":"publisher","DOI":"10.1145\/2335356.2335360"},{"key":"e_1_2_1_73_1","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","DOI":"10.1007\/978-3-319-38827-4","volume-title":"Justin Paupore, Georg Essl, J. Alex Halderman, Z. Morley Mao, and Atul Prakash.","author":"Fernandes Earlence","year":"2016","unstructured":"Earlence Fernandes , Qi Alfred Chen , Justin Paupore, Georg Essl, J. Alex Halderman, Z. Morley Mao, and Atul Prakash. 2016 . Android UI deception revisited: Attacks and defenses. In Financial Cryptography and Data Security, Lecture Notes in Computer Science . Springer , Berlin, 41--59. DOI:https:\/\/doi.org\/10.1007\/978-3-662-54970-4_3 Earlence Fernandes, Qi Alfred Chen, Justin Paupore, Georg Essl, J. Alex Halderman, Z. Morley Mao, and Atul Prakash. 2016. Android UI deception revisited: Attacks and defenses. In Financial Cryptography and Data Security, Lecture Notes in Computer Science. Springer, Berlin, 41--59. DOI:https:\/\/doi.org\/10.1007\/978-3-662-54970-4_3"},{"key":"e_1_2_1_74_1","unstructured":"Nate Fischer. 2018. Protecting WebView with Safe Browsing. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/04\/protecting-webview-with-safe-browsing.html.  Nate Fischer. 2018. Protecting WebView with Safe Browsing. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/04\/protecting-webview-with-safe-browsing.html."},{"key":"e_1_2_1_75_1","unstructured":"Google APIs for Android. [n.d.]. Retrieved from https:\/\/developers.google.com\/android\/reference\/com\/google\/android\/gms\/fido\/Fido.  Google APIs for Android. [n.d.]. Retrieved from https:\/\/developers.google.com\/android\/reference\/com\/google\/android\/gms\/fido\/Fido."},{"key":"e_1_2_1_76_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.39"},{"key":"e_1_2_1_77_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382204"},{"key":"e_1_2_1_78_1","unstructured":"Anwar Ghuloum. 2019. Fresher OS with Projects Treble and Mainline. Retrieved from https:\/\/android-developers.googleblog.com\/2019\/05\/fresher-os-with-projects-treble-and-mainline.html.  Anwar Ghuloum. 2019. Fresher OS with Projects Treble and Mainline. Retrieved from https:\/\/android-developers.googleblog.com\/2019\/05\/fresher-os-with-projects-treble-and-mainline.html."},{"key":"e_1_2_1_79_1","doi-asserted-by":"publisher","DOI":"10.1145\/1506409.1506429"},{"key":"e_1_2_1_80_1","volume-title":"Proceedings of the 29th USENIX Security Symposium (USENIX Security\u201920)","author":"Hernandez Grant","unstructured":"Grant Hernandez , Dave (Jing) Tian , Anurag Swarnim Yadav , Byron J. Williams , and Kevin R. B. Butler . 2020. BigMAC: Fine-grained policy analysis of Android firmware . In Proceedings of the 29th USENIX Security Symposium (USENIX Security\u201920) . USENIX Association, 271--287. Grant Hernandez, Dave (Jing) Tian, Anurag Swarnim Yadav, Byron J. Williams, and Kevin R. B. Butler. 2020. BigMAC: Fine-grained policy analysis of Android firmware. In Proceedings of the 29th USENIX Security Symposium (USENIX Security\u201920). USENIX Association, 271--287."},{"key":"e_1_2_1_81_1","doi-asserted-by":"publisher","DOI":"10.1145\/2638728.2641697"},{"key":"e_1_2_1_82_1","doi-asserted-by":"publisher","DOI":"10.1145\/2684103.2684156"},{"key":"e_1_2_1_83_1","doi-asserted-by":"publisher","DOI":"10.1145\/3090078"},{"key":"e_1_2_1_84_1","volume-title":"Proceedings of the 3rd International Workshop on Security and Privacy in Spontaneous Interaction and Mobile Phone Use, Colocated with Pervasive 2011 (IWSSI\/SPMU\u201911)","author":"H\u00f6barth Sebastian","year":"2011","unstructured":"Sebastian H\u00f6barth and Ren\u00e9 Mayrhofer . 