{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,17]],"date-time":"2026-02-17T05:51:24Z","timestamp":1771307484684,"version":"3.50.1"},"publisher-location":"New York, NY, USA","reference-count":27,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,6,3]],"date-time":"2024-06-03T00:00:00Z","timestamp":1717372800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-sa\/4.0\/"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,6,3]]},"DOI":"10.1145\/3643832.3661893","type":"proceedings-article","created":{"date-parts":[[2024,6,4]],"date-time":"2024-06-04T17:14:23Z","timestamp":1717521263000},"page":"385-397","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Automated Detection of Cryptographic Inconsistencies in Android\u2019s Keymaster Implementations"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-1358-9638","authenticated-orcid":false,"given":"Abdullah","family":"Imran","sequence":"first","affiliation":[{"name":"Purdue University, West Lafayette, Indiana, USA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2862-5286","authenticated-orcid":false,"given":"Antonio","family":"Bianchi","sequence":"additional","affiliation":[{"name":"Purdue University, West Lafayette, Indiana, United States of America"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,6,4]]},"reference":[{"key":"e_1_3_2_1_1_1","volume-title":"https:\/\/static.linaro.org\/connect\/san19\/presentations\/san19-225.pdf","author":"Fuzzing OP-TEE","year":"2019","unstructured":"Fuzzing OP-TEE with AFL. https:\/\/static.linaro.org\/connect\/san19\/presentations\/san19-225.pdf, 2019."},{"key":"e_1_3_2_1_2_1","volume-title":"https:\/\/github.com\/google\/AFL","author":"AFL.","year":"2023","unstructured":"AFL. https:\/\/github.com\/google\/AFL, 2023."},{"key":"e_1_3_2_1_3_1","volume-title":"https:\/\/source.android.com\/docs\/security\/best-practices\/hardware","author":"Best Practices Android Security","year":"2023","unstructured":"Android Security Best Practices. https:\/\/source.android.com\/docs\/security\/best-practices\/hardware, 2023."},{"key":"e_1_3_2_1_4_1","volume-title":"https:\/\/github.com\/guidovranken\/cryptofuzz","year":"2023","unstructured":"Cryptofuzz. https:\/\/github.com\/guidovranken\/cryptofuzz, 2023."},{"key":"e_1_3_2_1_5_1","volume-title":"https:\/\/alexbakker.me\/post\/mysterious-google-titan-m-bug-cve-2019-9465.html","year":"2023","unstructured":"CVE-2019-9465. https:\/\/alexbakker.me\/post\/mysterious-google-titan-m-bug-cve-2019-9465.html, 2023."},{"key":"e_1_3_2_1_6_1","volume-title":"https:\/\/www.trustedfirmware.org\/projects\/op-tee\/","author":"TEE.","year":"2023","unstructured":"OP-TEE. https:\/\/www.trustedfirmware.org\/projects\/op-tee\/, 2023."},{"key":"e_1_3_2_1_7_1","volume-title":"https:\/\/peachtech.gitlab.io\/peach-fuzzer-community\/","year":"2023","unstructured":"Peach. https:\/\/peachtech.gitlab.io\/peach-fuzzer-community\/, 2023."},{"key":"e_1_3_2_1_8_1","volume-title":"https:\/\/blog.google\/products\/pixel\/titan-m-makes-pixel-3-our-most-secure-phone-yet\/","author":"M.","year":"2023","unstructured":"Titan-M. https:\/\/blog.google\/products\/pixel\/titan-m-makes-pixel-3-our-most-secure-phone-yet\/, 2023."},{"key":"e_1_3_2_1_9_1","volume-title":"https:\/\/github.com\/purseclab\/AKF","author":"AKF.","year":"2024","unstructured":"AKF. https:\/\/github.com\/purseclab\/AKF, 2024."},{"key":"e_1_3_2_1_10_1","volume-title":"Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS)","author":"Bernhard Lukas","year":"2022","unstructured":"Lukas Bernhard, Tobias Scharnowski, Moritz Schloegel, Tim Blazytko, and Thorsten Holz. Jit-picking: Differential fuzzing of javascript engines. Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS), 2022."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-93524-9_6"},{"key":"e_1_3_2_1_12_1","volume-title":"Proceedings of the IEEE Symposium on Security and Privacy (S&P)","author":"Busch Marcel","year":"2022","unstructured":"Marcel Busch, Aravind Machiry, Chad Spensky, Giovanni Vigna, Christopher Kruegel, and Mathias Payer. Teezz: Fuzzing trusted applications on cots android devices. In Proceedings of the IEEE Symposium on Security and Privacy (S&P), 2022."