{"id":"https://openalex.org/W1991680810","doi":"https://doi.org/10.1145/2557547.2557557","title":"Systematic audit of third-party android phones","display_name":"Systematic audit of third-party android phones","publication_year":2014,"publication_date":"2014-02-25","ids":{"openalex":"https://openalex.org/W1991680810","doi":"https://doi.org/10.1145/2557547.2557557","mag":"1991680810"},"language":"en","primary_location":{"id":"doi:10.1145/2557547.2557557","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2557547.2557557","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th ACM conference on Data and application security and privacy","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054745082","display_name":"Michael Mitchell","orcid":null},"institutions":[{"id":"https://openalex.org/I103163165","display_name":"Florida State University","ror":"https://ror.org/05g3dte14","country_code":"US","type":"education","lineage":["https://openalex.org/I103163165"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Michael Mitchell","raw_affiliation_strings":["Florida State University, Tallahassee, FL, USA","Florida State University , Tallahassee , FL , USA"],"affiliations":[{"raw_affiliation_string":"Florida State University, Tallahassee, FL, USA","institution_ids":["https://openalex.org/I103163165"]},{"raw_affiliation_string":"Florida State University , Tallahassee , FL , USA","institution_ids":["https://openalex.org/I103163165"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5091760035","display_name":"Guanyu Tian","orcid":null},"institutions":[{"id":"https://openalex.org/I103163165","display_name":"Florida State University","ror":"https://ror.org/05g3dte14","country_code":"US","type":"education","lineage":["https://openalex.org/I103163165"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Guanyu Tian","raw_affiliation_strings":["Florida State University, Tallahassee, FL, USA","Florida State University , Tallahassee , FL , USA"],"affiliations":[{"raw_affiliation_string":"Florida State University, Tallahassee, FL, USA","institution_ids":["https://openalex.org/I103163165"]},{"raw_affiliation_string":"Florida State University , Tallahassee , FL , USA","institution_ids":["https://openalex.org/I103163165"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100693759","display_name":"Zhi Wang","orcid":"https://orcid.org/0000-0003-4711-4251"},"institutions":[{"id":"https://openalex.org/I103163165","display_name":"Florida State University","ror":"https://ror.org/05g3dte14","country_code":"US","type":"education","lineage":["https://openalex.org/I103163165"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Zhi Wang","raw_affiliation_strings":["Florida State University, Tallahassee, FL, USA","Florida State University , Tallahassee , FL , USA"],"affiliations":[{"raw_affiliation_string":"Florida State University, Tallahassee, FL, USA","institution_ids":["https://openalex.org/I103163165"]},{"raw_affiliation_string":"Florida State University , Tallahassee , FL , USA","institution_ids":["https://openalex.org/I103163165"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5054745082"],"corresponding_institution_ids":["https://openalex.org/I103163165"],"apc_list":null,"apc_paid":null,"fwci":1.1646,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.77964238,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"175","last_page":"186"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.8652083277702332},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6925723552703857},{"id":"https://openalex.org/keywords/personalization","display_name":"Personalization","score":0.5482386946678162},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5203596949577332},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4888717532157898},{"id":"https://openalex.org/keywords/phone","display_name":"Phone","score":0.4712021052837372},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.4486088454723358},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.4232776165008545},{"id":"https://openalex.org/keywords/scalability","display_name":"Scalability","score":0.4200553894042969},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.4159677028656006},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.35736361145973206}],"concepts":[{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.8652083277702332},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6925723552703857},{"id":"https://openalex.org/C183003079","wikidata":"https://www.wikidata.org/wiki/Q1000371","display_name":"Personalization","level":2,"score":0.5482386946678162},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5203596949577332},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4888717532157898},{"id":"https://openalex.org/C2778707766","wikidata":"https://www.wikidata.org/wiki/Q202064","display_name":"Phone","level":2,"score":0.4712021052837372},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.4486088454723358},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.4232776165008545},{"id":"https://openalex.org/C48044578","wikidata":"https://www.wikidata.org/wiki/Q727490","display_name":"Scalability","level":2,"score":0.4200553894042969},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.4159677028656006},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.35736361145973206},{"id":"https://openalex.org/C187736073","wikidata":"https://www.wikidata.org/wiki/Q2920921","display_name":"Management","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2557547.2557557","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2557547.2557557","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 