2011 . A framework for on-device privilege escalation exploit execution on Android . In Proceedings of the 3rd International Workshop on Security and Privacy in Spontaneous Interaction and Mobile Phone Use, Colocated with Pervasive 2011 (IWSSI\/SPMU\u201911) . Sebastian H\u00f6barth and Ren\u00e9 Mayrhofer. 2011. A framework for on-device privilege escalation exploit execution on Android. In Proceedings of the 3rd International Workshop on Security and Privacy in Spontaneous Interaction and Mobile Phone Use, Colocated with Pervasive 2011 (IWSSI\/SPMU\u201911)."},{"key":"e_1_2_1_85_1","volume-title":"Privacy and Identity Management. The Smart Revolution. Privacy and Identity","author":"H\u00f6lzl Michael","year":"2017","unstructured":"Michael H\u00f6lzl , Michael Roland , and Ren\u00e9 Mayrhofer . 2017. Real-world identification for an extensible and privacy-preserving mobile eID . In Privacy and Identity Management. The Smart Revolution. Privacy and Identity 2017 . IFIP AICT, Vol . 526\/2018. Springer , Berlin, 354--370. DOI:https:\/\/doi.org\/10.1007\/978-3-319-92925-5_24 Michael H\u00f6lzl, Michael Roland, and Ren\u00e9 Mayrhofer. 2017. Real-world identification for an extensible and privacy-preserving mobile eID. In Privacy and Identity Management. The Smart Revolution. Privacy and Identity 2017. IFIP AICT, Vol. 526\/2018. Springer, Berlin, 354--370. DOI:https:\/\/doi.org\/10.1007\/978-3-319-92925-5_24"},{"key":"e_1_2_1_86_1","doi-asserted-by":"publisher","DOI":"10.1145\/2660267.2660295"},{"key":"e_1_2_1_87_1","unstructured":"Troy Kensinger. 2018. Google and Android Have Your Back by Protecting Your Backups. Retrieved from https:\/\/security.googleblog.com\/2018\/10\/google-and-android-have-your-back-by.html.  Troy Kensinger. 2018. Google and Android Have Your Back by Protecting Your Backups. Retrieved from https:\/\/security.googleblog.com\/2018\/10\/google-and-android-have-your-back-by.html."},{"key":"e_1_2_1_88_1","doi-asserted-by":"publisher","DOI":"10.1145\/3173574.3173738"},{"key":"e_1_2_1_89_1","volume-title":"Detection of Intrusions and Malware","author":"Kharraz Amin","unstructured":"Amin Kharraz , William Robertson , Davide Balzarotti , Leyla Bilge , and Engin Kirda . 2015. Cutting the Gordian knot: A look under the hood of ransomware attacks . In Detection of Intrusions and Malware , and Vulnerability Assessment, Magnus Almgren, Vincenzo Gulisano, and Federico Maggi (Eds.). Springer International Publishing , Cham , 3--24. Amin Kharraz, William Robertson, Davide Balzarotti, Leyla Bilge, and Engin Kirda. 2015. Cutting the Gordian knot: A look under the hood of ransomware attacks. In Detection of Intrusions and Malware, and Vulnerability Assessment, Magnus Almgren, Vincenzo Gulisano, and Federico Maggi (Eds.). Springer International Publishing, Cham, 3--24."},{"key":"e_1_2_1_90_1","unstructured":"Erik Kline and Ben Schwartz. 2018. DNS over TLS support in Android P Developer Preview. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/04\/dns-over-tls-support-in-android-p.html.  Erik Kline and Ben Schwartz. 2018. DNS over TLS support in Android P Developer Preview. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/04\/dns-over-tls-support-in-android-p.html."},{"key":"e_1_2_1_91_1","unstructured":"Paul Kocher Daniel Genkin Daniel Gruss Werner Haas Mike Hamburg Moritz Lipp Stefan Mangard Thomas Prescher Michael Schwarz and Yuval Yarom. 2018. Spectre attacks: Exploiting speculative execution. arxiv:1801.01203. Retrieved from http:\/\/arxiv.org\/abs\/1801.01203.  Paul Kocher Daniel Genkin Daniel Gruss Werner Haas Mike Hamburg Moritz Lipp Stefan Mangard Thomas Prescher Michael Schwarz and Yuval Yarom. 