{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,21]],"date-time":"2026-04-21T06:48:32Z","timestamp":1776754112467,"version":"3.51.2"},"publisher-location":"New York, NY, USA","reference-count":21,"publisher":"ACM","license":[{"start":{"date-parts":[[2022,5,16]],"date-time":"2022-05-16T00:00:00Z","timestamp":1652659200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2022,5,16]]},"DOI":"10.1145\/3524489.3527300","type":"proceedings-article","created":{"date-parts":[[2022,11,30]],"date-time":"2022-11-30T17:05:01Z","timestamp":1669827901000},"page":"17-24","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":12,"title":["A survey of security vulnerabilities in Android automotive apps"],"prefix":"10.1145","author":[{"given":"Abdul","family":"Moiz","sequence":"first","affiliation":[{"name":"Ryerson University, Toronto, ON, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Manar H.","family":"Alalfi","sequence":"additional","affiliation":[{"name":"Ryerson University, Toronto, ON, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2022,11,30]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"November 30","author":"Android Last","year":"2021","unstructured":"Android Last accessed: November 30, 2021. Android. https:\/\/www.android.com\/intl\/en_ca\/what-is-android\/"},{"key":"e_1_3_2_1_2_1","volume-title":"Permission Last accessed","author":"Android","year":"2021","unstructured":"Android, Permission Last accessed: December 9, 2021. Types of Android permissions. https:\/\/developer.android.com\/guide\/topics\/permissions\/overview#types"},{"key":"e_1_3_2_1_3_1","volume-title":"November 30","author":"Automotive Architecture","year":"2021","unstructured":"Automotive Architecture Last accessed: November 30, 2021. Android Automotive Architecture. https:\/\/source.android.com\/devices\/images\/vehicle_hal_arch.png"},{"key":"e_1_3_2_1_4_1","volume-title":"December 9","author":"Broadcast Receivers","year":"2021","unstructured":"Broadcast Receivers Last accessed: December 9, 2021. Broadcast Receivers in Android. https:\/\/developer.android.com\/guide\/components\/broadcasts#security-and-best-practices"},{"key":"e_1_3_2_1_5_1","volume-title":"Comprehensive Experimental Analyses of Automotive Attack Surfaces. In SEC'11","author":"Checkoway Stephen","year":"2011","unstructured":"Stephen Checkoway, Damon McCoy, Brian Kantor, Danny Anderson, Hovav Shacham, Stefan Savage, Karl Koscher, Alexei Czeskis, Franziska Roesner, and Tadayoshi Kohno. 2011. Comprehensive Experimental Analyses of Automotive Attack Surfaces. In SEC'11."},{"key":"e_1_3_2_1_6_1","volume-title":"Adrienne Porter Felt","author":"Chin Erika","year":"2011","unstructured":"Erika Chin, Adrienne Porter Felt, Kate Greenwood, and David Wagner. 2011. Analyzing Inter-Application Communication in Android. In MobiSys '11. 239--252."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"crossref","unstructured":"Andrea Continella Yanick Fratantonio Martina Lindorfer Alessandro Puccetti Ali Zand Christopher Kruegel and Giovanni Vigna. 2017. Obfuscation-Resilient Privacy Leak Detection for Mobile Apps Through Differential Analysis. In NDSS.","DOI":"10.14722\/ndss.2017.23465"},{"key":"e_1_3_2_1_8_1","volume-title":"Sheth","author":"Enck William","year":"2010","unstructured":"William Enck, Peter Gilbert, Byung-Gon Chun, Landon P. Cox, Jaeyeon Jung, Patrick McDaniel, and Anmol N. Sheth. 2010. TaintDroid: An Information-Flow Tracking System for Realtime Privacy Monitoring on Smartphones. In OSDI'10. 393--407."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"crossref","unstructured":"Benjamin Eriksson. Jonas Groth. and Andrei Sabelfeld. 