{"id":"https://openalex.org/W2067364868","doi":"https://doi.org/10.1145/2771783.2771800","title":"Dynamic detection of inter-application communication vulnerabilities in Android","display_name":"Dynamic detection of inter-application communication vulnerabilities in Android","publication_year":2015,"publication_date":"2015-07-10","ids":{"openalex":"https://openalex.org/W2067364868","doi":"https://doi.org/10.1145/2771783.2771800","mag":"2067364868"},"language":"en","primary_location":{"id":"doi:10.1145/2771783.2771800","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2771783.2771800","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5067549802","display_name":"Roee Hay","orcid":null},"institutions":[{"id":"https://openalex.org/I1341412227","display_name":"IBM (United States)","ror":"https://ror.org/05hh8d621","country_code":"US","type":"company","lineage":["https://openalex.org/I1341412227"]},{"id":"https://openalex.org/I4210167297","display_name":"IBM Research - Haifa","ror":"https://ror.org/05rw9t746","country_code":"IL","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210167297"]}],"countries":["IL","US"],"is_corresponding":false,"raw_author_name":"Roee Hay","raw_affiliation_strings":["IBM, Israel","IBM Israel#TAB#"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IBM, Israel","institution_ids":["https://openalex.org/I4210167297"]},{"raw_affiliation_string":"IBM Israel#TAB#","institution_ids":["https://openalex.org/I1341412227"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056497737","display_name":"Omer Tripp","orcid":"https://orcid.org/0000-0002-2393-854X"},"institutions":[{"id":"https://openalex.org/I4210156936","display_name":"IBM Research - Austin","ror":"https://ror.org/05gjbbg60","country_code":"US","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210156936"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Omer Tripp","raw_affiliation_strings":["IBM Research, USA","IBM Research - USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IBM Research, USA","institution_ids":[]},{"raw_affiliation_string":"IBM Research - USA","institution_ids":["https://openalex.org/I4210156936"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5066501364","display_name":"Marco Pistoia","orcid":"https://orcid.org/0000-0001-9002-1128"},"institutions":[{"id":"https://openalex.org/I4210156936","display_name":"IBM Research - Austin","ror":"https://ror.org/05gjbbg60","country_code":"US","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210156936"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Marco Pistoia","raw_affiliation_strings":["IBM Research, USA","IBM Research - USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"IBM Research, USA","institution_ids":[]},{"raw_affiliation_string":"IBM Research - USA","institution_ids":["https://openalex.org/I4210156936"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":7.5391,"has_fulltext":false,"cited_by_count":72,"citation_normalized_percentile":{"value":0.97826212,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"118","last_page":"128"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8133933544158936},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.8013964891433716},{"id":"https://openalex.org/keywords/personalization","display_name":"Personalization","score":0.5414910316467285},{"id":"https://openalex.org/keywords/debugging","display_name":"Debugging","score":0.511751651763916},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.4786066710948944},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4711144268512726},{"id":"https://openalex.org/keywords/attack-surface","display_name":"Attack surface","score":0.42842793464660645},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.31869903206825256},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.2803923487663269}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8133933544158936},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.8013964891433716},{"id":"https://openalex.org/C183003079","wikidata":"https://www.wikidata.org/wiki/Q1000371","display_name":"Personalization","level":2,"score":0.5414910316467285},{"id":"https://openalex.org/C168065819","wikidata":"https://www.wikidata.org/wiki/Q845566","display_name":"Debugging","level":2,"score":0.511751651763916},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.4786066710948944},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4711144268512726},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.42842793464660645},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.31869903206825256},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.2803923487663269}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2771783.2771800","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2771783.2771800","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2015 