2018. Spectre attacks: Exploiting speculative execution. arxiv:1801.01203. Retrieved from http:\/\/arxiv.org\/abs\/1801.01203."},{"key":"e_1_2_1_92_1","unstructured":"Nick Kralevich. 2016. The Art of Defense: How Vulnerabilities Help Shape Security Features and Mitigations in Android. Retrieved from https:\/\/www.blackhat.com\/docs\/us-16\/materials\/us-16- Kralevich-The-Art-Of-Defense-How- Vulnerabilities-Help-Shape- Security-Features-And-Mitigations-In-Android.pdfBlackHat.  Nick Kralevich. 2016. The Art of Defense: How Vulnerabilities Help Shape Security Features and Mitigations in Android. Retrieved from https:\/\/www.blackhat.com\/docs\/us-16\/materials\/us-16- Kralevich-The-Art-Of-Defense-How- Vulnerabilities-Help-Shape- Security-Features-And-Mitigations-In-Android.pdfBlackHat."},{"key":"e_1_2_1_93_1","volume-title":"Mobile and Ubiquitous Systems: Computing","author":"Kraunelis Joshua","unstructured":"Joshua Kraunelis , Yinjie Chen , Zhen Ling , Xinwen Fu , and Wei Zhao . 2014. On malware leveraging the Android accessibility framework . In Mobile and Ubiquitous Systems: Computing , Networking, and Services, Ivan Stojmenovic, Zixue Cheng, and Song Guo (Eds.). Springer International Publishing , Cham , 512--523. Joshua Kraunelis, Yinjie Chen, Zhen Ling, Xinwen Fu, and Wei Zhao. 2014. On malware leveraging the Android accessibility framework. In Mobile and Ubiquitous Systems: Computing, Networking, and Services, Ivan Stojmenovic, Zixue Cheng, and Song Guo (Eds.). Springer International Publishing, Cham, 512--523."},{"key":"e_1_2_1_94_1","volume-title":"A survey on security for mobile devices. Communications Surveys & Tutorials 15 (01","author":"Polla Mariantonietta La","year":"2013","unstructured":"Mariantonietta La Polla , Fabio Martinelli , and Daniele Sgandurra . 2013. A survey on security for mobile devices. Communications Surveys & Tutorials 15 (01 2013 ), 446--471. Mariantonietta La Polla, Fabio Martinelli, and Daniele Sgandurra. 2013. A survey on security for mobile devices. Communications Surveys & Tutorials 15 (01 2013), 446--471."},{"key":"e_1_2_1_95_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-10970-7_11"},{"key":"e_1_2_1_96_1","doi-asserted-by":"crossref","unstructured":"B. Laurie A. Langley and E. Kasper. 2013. Certificate Transparency. Retrieved from https:\/\/www.rfc-editor.org\/info\/rfc6962.  B. Laurie A. Langley and E. Kasper. 2013. Certificate Transparency. Retrieved from https:\/\/www.rfc-editor.org\/info\/rfc6962.","DOI":"10.17487\/rfc6962"},{"key":"e_1_2_1_97_1","volume-title":"Steven Arzt, Siegfried Rasthofer, Eric Bodden, Damien Octeau, and Patrick McDaniel.","author":"Li Li","year":"2014","unstructured":"Li Li , Alexandre Bartel , Jacques Klein , Yves Le Traon , Steven Arzt, Siegfried Rasthofer, Eric Bodden, Damien Octeau, and Patrick McDaniel. 2014 . I know what leaked in your pocket: Uncovering privacy leaks on Android Apps with Static Taint Analysis. arXiv:1404.7431 [cs]. Retrieved from http:\/\/arxiv.org\/abs\/1404.7431. Li Li, Alexandre Bartel, Jacques Klein, Yves Le Traon, Steven Arzt, Siegfried Rasthofer, Eric Bodden, Damien Octeau, and Patrick McDaniel. 2014. I know what leaked in your pocket: Uncovering privacy leaks on Android Apps with Static Taint Analysis. arXiv:1404.7431 [cs]. Retrieved from http:\/\/arxiv.org\/abs\/1404.7431."},{"key":"e_1_2_1_98_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2017.04.001"},{"key":"e_1_2_1_99_1","doi-asserted-by":"publisher","DOI":"10.1109\/BADGERS.2014.7"},{"key":"e_1_2_1_100_1","unstructured":"Moritz Lipp Michael Schwarz Daniel Gruss Thomas Prescher Werner Haas Stefan Mangard Paul Kocher Daniel Genkin Yuval Yarom and Mike Hamburg. 