{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,30]],"date-time":"2026-01-30T02:06:31Z","timestamp":1769738791379,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":20,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,11,26]],"date-time":"2023-11-26T00:00:00Z","timestamp":1700956800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Knowledge Innovation Program of Wuhan-Basic Research"},{"name":"National Key R&D Program of China","award":["2021YFB2701000"],"award-info":[{"award-number":["2021YFB2701000"]}]},{"name":"National Natural Science Foundation of China","award":["No.62072046"],"award-info":[{"award-number":["No.62072046"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,11,26]]},"DOI":"10.1145\/3605762.3624435","type":"proceedings-article","created":{"date-parts":[[2023,11,23]],"date-time":"2023-11-23T04:01:12Z","timestamp":1700712072000},"page":"29-32","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":4,"title":["On the Usage-scenario-based Data Minimization in Mini Programs"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-3818-3343","authenticated-orcid":false,"given":"Shenao","family":"Wang","sequence":"first","affiliation":[{"name":"Huazhong University of Science and Technology, Wuhan, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8793-5367","authenticated-orcid":false,"given":"Yanjie","family":"Zhao","sequence":"additional","affiliation":[{"name":"Monash University, Melbourne, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3977-6573","authenticated-orcid":false,"given":"Kailong","family":"Wang","sequence":"additional","affiliation":[{"name":"Huazhong University of Science and Technology, Wuhan, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1100-8633","authenticated-orcid":false,"given":"Haoyu","family":"Wang","sequence":"additional","affiliation":[{"name":"Huazhong University of Science and Technology, Wuhan, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,11,26]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"29th USENIX Security Symposium (USENIX Security 20)","author":"Andow Benjamin","year":"2020","unstructured":"Benjamin Andow , Samin Yaseer Mahmud , Justin Whitaker , William Enck , Bradley Reaves , Kapil Singh , and Serge Egelman . 2020 . Actions speak louder than words:$$Entity-Sensitive$$ privacy policy and data flow analysis with $$PoliCheck$$ . In 29th USENIX Security Symposium (USENIX Security 20) . 985--1002. Benjamin Andow, Samin Yaseer Mahmud, Justin Whitaker, William Enck, Bradley Reaves, Kapil Singh, and Serge Egelman. 2020. Actions speak louder than words:$$Entity-Sensitive$$ privacy policy and data flow analysis with $$PoliCheck$$. In 29th USENIX Security Symposium (USENIX Security 20). 985--1002."},{"key":"e_1_3_2_1_2_1","volume-title":"Measuring the Leakage and Exploitability of Authentication Secrets in Super-apps: The WeChat Case. arXiv preprint arXiv:2307.09317","author":"Baskaran Supraja","year":"2023","unstructured":"023)]% baskaran2023measuring, Supraja Baskaran , Lianying Zhao , Mohammad Mannan , and Amr Youssef . 2023. Measuring the Leakage and Exploitability of Authentication Secrets in Super-apps: The WeChat Case. arXiv preprint arXiv:2307.09317 ( 2023 ). 023)]% baskaran2023measuring, Supraja Baskaran, Lianying Zhao, Mohammad Mannan, and Amr Youssef. 2023. Measuring the Leakage and Exploitability of Authentication Secrets in Super-apps: The WeChat Case. arXiv preprint arXiv:2307.09317 (2023)."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/3460120.3484536"},{"key":"e_1_3_2_1_4_1","volume-title":"MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps","author":"Li Wei","year":"2023","unstructured":"Wei Li , Borui Yang , Hangyu Ye , Liyao Xiang , Qingxiao Tao , Xinbing Wang , and Chenghu Zhou . 