2019. On the Road with Third-party Apps: Security Analysis of an In-vehicle App Platform. In VEHITS . 64--75.","DOI":"10.5220\/0007678200640075"},{"key":"e_1_3_2_1_10_1","unstructured":"A. Fuchs A. Chaudhuri and J. Foster. 2009. SCanDroid : Automated Security Certification of Android Applications."},{"key":"e_1_3_2_1_11_1","volume-title":"SIAT: A Systematic Inter-Component Communication Analysis Technology for Detecting Threats on Android. arXiv:2006.12831 [cs.CR]","author":"Hu Yupeng","year":"2020","unstructured":"Yupeng Hu, Zhe Jin, Wenjia Li, Yang Xiang, and Jiliang Zhang. 2020. SIAT: A Systematic Inter-Component Communication Analysis Technology for Detecting Threats on Android. arXiv:2006.12831 [cs.CR]"},{"key":"e_1_3_2_1_12_1","unstructured":"Keyur Kulkarni and Ahmad Y Javaid. 2018. Open Source Android Vulnerability Detection Tools: A Survey. arXiv:1807.11840 [cs.CR]"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/2382196.2382223"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1002\/spe.2698"},{"key":"e_1_3_2_1_15_1","unstructured":"Sahar Mazloom Mohammad Rezaeirad Aaron Hunter and Damon McCoy. 2016. A Security Analysis of an In-Vehicle Infotainment and App Platform. (2016)."},{"key":"e_1_3_2_1_16_1","volume-title":"An Approach for the Identification of Information Leakage in Automotive Infotainment systems. SCAM","author":"Moiz Abdul","year":"2020","unstructured":"Abdul Moiz and Manar Alalfi. 2020. An Approach for the Identification of Information Leakage in Automotive Infotainment systems. SCAM (2020), 110--114."},{"key":"e_1_3_2_1_17_1","volume-title":"November 30","author":"OWASP","year":"2021","unstructured":"OWASP Last accessed: November 30, 2021. OWASP Mobile Top 10 2016. https:\/\/owasp.org\/www-project-mobile-top-10\/"},{"key":"e_1_3_2_1_18_1","volume-title":"December 9","author":"QARK","year":"2021","unstructured":"QARK Last accessed: December 9, 2021. QARK by LinkedIn. https:\/\/github.com\/linkedin\/qark"},{"key":"e_1_3_2_1_19_1","volume-title":"SDLI: Static Detection of Leaks Across Intents. In (TrustCom\/BigDataSE). 1002--1007.","author":"Salvia R.","year":"2018","unstructured":"R. Salvia, P. Ferrara, F. Spoto, and A. Cortesi. 2018. SDLI: Static Detection of Leaks Across Intents. In (TrustCom\/BigDataSE). 1002--1007."},{"key":"e_1_3_2_1_20_1","volume-title":"Dec 16","author":"SuSi","year":"2021","unstructured":"SuSi Last accessed: Dec 16, 2021. SuSi - our tool to automatically discover and categorize sources and sinks in the Android framework. https:\/\/github.com\/secure-software-engineering\/SuSi"},{"key":"e_1_3_2_1_21_1","unstructured":"Chris Valasek and Charlie Miller. 2015. Remote Exploitation of an Unaltered Passenger Vehicle. (2015) 93."}],"event":{"name":"ICSE '22: 44th International Conference on Software Engineering","location":"Pittsburgh Pennsylvania","acronym":"ICSE '22","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","IEEE CS"]},"container-title":["Proceedings of the 3rd International Workshop on Engineering and Cybersecurity of Critical Systems"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3524489.3527300","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3524489.3527300","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T18:09:51Z","timestamp":1750183791000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3524489.3527300"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,5,16]]},"references-count":21,"alternative-id":["10.1145\/3524489.3527300","10.1145\/3524489"],"URL":"https:\/\/doi.org\/10.1145\/3524489.3527300","relation":{},"subject":[],"published":{"date-parts":[[2022,5,16]]},"assertion":[{"value":"2022-11-30","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}