2018. Meltdown. arxiv:1801.01207. Retrieved fromhttp:\/\/arxiv.org\/abs\/1801.01207.  Moritz Lipp Michael Schwarz Daniel Gruss Thomas Prescher Werner Haas Stefan Mangard Paul Kocher Daniel Genkin Yuval Yarom and Mike Hamburg. 2018. Meltdown. arxiv:1801.01207. Retrieved fromhttp:\/\/arxiv.org\/abs\/1801.01207."},{"key":"e_1_2_1_101_1","unstructured":"T. Lodderstedt M. McGloin and P. Hunt. 2013. OAuth 2.0 Threat Model and Security Considerations. Retrieved from https:\/\/www.rfc-editor.org\/info\/rfc6819.  T. Lodderstedt M. McGloin and P. Hunt. 2013. OAuth 2.0 Threat Model and Security Considerations. Retrieved from https:\/\/www.rfc-editor.org\/info\/rfc6819."},{"key":"e_1_2_1_102_1","unstructured":"Ivan Lozano. 2018. Compiler-based Security Mitigations in Android P. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/06\/compiler-based-security-mitigations-in.html.  Ivan Lozano. 2018. Compiler-based Security Mitigations in Android P. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/06\/compiler-based-security-mitigations-in.html."},{"key":"e_1_2_1_103_1","unstructured":"Iliyan Malchev. 2017. Here Comes Treble: A Modular Base for Android. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/05\/here-comes-treble-modular-base-for.html.  Iliyan Malchev. 2017. Here Comes Treble: A Modular Base for Android. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/05\/here-comes-treble-modular-base-for.html."},{"key":"e_1_2_1_104_1","volume-title":"An architecture for secure mobile devices. Security and Communication Networks","author":"Mayrhofer Ren\u00e9","year":"2014","unstructured":"Ren\u00e9 Mayrhofer . 2014. An architecture for secure mobile devices. Security and Communication Networks ( 2014 ). DOI:https:\/\/doi.org\/10.1002\/sec.1028 Ren\u00e9 Mayrhofer. 2014. An architecture for secure mobile devices. Security and Communication Networks (2014). DOI:https:\/\/doi.org\/10.1002\/sec.1028"},{"key":"e_1_2_1_105_1","volume-title":"Insider attack resistance in the android ecosystem. Enigma","author":"Mayrhofer Ren\u00e9","year":"2019","unstructured":"Ren\u00e9 Mayrhofer . 2019. Insider attack resistance in the android ecosystem. Enigma 2019 . https:\/\/www.usenix.org\/conference\/enigma2019\/presentation\/mayrhofer. Ren\u00e9 Mayrhofer. 2019. Insider attack resistance in the android ecosystem. Enigma 2019. https:\/\/www.usenix.org\/conference\/enigma2019\/presentation\/mayrhofer."},{"key":"e_1_2_1_106_1","unstructured":"Ren\u00e9 Mayrhofer Vishwath Mohan and Stephan Sigg. 2020. Adversary Models for Mobile Device Authentication. arxiv:cs.CR\/2009.10150. Retrieved from https:\/\/arxiv.org\/abs\/2009.10150.  Ren\u00e9 Mayrhofer Vishwath Mohan and Stephan Sigg. 2020. Adversary Models for Mobile Device Authentication. arxiv:cs.CR\/2009.10150. Retrieved from https:\/\/arxiv.org\/abs\/2009.10150."},{"key":"e_1_2_1_107_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSM.2013.18"},{"key":"e_1_2_1_108_1","volume-title":"Proceedings of the 2015 12th International Conference on Information Technology\u2014New Generations. 725--730","author":"Mohamed I.","year":"2015","unstructured":"I. Mohamed and D. Patel . 2015. Android vs iOS security: A comparative study . In Proceedings of the 2015 12th International Conference on Information Technology\u2014New Generations. 725--730 . DOI:https:\/\/doi.org\/10.1109\/ITNG. 2015 .123 I. Mohamed and D. Patel. 2015. Android vs iOS security: A comparative study. In Proceedings of the 2015 12th International Conference on Information Technology\u2014New Generations. 725--730. DOI:https:\/\/doi.org\/10.1109\/ITNG.2015.123"},{"key":"e_1_2_1_109_1","doi-asserted-by":"crossref","unstructured":"Vishwath Mohan. 