2023. MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps . IEEE Transactions on Dependable and Secure Computing ( 2023 ). Wei Li, Borui Yang, Hangyu Ye, Liyao Xiang, Qingxiao Tao, Xinbing Wang, and Chenghu Zhou. 2023. MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps. IEEE Transactions on Dependable and Secure Computing (2023)."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3551349.3560436"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3421842"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417255"},{"key":"e_1_3_2_1_8_1","volume-title":"Proceedings of the 38th IEEE\/ACM International Conference on Automated Software Engineering. IEEE.","author":"Meng Shi","year":"2023","unstructured":"Shi Meng , Liu Wang , Shenao Wang , Kailong Wang , Xusheng Xiao , Guangdong Bai , and Haoyu Wang . 2023 . WeMinT: Tainting Sensitive Data Leaks in WeChat Mini-Programs . In Proceedings of the 38th IEEE\/ACM International Conference on Automated Software Engineering. IEEE. Shi Meng, Liu Wang, Shenao Wang, Kailong Wang, Xusheng Xiao, Guangdong Bai, and Haoyu Wang. 2023. WeMinT: Tainting Sensitive Data Leaks in WeChat Mini-Programs. In Proceedings of the 38th IEEE\/ACM International Conference on Automated Software Engineering. IEEE."},{"key":"e_1_3_2_1_9_1","volume-title":"Michelangelo van Dam, Yinzhi Cao, and Yuan Tian.","author":"Shezan Faysal Hossain","year":"2023","unstructured":"Faysal Hossain Shezan , Zihao Su , Mingqing Kang , Nicholas Phair , Patrick William Thomas , Michelangelo van Dam, Yinzhi Cao, and Yuan Tian. 2023 . CHKPLUG : Checking GDPR Compliance of WordPress Plugins via Cross-language Code Property Graph.. In NDSS. Faysal Hossain Shezan, Zihao Su, Mingqing Kang, Nicholas Phair, Patrick William Thomas, Michelangelo van Dam, Yinzhi Cao, and Yuan Tian. 2023. CHKPLUG: Checking GDPR Compliance of WordPress Plugins via Cross-language Code Property Graph.. In NDSS."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE48619.2023.00086"},{"key":"e_1_3_2_1_11_1","volume-title":"2023 c. Uncovering and Exploiting Hidden APIs in Mobile Super Apps. arXiv preprint arXiv:2306.08134","author":"Wang Chao","year":"2023","unstructured":"Chao Wang , Yue Zhang , and Zhiqiang Lin . 2023 c. Uncovering and Exploiting Hidden APIs in Mobile Super Apps. arXiv preprint arXiv:2306.08134 ( 2023 ). Chao Wang, Yue Zhang, and Zhiqiang Lin. 2023 c. Uncovering and Exploiting Hidden APIs in Mobile Super Apps. arXiv preprint arXiv:2306.08134 (2023)."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/3510003.3510114"},{"key":"e_1_3_2_1_13_1","volume-title":"2023 a. Do as You Say: Consistency Detection of Data Practice in Program Code and Privacy Policy in Mini-App. arXiv preprint arXiv:2302.13860","author":"Wang Yin","year":"2023","unstructured":"Yin Wang , Ming Fan , Junfeng Liu , Junjie Tao , Wuxia Jin , Qi Xiong , Yuhao Liu , Qinghua Zheng , and Ting Liu . 2023 a. Do as You Say: Consistency Detection of Data Practice in Program Code and Privacy Policy in Mini-App. arXiv preprint arXiv:2302.13860 ( 2023 ). Yin Wang, Ming Fan, Junfeng Liu, Junjie Tao, Wuxia Jin, Qi Xiong, Yuhao Liu, Qinghua Zheng, and Ting Liu. 2023 a. Do as You Say: Consistency Detection of Data Practice in Program Code and Privacy Policy in Mini-App. arXiv preprint arXiv:2302.13860 (2023)."},{"key":"e_1_3_2_1_14_1","volume-title":"SoK: Decoding the Super App Enigma: The Security Mechanisms, Threats, and Trade-offs in OS-alike Apps. arXiv preprint arXiv:2306.07495","author":"Yang Yuqing","year":"2023","unstructured":"Yuqing Yang , Chao Wang , Yue Zhang , and Zhiqiang Lin . 2023. SoK: Decoding the Super App Enigma: The Security Mechanisms, Threats, and Trade-offs in OS-alike Apps. arXiv preprint arXiv:2306.07495 ( 2023 ). Yuqing Yang, Chao Wang, Yue Zhang, and Zhiqiang Lin. 2023. SoK: Decoding the Super App Enigma: The Security Mechanisms, Threats, and Trade-offs in OS-alike Apps. arXiv preprint arXiv:2306.07495 (2023)."