4th ACM conference on Data and application security and privacy","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.4699999988079071,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":41,"referenced_works":["https://openalex.org/W32581813","https://openalex.org/W79696261","https://openalex.org/W81879861","https://openalex.org/W187285683","https://openalex.org/W1491178396","https://openalex.org/W1555215938","https://openalex.org/W1578479379","https://openalex.org/W1604459715","https://openalex.org/W1609673577","https://openalex.org/W1680232729","https://openalex.org/W1690253345","https://openalex.org/W1912565424","https://openalex.org/W1963971515","https://openalex.org/W1971497680","https://openalex.org/W1988036170","https://openalex.org/W1990762361","https://openalex.org/W1994588724","https://openalex.org/W2018175892","https://openalex.org/W2041276426","https://openalex.org/W2056073317","https://openalex.org/W2056477044","https://openalex.org/W2066383384","https://openalex.org/W2068211976","https://openalex.org/W2081867537","https://openalex.org/W2105412867","https://openalex.org/W2111295912","https://openalex.org/W2114275288","https://openalex.org/W2123437505","https://openalex.org/W2125011234","https://openalex.org/W2128782367","https://openalex.org/W2131303746","https://openalex.org/W2138756793","https://openalex.org/W2138788987","https://openalex.org/W2140095007","https://openalex.org/W2142145056","https://openalex.org/W2158888459","https://openalex.org/W2165597437","https://openalex.org/W2398484989","https://openalex.org/W2399891510","https://openalex.org/W2467020497","https://openalex.org/W2914982603"],"related_works":["https://openalex.org/W2092530219","https://openalex.org/W2109940557","https://openalex.org/W2466832359","https://openalex.org/W2388464034","https://openalex.org/W2533125852","https://openalex.org/W2140460949","https://openalex.org/W2105580438","https://openalex.org/W4391210591","https://openalex.org/W1582019636","https://openalex.org/W2057435755"],"abstract_inverted_index":{"Android":[0,38,63,107,142],"has":[1],"become":[2],"the":[3,16,36,61,85,97,106,147,191],"leading":[4],"smartphone":[5],"platform":[6],"with":[7,26],"hundreds":[8],"of":[9,190],"devices":[10],"from":[11,96,105],"various":[12],"manufacturers":[13,50],"available":[14],"on":[15],"market":[17],"today.":[18],"All":[19],"these":[20],"phones":[21,79],"closely":[22],"resemble":[23],"each":[24],"other":[25],"similar":[27],"hardware":[28],"and":[29,94,99,117,129,144,160,169,188],"software":[30,76],"features.":[31],"Manufacturers":[32],"must":[33],"therefore":[34],"customize":[35],"official":[37,62,86],"system":[39,104,133],"to":[40,53,73,84,172,183],"differentiate":[41],"their":[42,150],"devices.":[43],"Unfortunately,":[44],"such":[45],"heavily":[46],"customization":[47],"by":[48,80],"third-party":[49,78],"often":[51],"leads":[52],"serious":[54],"vulnerabilities":[55],"that":[56,134,156],"do":[57],"not":[58],"exist":[59],"in":[60,77,149],"system.":[64,87],"In":[65],"this":[66,124],"paper,":[67],"we":[68,89,126],"propose":[69],"a":[70,101,132,185],"comparative":[71],"approach":[72],"systematically":[74],"audit":[75],"comparing":[81],"them":[82],"side-by-side":[83],"Specifically,":[88],"first":[90],"retrieve":[91],"pre-loaded":[92],"apps":[93,116],"libraries":[95,118],"phone":[98],"build":[100],"matching":[102],"base":[103],"open":[108],"source":[109],"project":[110],"repository.":[111],"We":[112],"then":[113],"compare":[114],"corresponding":[115],"for":[119],"potential":[120],"vulnerabilities.":[121],"To":[122],"facilitate":[123],"process,":[125],"have":[127],"designed":[128],"implemented":[130],"DexDiff,":[131],"can":[135],"pinpoint":[136],"fine":[137],"structural":[138],"differences":[139],"between":[140],"two":[141,168,174],"binaries":[143],"also":[145,181],"present":[146],"changes":[148],"surrounding":[151],"contexts.":[152],"Our":[153],"experiments":[154],"show":[155],"DexDiff":[157,179],"is":[158,180],"efficient":[159],"scalable.":[161],"For":[162],"example,":[163],"it":[164],"spends":[165],"less":[166],"than":[167],"half":[170],"minutes":[171],"process":[173],"16.5MB":[175],"(in":[176],"total)":[177],"files.":[178],"able":[182],"reveal":[184],"new":[186],"vulnerability":[187],"details":[189],"invasive":[192],"CIQ":[193],"mobile":[194],"intelligence":[195],"software.":[196]},"counts_by_year":[{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":2},{"year":2017,"cited_by_count":1},{"year":2016,"cited_by_count":2},{"year":2015,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}