2018. Better Biometrics in Android P. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/06\/better-biometrics-in-android-p.html.  Vishwath Mohan. 2018. Better Biometrics in Android P. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/06\/better-biometrics-in-android-p.html.","DOI":"10.1016\/S0969-4765(18)30098-5"},{"key":"e_1_2_1_110_1","unstructured":"Vikrant Nanda and Ren\u00e9 Mayrhofer. 2018. Android Pie \u00e1 la Mode: Security & Privacy. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/12\/android-pie-la-mode-security-privacy.html.  Vikrant Nanda and Ren\u00e9 Mayrhofer. 2018. Android Pie \u00e1 la Mode: Security & Privacy. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/12\/android-pie-la-mode-security-privacy.html."},{"key":"e_1_2_1_111_1","unstructured":"Sundar Pichai. 2018. Android Has Created More Choice Not Less. Retrieved from https:\/\/blog.google\/around-the-globe\/google-europe\/android-has-created-more-choice-not-less\/.  Sundar Pichai. 2018. Android Has Created More Choice Not Less. Retrieved from https:\/\/blog.google\/around-the-globe\/google-europe\/android-has-created-more-choice-not-less\/."},{"key":"e_1_2_1_112_1","volume-title":"Proceedings of the 28th USENIX Security Symposium (USENIX Security\u201919)","author":"Reardon Joel","year":"2019","unstructured":"Joel Reardon , \u00c1lvaro Feal , Primal Wijesekera , Amit Elazari Bar On , Narseo Vallina-Rodriguez , and Serge Egelman . 2019 . 50 ways to leak your data: An exploration of apps\u2019 circumvention of the Android permissions system . In Proceedings of the 28th USENIX Security Symposium (USENIX Security\u201919) . USENIX Association, Berkeley, CA, 603--620. Joel Reardon, \u00c1lvaro Feal, Primal Wijesekera, Amit Elazari Bar On, Narseo Vallina-Rodriguez, and Serge Egelman. 2019. 50 ways to leak your data: An exploration of apps\u2019 circumvention of the Android permissions system. In Proceedings of the 28th USENIX Security Symposium (USENIX Security\u201919). USENIX Association, Berkeley, CA, 603--620."},{"key":"e_1_2_1_113_1","volume-title":"Only play in your comfort zone: Interaction methods for improving security awareness on mobile devices. Pers. Ubiq. Comput. 27 (Mar","author":"Riedl Peter","year":"2015","unstructured":"Peter Riedl , Rene Mayrhofer , Andreas M\u00f6ller , Matthias Kranz , Florian Lettner , Clemens Holzmann , and Marion Koelle . 2015. Only play in your comfort zone: Interaction methods for improving security awareness on mobile devices. Pers. Ubiq. Comput. 27 (Mar . 2015 ), 1--14. DOI:https:\/\/doi.org\/10.1007\/s00779-015-0840-5 Peter Riedl, Rene Mayrhofer, Andreas M\u00f6ller, Matthias Kranz, Florian Lettner, Clemens Holzmann, and Marion Koelle. 2015. Only play in your comfort zone: Interaction methods for improving security awareness on mobile devices. Pers. Ubiq. Comput. 27 (Mar. 2015), 1--14. DOI:https:\/\/doi.org\/10.1007\/s00779-015-0840-5"},{"key":"e_1_2_1_114_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2012.24"},{"key":"e_1_2_1_115_1","doi-asserted-by":"publisher","DOI":"10.1109\/NFC.2013.6482441"},{"key":"e_1_2_1_116_1","doi-asserted-by":"publisher","DOI":"10.1109\/35.312842"},{"key":"e_1_2_1_117_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICDCS.2016.46"},{"key":"e_1_2_1_118_1","volume-title":"Presented as Part of the 2012 USENIX Annual Technical Conference (USENIX ATC\u201912)","author":"Serebryany Konstantin","unstructured":"Konstantin Serebryany , Derek Bruening , Alexander Potapenko , and Dmitriy Vyukov . 2012. AddressSanitizer: A fast address sanity checker . In Presented as Part of the 2012 USENIX Annual Technical Conference (USENIX ATC\u201912) . USENIX , Berkeley, CA , 309--318. Konstantin Serebryany, Derek Bruening, Alexander Potapenko, and Dmitriy Vyukov. 