{"id":"https://openalex.org/W4210339121","doi":"https://doi.org/10.1109/globecom46510.2021.9685748","title":"Visible Forensic Investigation for Android Applications by Using Attack Scenario Reconstruction","display_name":"Visible Forensic Investigation for Android Applications by Using Attack Scenario Reconstruction","publication_year":2021,"publication_date":"2021-12-01","ids":{"openalex":"https://openalex.org/W4210339121","doi":"https://doi.org/10.1109/globecom46510.2021.9685748"},"language":"en","primary_location":{"id":"doi:10.1109/globecom46510.2021.9685748","is_oa":false,"landing_page_url":"https://doi.org/10.1109/globecom46510.2021.9685748","pdf_url":null,"source":{"id":"https://openalex.org/S4363607714","display_name":"2021 IEEE Global Communications Conference (GLOBECOM)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE Global Communications Conference (GLOBECOM)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5104094613","display_name":"Shiwen Song","orcid":null},"institutions":[{"id":"https://openalex.org/I881766915","display_name":"Nanjing University","ror":"https://ror.org/01rxvg760","country_code":"CN","type":"education","lineage":["https://openalex.org/I881766915"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shiwen Song","raw_affiliation_strings":["State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China","institution_ids":["https://openalex.org/I881766915"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5078523903","display_name":"Xuanyu Liu","orcid":"https://orcid.org/0000-0001-8916-9942"},"institutions":[{"id":"https://openalex.org/I881766915","display_name":"Nanjing University","ror":"https://ror.org/01rxvg760","country_code":"CN","type":"education","lineage":["https://openalex.org/I881766915"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xuanyu Liu","raw_affiliation_strings":["State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China","institution_ids":["https://openalex.org/I881766915"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103805225","display_name":"Xiao Fu","orcid":"https://orcid.org/0009-0006-6601-5290"},"institutions":[{"id":"https://openalex.org/I881766915","display_name":"Nanjing University","ror":"https://ror.org/01rxvg760","country_code":"CN","type":"education","lineage":["https://openalex.org/I881766915"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiao Fu","raw_affiliation_strings":["State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China","institution_ids":["https://openalex.org/I881766915"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5073104000","display_name":"Bin Luo","orcid":"https://orcid.org/0000-0002-9036-0063"},"institutions":[{"id":"https://openalex.org/I881766915","display_name":"Nanjing University","ror":"https://ror.org/01rxvg760","country_code":"CN","type":"education","lineage":["https://openalex.org/I881766915"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Bin Luo","raw_affiliation_strings":["State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"State Key Laboratory for Novel Software Technology, Nanjing University, Nanjing, China","institution_ids":["https://openalex.org/I881766915"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060514022","display_name":"Xiaojiang Du","orcid":"https://orcid.org/0000-0003-4235-9671"},"institutions":[{"id":"https://openalex.org/I108468826","display_name":"Stevens Institute of Technology","ror":"https://ror.org/02z43xh36","country_code":"US","type":"education","lineage":["https://openalex.org/I108468826"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xiaojiang Du","raw_affiliation_strings":["Stevens Institute of Technology, Hoboken, NJ, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Stevens Institute of Technology, Hoboken, NJ, USA","institution_ids":["https://openalex.org/I108468826"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5057916222","display_name":"Mohsen Guizani","orcid":"https://orcid.org/0000-0002-8972-8094"},"institutions":[{"id":"https://openalex.org/I60342839","display_name":"Qatar University","ror":"https://ror.org/00yhnba62","country_code":"QA","type":"education","lineage":["https://openalex.org/I60342839"]}],"countries":["QA"],"is_corresponding":false,"raw_author_name":"Mohsen Guizani","raw_affiliation_strings":["Qatar University, Qatar"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Qatar University, Qatar","institution_ids":["https://openalex.org/I60342839"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":6,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.1721,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.43665768,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9943000078201294,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.8498974442481995},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7592229843139648},{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.7536911964416504},{"id":"https://openalex.org/keywords/digital-forensics","display_name":"Digital forensics","score":0.6977784633636475},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6195573806762695},{"id":"https://openalex.org/keywords/android-application","display_name":"Android