},{"key":"e_1_3_2_1_13_1","volume-title":"Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS)","author":"Corina Jake","year":"2017","unstructured":"Jake Corina, Aravind Machiry, Christopher Salls, Yan Shoshitaishvili, Shuang Hao, Christopher Kruegel, and Giovanni Vigna. Difuze: Interface aware fuzzing for kernel drivers. In Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS), 2017."},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2023.03.008"},{"key":"e_1_3_2_1_15_1","volume-title":"Proceedings of the USENIX Security Symposium (USENIX Security)","author":"Harrison Lee","year":"2020","unstructured":"Lee Harrison, Hayawardh Vijayakumar, Rohan Padhye, Koushik Sen, and Michael Grace. Partemu: Enabling dynamic analysis of real-world trustzone software using emulation. In Proceedings of the USENIX Security Symposium (USENIX Security), 2020."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/HPCC-DSS-SmartCity-DependSys53884.2021.00126"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00103"},{"key":"e_1_3_2_1_18_1","volume-title":"Proceedings of the USENIX Security Symposium (USENIX Security)","author":"Imran Abdullah","year":"2022","unstructured":"Abdullah Imran, Habiba Farrukh, Muhammad Ibrahim, Z Berkay Celik, and Antonio Bianchi. {SARA}: Secure android remote authorization. In Proceedings of the USENIX Security Symposium (USENIX Security), 2022."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/3304080.3304084"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2017.23227"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1145\/3503921.3503922"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.27"},{"key":"e_1_3_2_1_23_1","volume-title":"BlackHat USA","author":"Rosenberg Dan","year":"2014","unstructured":"Dan Rosenberg. Reflections on trusting trustzone. BlackHat USA, 2014."},{"key":"e_1_3_2_1_24_1","volume-title":"Proceedings of the USENIX Security Symposium (USENIX Security)","author":"Shakevsky Alon","year":"2022","unstructured":"Alon Shakevsky, Eyal Ronen, and Avishai Wool. Trust dies in darkness: Shedding light on samsung's {TrustZone} keymaster design. In Proceedings of the USENIX Security Symposium (USENIX Security), 2022."},{"key":"e_1_3_2_1_25_1","volume-title":"BlackHat USA","author":"Shen Di","year":"2015","unstructured":"Di Shen. Exploiting trustzone on android. BlackHat USA, 2015."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-63688-7_19"},{"key":"e_1_3_2_1_27_1","volume-title":"Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS)","author":"Wang Jie","year":"2020","unstructured":"Jie Wang, Kun Sun, Lingguang Lei, Shengye Wan, Yuewu Wang, and Jiwu Jing. Cache-in-the-middle (citm) attacks: Manipulating sensitive data in isolated execution environments. In Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS), 2020."}],"event":{"name":"MOBISYS '24: 22nd Annual International Conference on Mobile Systems, Applications and Services","location":"Minato-ku, Tokyo Japan","acronym":"MOBISYS '24","sponsor":["SIGMOBILE ACM Special Interest Group on Mobility of Systems, Users, Data and Computing","SIGOPS ACM Special Interest Group on Operating Systems"]},"container-title":["Proceedings of the 22nd Annual International Conference on Mobile Systems, Applications and Services"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3643832.3661893","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3643832.3661893","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T00:03:07Z","timestamp":1750291387000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3643832.3661893"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,6,3]]},"references-count":27,"alternative-id":["10.1145\/3643832.3661893","10.1145\/3643832"],"URL":"https:\/\/doi.org\/10.1145\/3643832.3661893","relation":{},"subject":[],"published":{"date-parts":[[2024,6,3]]},"assertion":[{"value":"2024-06-04","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}