2012. AddressSanitizer: A fast address sanity checker. In Presented as Part of the 2012 USENIX Annual Technical Conference (USENIX ATC\u201912). USENIX, Berkeley, CA, 309--318."},{"key":"e_1_2_1_119_1","doi-asserted-by":"publisher","DOI":"10.1145\/1294261.1294294"},{"key":"e_1_2_1_120_1","doi-asserted-by":"publisher","DOI":"10.1145\/1030083.1030124"},{"key":"e_1_2_1_121_1","volume-title":"Proceedings of the Network and Distributed System Security Symposium (NDSS\u201913)","author":"Smalley Stephen","year":"2013","unstructured":"Stephen Smalley and Robert Craig . 2013 . Security enhanced (SE) Android: Bringing flexible MAC to Android . In Proceedings of the Network and Distributed System Security Symposium (NDSS\u201913) . 18. Stephen Smalley and Robert Craig. 2013. Security enhanced (SE) Android: Bringing flexible MAC to Android. In Proceedings of the Network and Distributed System Security Symposium (NDSS\u201913). 18."},{"key":"e_1_2_1_122_1","unstructured":"Sampath Srinivas and Karthik Lakshminarayanan. 2019. Simplifying Identity and Access Management of Your Employees Partners and Customers. Retrieved from https:\/\/cloud.google.com\/blog\/products\/identity-security\/simplifying-identity-and-access-management-of-your-employees-partners-and-customers.  Sampath Srinivas and Karthik Lakshminarayanan. 2019. Simplifying Identity and Access Management of Your Employees Partners and Customers. Retrieved from https:\/\/cloud.google.com\/blog\/products\/identity-security\/simplifying-identity-and-access-management-of-your-employees-partners-and-customers."},{"key":"e_1_2_1_123_1","unstructured":"Jeff Vander Stoep and Chong Zhang. 2019. Queue the Hardening Enhancements. Retrieved from https:\/\/android-developers.googleblog.com\/2019\/05\/queue-hardening-enhancements.html.  Jeff Vander Stoep and Chong Zhang. 2019. Queue the Hardening Enhancements. Retrieved from https:\/\/android-developers.googleblog.com\/2019\/05\/queue-hardening-enhancements.html."},{"key":"e_1_2_1_124_1","volume-title":"Tanenbaum and Herbert Bos","author":"Andrew","year":"2014","unstructured":"Andrew S. Tanenbaum and Herbert Bos . 2014 . Modern Operating Systems (4th ed.). Prentice Hall , Upper Saddle River, NJ. Andrew S. Tanenbaum and Herbert Bos. 2014. Modern Operating Systems (4th ed.). Prentice Hall, Upper Saddle River, NJ."},{"key":"e_1_2_1_125_1","volume-title":"Proceedings of the 26th USENIX Security Symposium (USENIX Security\u201917)","author":"Tang Adrian","year":"2017","unstructured":"Adrian Tang , Simha Sethumadhavan , and Salvatore Stolfo . 2017 . CLKSCREW: Exposing the perils of security-oblivious energy management . In Proceedings of the 26th USENIX Security Symposium (USENIX Security\u201917) . USENIX Association, Berkeley, CA, 1057--1074. Adrian Tang, Simha Sethumadhavan, and Salvatore Stolfo. 2017. CLKSCREW: Exposing the perils of security-oblivious energy management. In Proceedings of the 26th USENIX Security Symposium (USENIX Security\u201917). USENIX Association, Berkeley, CA, 1057--1074."},{"key":"e_1_2_1_126_1","unstructured":"Sai Deep Tetali. 2018. Keeping 2 Billion Android Devices Safe with Machine Learning. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/05\/keeping-2-billion-android-devices-safe.html.  Sai Deep Tetali. 2018. Keeping 2 Billion Android Devices Safe with Machine Learning. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/05\/keeping-2-billion-android-devices-safe.html."