application","score":0.480199933052063},{"id":"https://openalex.org/keywords/mobile-device","display_name":"Mobile device","score":0.4787273108959198},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.45019838213920593},{"id":"https://openalex.org/keywords/android-malware","display_name":"Android malware","score":0.42349156737327576},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3287436366081238},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.21298766136169434},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.1281273365020752}],"concepts":[{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.8498974442481995},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7592229843139648},{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.7536911964416504},{"id":"https://openalex.org/C84418412","wikidata":"https://www.wikidata.org/wiki/Q3246940","display_name":"Digital forensics","level":2,"score":0.6977784633636475},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6195573806762695},{"id":"https://openalex.org/C3017891749","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android application","level":3,"score":0.480199933052063},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.4787273108959198},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.45019838213920593},{"id":"https://openalex.org/C2989133298","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android malware","level":3,"score":0.42349156737327576},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3287436366081238},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.21298766136169434},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.1281273365020752}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/globecom46510.2021.9685748","is_oa":false,"landing_page_url":"https://doi.org/10.1109/globecom46510.2021.9685748","pdf_url":null,"source":{"id":"https://openalex.org/S4363607714","display_name":"2021 IEEE Global Communications Conference (GLOBECOM)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE Global Communications Conference (GLOBECOM)","raw_type":"proceedings-article"},{"id":"pmh:oai:qspace.qu.edu.qa:10576/36069","is_oa":false,"landing_page_url":"https://www.scopus.com/inward/record.uri?partnerID=HzOxMe3b&scp=85127251426&origin=inward","pdf_url":null,"source":{"id":"https://openalex.org/S4306400014","display_name":"Qatar University QSpace (Qatar University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I60342839","host_organization_name":"Qatar University","host_organization_lineage":["https://openalex.org/I60342839"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Conference"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.5099999904632568}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W1190756082","https://openalex.org/W1513639492","https://openalex.org/W2021079631","https://openalex.org/W2061221009","https://openalex.org/W2112051822","https://openalex.org/W2134346134","https://openalex.org/W2159145942","https://openalex.org/W2520262392","https://openalex.org/W2737306402","https://openalex.org/W2770299518","https://openalex.org/W2980277939","https://openalex.org/W2980856534","https://openalex.org/W3003867073","https://openalex.org/W3007878096","https://openalex.org/W3189494148"],"related_works":["https://openalex.org/W2782775281","https://openalex.org/W2560361988","https://openalex.org/W2507113366","https://openalex.org/W3025122950","https://openalex.org/W2311926078","https://openalex.org/W3200508744","https://openalex.org/W2462192250","https://openalex.org/W4312234627","https://openalex.org/W3195312353","https://openalex.org/W2717179875"],"abstract_inverted_index":{"With":[0],"the":[1,43,82],"widespread":[2],"use":[3],"of":[4,45,84],"Android":[5,32,60,106],"devices,":[6],"research":[7],"on":[8,105],"their":[9],"security":[10],"has":[11],"attracted":[12],"increasing":[13],"attention.":[14],"However,":[15],"at":[16],"present,":[17],"digital":[18,56],"forensics":[19],"for":[20,59,108],"investigating":[21],"attacks,":[22],"such":[23],"as":[24],"social":[25],"engineering":[26],"attacks":[27],"and":[28,37,48,74,90],"phishing":[29,109],"that":[30,98],"target":[31],"users,":[33],"remains":[34],"a":[35,54,88],"challenging":[36],"time-consuming":[38],"task.":[39],"To":[40],"help":[41],"discover":[42],"existence":[44],"an":[46,85],"attack":[47,64,86],"conduct":[49],"effective":[50],"investigations,":[51],"we":[52,79],"propose":[53],"top-down":[55],"forensic":[57],"tool":[58,100],"applications":[61],"to":[62],"reconstruct":[63,103],"scenarios":[65,104],"by":[66],"considering":[67],"both":[68],"high-level":[69],"user":[70],"interface":[71],"(UI)":[72],"elements":[73],"low-level":[75],"system":[76],"events.":[77],"Thus,":[78],"can":[80,101],"explain":[81],"nature":[83],"from":[87],"visual":[89],"global":[91],"perspective.":[92],"The":[93],"tested":[94],"evaluation":[95],"results":[96],"show":[97],"our":[99],"successfully":[102],"devices":[107],"attacks.":[110]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2022,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}