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/3548606.3560597"},{"key":"e_1_3_2_1_16_1","volume-title":"2023 c. A Small Leak Will Sink Many Ships: Vulnerabilities Related to mini-programs Permissions. In 2023 IEEE 47th Annual Computers, Software, and Applications Conference (COMPSAC)","author":"Zhang Jianyi","unstructured":"Jianyi Zhang , Leixin Yang , Yuyang Han , Zixiao Xiang , and Xiali Hei . 2023 c. A Small Leak Will Sink Many Ships: Vulnerabilities Related to mini-programs Permissions. In 2023 IEEE 47th Annual Computers, Software, and Applications Conference (COMPSAC) . IEEE , 595--606. Jianyi Zhang, Leixin Yang, Yuyang Han, Zixiao Xiang, and Xiali Hei. 2023 c. A Small Leak Will Sink Many Ships: Vulnerabilities Related to mini-programs Permissions. In 2023 IEEE 47th Annual Computers, Software, and Applications Conference (COMPSAC). IEEE, 595--606."},{"key":"e_1_3_2_1_17_1","volume-title":"31st USENIX Security Symposium (USENIX Security 22)","author":"Zhang Lei","year":"2022","unstructured":"Lei Zhang , Zhibo Zhang , Ancong Liu , Yinzhi Cao , Xiaohan Zhang , Yanjun Chen , Yuan Zhang , Guangliang Yang , and Min Yang . 2022 . Identity Confusion in $$WebView-based$$ Mobile App-in-app Ecosystems . In 31st USENIX Security Symposium (USENIX Security 22) . 1597--1613. Lei Zhang, Zhibo Zhang, Ancong Liu, Yinzhi Cao, Xiaohan Zhang, Yanjun Chen, Yuan Zhang, Guangliang Yang, and Min Yang. 2022. Identity Confusion in $$WebView-based$$ Mobile App-in-app Ecosystems. In 31st USENIX Security Symposium (USENIX Security 22). 1597--1613."},{"key":"e_1_3_2_1_18_1","volume-title":"2023 a. Understanding Privacy Over-collection in WeChat Sub-app Ecosystem. arXiv preprint arXiv:2306.08391","author":"Zhang Xiaohan","year":"2023","unstructured":"Xiaohan Zhang , Yang Wang , Xin Zhang , Ziqi Huang , Lei Zhang , and Min Yang . 2023 a. Understanding Privacy Over-collection in WeChat Sub-app Ecosystem. arXiv preprint arXiv:2306.08391 ( 2023 ). Xiaohan Zhang, Yang Wang, Xin Zhang, Ziqi Huang, Lei Zhang, and Min Yang. 2023 a. Understanding Privacy Over-collection in WeChat Sub-app Ecosystem. arXiv preprint arXiv:2306.08391 (2023)."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/3543516.3460106"},{"key":"e_1_3_2_1_20_1","volume-title":"2023 b. Don't Leak Your Keys: Understanding, Measuring, and Exploiting the AppSecret Leaks in Mini-Programs. arXiv preprint arXiv:2306.08151","author":"Zhang Yue","year":"2023","unstructured":"Yue Zhang , Yuqing Yang , and Zhiqiang Lin . 2023 b. Don't Leak Your Keys: Understanding, Measuring, and Exploiting the AppSecret Leaks in Mini-Programs. arXiv preprint arXiv:2306.08151 ( 2023 ). Yue Zhang, Yuqing Yang, and Zhiqiang Lin. 2023 b. Don't Leak Your Keys: Understanding, Measuring, and Exploiting the AppSecret Leaks in Mini-Programs. arXiv preprint arXiv:2306.08151 (2023)."}],"event":{"name":"CCS '23: ACM SIGSAC Conference on Computer and Communications Security","location":"Copenhagen Denmark","acronym":"CCS '23","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2023 ACM Workshop on Secure and Trustworthy Superapps"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3605762.3624435","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3605762.3624435","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:46:11Z","timestamp":1750178771000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3605762.3624435"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,11,26]]},"references-count":20,"alternative-id":["10.1145\/3605762.3624435","10.1145\/3605762"],"URL":"https:\/\/doi.org\/10.1145\/3605762.3624435","relation":{},"subject":[],"published":{"date-parts":[[2023,11,26]]},"assertion":[{"value":"2023-11-26","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}