},{"key":"e_1_2_1_127_1","doi-asserted-by":"publisher","DOI":"10.1145\/2808117.2808118"},{"key":"e_1_2_1_128_1","volume-title":"Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914)","author":"Tice Caroline","year":"2014","unstructured":"Caroline Tice , Tom Roeder , Peter Collingbourne , Stephen Checkoway , \u00dalfar Erlingsson , Luis Lozano , and Geoff Pike . 2014 . Enforcing forward-edge control-flow integrity in GCC & LLVM . In Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914) . USENIX Association, Berkeley, CA, 941--955. Caroline Tice, Tom Roeder, Peter Collingbourne, Stephen Checkoway, \u00dalfar Erlingsson, Luis Lozano, and Geoff Pike. 2014. Enforcing forward-edge control-flow integrity in GCC & LLVM. In Proceedings of the 23rd USENIX Security Symposium (USENIX Security\u201914). USENIX Association, Berkeley, CA, 941--955."},{"key":"e_1_2_1_129_1","unstructured":"Sami Tolvanen. 2017. Hardening the Kernel in Android Oreo. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/08\/hardening-kernel-in-android-oreo.html.  Sami Tolvanen. 2017. Hardening the Kernel in Android Oreo. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/08\/hardening-kernel-in-android-oreo.html."},{"key":"e_1_2_1_130_1","unstructured":"Sami Tolvanen. 2018. Control Flow Integrity in the Android kernel. Retrieved from https:\/\/security.googleblog.com\/2018\/10\/posted-by-sami-tolvanen-staff-software.html.  Sami Tolvanen. 2018. Control Flow Integrity in the Android kernel. Retrieved from https:\/\/security.googleblog.com\/2018\/10\/posted-by-sami-tolvanen-staff-software.html."},{"key":"e_1_2_1_131_1","unstructured":"Sami Tolvanen. 2019. Protecting against Code Reuse in the Linux Kernel with Shadow Call Stack. Retrieved from https:\/\/security.googleblog.com\/2019\/10\/protecting-against-code-reuse-in-linux_30.html.  Sami Tolvanen. 2019. Protecting against Code Reuse in the Linux Kernel with Shadow Call Stack. Retrieved from https:\/\/security.googleblog.com\/2019\/10\/protecting-against-code-reuse-in-linux_30.html."},{"key":"e_1_2_1_132_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978406"},{"key":"e_1_2_1_133_1","unstructured":"Jeff Vander Stoep. 2015. Ioctl Command Whitelisting in SELinux. Retrieved from http:\/\/kernsec.org\/files\/lss2015\/vanderstoep.pdfLinux Security Summit.  Jeff Vander Stoep. 2015. Ioctl Command Whitelisting in SELinux. Retrieved from http:\/\/kernsec.org\/files\/lss2015\/vanderstoep.pdfLinux Security Summit."},{"key":"e_1_2_1_134_1","volume-title":"Android: Protecting the Kernel.","author":"Stoep Jeff Vander","year":"2016","unstructured":"Jeff Vander Stoep . 2016 . Android: Protecting the Kernel. Retrieved from https:\/\/events.static.linuxfound.org\/sites\/events\/files\/slides\/Android-%20protecting%20the%20kernel.pdf. Jeff Vander Stoep. 2016. Android: Protecting the Kernel. Retrieved from https:\/\/events.static.linuxfound.org\/sites\/events\/files\/slides\/Android-%20protecting%20the%20kernel.pdf."},{"key":"e_1_2_1_135_1","unstructured":"Jeff Vander Stoep. 2017. Shut the HAL Up. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/07\/shut-hal-up.html.  Jeff Vander Stoep. 2017. Shut the HAL Up. Retrieved from https:\/\/android-developers.googleblog.com\/2017\/07\/shut-hal-up.html."},{"key":"e_1_2_1_136_1","unstructured":"Jeff Vander Stoep and Sami Tolvanen. 2018. Year in Review: Android Kernel Security. Retrieved from https:\/\/events.linuxfoundation.org\/wp-content\/uploads\/2017\/11\/LSS2018.pdf.  Jeff Vander Stoep and Sami Tolvanen. 2018. Year in Review: Android Kernel Security. Retrieved from https:\/\/events.linuxfoundation.org\/wp-content\/uploads\/2017\/11\/LSS2018.pdf."},{"key":"e_1_2_1_137_1","unstructured":"W3C. [n.d.]. Web Authentication: An API for accessing Public Key Credentials. Retrieved from https:\/\/webauthn.io\/.  W3C. [n.d.]. Web Authentication: An API for accessing Public Key Credentials. Retrieved from https:\/\/webauthn.io\/."},{"key":"e_1_2_1_139_1","volume-title":"Proceedings of the 24th USENIX Security Symposium (USENIX Security\u201915)","author":"Wijesekera Primal","year":"2015","unstructured":"Primal Wijesekera , Arjun Baokar , Ashkan Hosseini , Serge Egelman , David Wagner , and Konstantin Beznosov . 2015 . Android permissions remystified: A field study on contextual integrity . In Proceedings of the 24th USENIX Security Symposium (USENIX Security\u201915) . USENIX Association, Berkeley, CA, 499--514. Primal Wijesekera, Arjun Baokar, Ashkan Hosseini, Serge Egelman, David Wagner, and Konstantin Beznosov. 2015. Android permissions remystified: A field study on contextual integrity. In Proceedings of the 24th USENIX Security Symposium (USENIX Security\u201915). USENIX Association, Berkeley, CA, 499--514."},{"key":"e_1_2_1_140_1","unstructured":"Linux Kernel Security Subsystem Wiki. 2019. Exploit Methods\/Userspace Execution. Retrieved from https:\/\/kernsec.org\/wiki\/index.php\/Exploit_Methods\/Userspace_execution.  Linux Kernel Security Subsystem Wiki. 2019. Exploit Methods\/Userspace Execution. Retrieved from https:\/\/kernsec.org\/wiki\/index.php\/Exploit_Methods\/Userspace_execution."},{"key":"e_1_2_1_141_1","unstructured":"Shawn Willden. 2018. Insider Attack Resistance. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/05\/insider-attack-resistance.html.  Shawn Willden. 2018. Insider Attack Resistance. Retrieved from https:\/\/android-developers.googleblog.com\/2018\/05\/insider-attack-resistance.html."},{"key":"e_1_2_1_142_1","unstructured":"Xiaowen Xin. 2018. Titan M Makes Pixel 3 Our Most Secure Phone Yet. Retrieved from https:\/\/blog.google\/products\/pixel\/titan-m-makes-pixel-3-our-most-secure-phone-yet\/.  Xiaowen Xin. 2018. Titan M Makes Pixel 3 Our Most Secure Phone Yet. Retrieved from https:\/\/blog.google\/products\/pixel\/titan-m-makes-pixel-3-our-most-secure-phone-yet\/."},{"key":"e_1_2_1_143_1","doi-asserted-by":"publisher","DOI":"10.1145\/3358237"},{"key":"e_1_2_1_144_1","unstructured":"David Zeuthen Shawn Willden and Ren\u00e9 Mayrhofer. 2020. Privacy-preserving features in the Mobile Driving License. Retrieved from https:\/\/security.googleblog.com\/2020\/10\/privacy-preserving-features-in-mobile.html.  David Zeuthen Shawn Willden and Ren\u00e9 Mayrhofer. 2020. Privacy-preserving features in the Mobile Driving License. Retrieved from https:\/\/security.googleblog.com\/2020\/10\/privacy-preserving-features-in-mobile.html."},{"key":"e_1_2_1_145_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516689"}],"container-title":["ACM Transactions on Privacy and Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3448609","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3448609","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T20:47:43Z","timestamp":1750193263000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3448609"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2021,4,28]]},"references-count":142,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2021,8,31]]}},"alternative-id":["10.1145\/3448609"],"URL":"https:\/\/doi.org\/10.1145\/3448609","relation":{},"ISSN":["2471-2566","2471-2574"],"issn-type":[{"value":"2471-2566","type":"print"},{"value":"2471-2574","type":"electronic"}],"subject":[],"published":{"date-parts":[[2021,4,28]]},"assertion":[{"value":"2020-05-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-01-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2021-04-28","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}