International Symposium on Software Testing and Analysis","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.5199999809265137,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W1490347130","https://openalex.org/W1630356589","https://openalex.org/W1963971515","https://openalex.org/W1988036170","https://openalex.org/W1988737164","https://openalex.org/W1994588724","https://openalex.org/W1994931937","https://openalex.org/W2012001501","https://openalex.org/W2015933956","https://openalex.org/W2036157748","https://openalex.org/W2044228862","https://openalex.org/W2059519811","https://openalex.org/W2060782570","https://openalex.org/W2094245295","https://openalex.org/W2099607071","https://openalex.org/W2101834106","https://openalex.org/W2140462040","https://openalex.org/W2164539435","https://openalex.org/W2167661907","https://openalex.org/W2911307284"],"related_works":["https://openalex.org/W4321442002","https://openalex.org/W2015265939","https://openalex.org/W2284072287","https://openalex.org/W2611067230","https://openalex.org/W2155788121","https://openalex.org/W4235469518","https://openalex.org/W2387706296","https://openalex.org/W2480201319","https://openalex.org/W2294325978","https://openalex.org/W2890345561"],"abstract_inverted_index":{"A":[0,35],"main":[1,119],"aspect":[2],"of":[3,14,98,111,124,192,197,223],"the":[4,48,57,76,118,155,213],"Android":[5,82,125,179],"platform":[6],"is":[7,59,75,159],"Inter-Application":[8],"Communication":[9],"(IAC),":[10],"which":[11,158],"enables":[12],"reuse":[13],"functionality":[15],"across":[16],"apps":[17,200],"and":[18,134,138],"app":[19,37,50],"components":[20],"via":[21,172,230],"message":[22,58],"passing.":[23],"While":[24],"a":[25,31,40,52,91,162,195,203,220,226,234],"powerful":[26],"feature,":[27],"IAC":[28,44,83,113,126,206],"also":[29],"constitutes":[30],"serious":[32],"attack":[33],"surface.":[34],"malicious":[36],"can":[38,104],"embed":[39],"payload":[41],"into":[42,51],"an":[43],"message,":[45],"thereby":[46],"driving":[47],"recipient":[49],"potentially":[53,105],"vulnerable":[54],"behavior":[55],"if":[56],"processed":[60],"without":[61,181],"its":[62],"fields":[63],"first":[64,77,89],"being":[65],"sanitized":[66],"or":[67,184],"validated.":[68],"We":[69,115,148],"present":[70,139],"what":[71],"to":[72,108,145,186],"our":[73,95,151,216],"knowledge":[74],"comprehensive":[78],"testing":[79,152],"algorithm":[80],"for":[81],"vulnerabilities.":[84],"Toward":[85],"this":[86],"end,":[87],"we":[88],"describe":[90],"catalog,":[92],"stemming":[93],"from":[94],"field":[96],"experience,":[97],"8":[99],"concrete":[100],"vulnerability":[101],"types":[102],"that":[103,121],"arise":[106],"due":[107],"unsafe":[109],"handling":[110],"incoming":[112],"messages.":[114],"then":[116],"explain":[117],"challenges":[120],"automated":[122],"discovery":[123],"vulnerabilities":[127,207],"entails,":[128],"including":[129],"in":[130],"particular":[131],"path":[132],"coverage":[133],"custom":[135],"data":[136],"fields,":[137],"simple":[140],"yet":[141],"surprisingly":[142],"effective":[143],"solutions":[144],"these":[146],"challenges.":[147],"have":[149],"realized":[150],"approach":[153],"as":[154,161],"IntentDroid":[156,166,193],"system,":[157],"available":[160],"commercial":[163],"cloud":[164],"service.":[165],"utilizes":[167],"lightweight":[168],"platform-level":[169],"instrumentation,":[170],"implemented":[171],"debug":[173],"breakpoints":[174],"(to":[175],"run":[176],"atop":[177],"any":[178,182],"device":[180],"setup":[183],"customization),":[185],"recover":[187],"IAC-relevant":[188],"app-level":[189],"behaviors.":[190],"Evaluation":[191],"over":[194],"set":[196],"80":[198],"top-popular":[199],"has":[201],"revealed":[202],"total":[204],"150":[205],"\u2014":[208,218],"some":[209],"already":[210],"fixed":[211],"by":[212,233],"developers":[214],"following":[215],"report":[217],"with":[219],"recall":[221],"rate":[222],"92%":[224],"w.r.t.":[225],"ground":[227],"truth":[228],"established":[229],"manual":[231],"auditing":[232],"security":[235],"expert.":[236]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":6},{"year":2022,"cited_by_count":5},{"year":2021,"cited_by_count":3},{"year":2020,"cited_by_count":11},{"year":2019,"cited_by_count":10},{"year":2018,"cited_by_count":6},{"year":2017,"cited_by_count":13},{"year":2016,"cited_by_count":6},{"year":2015,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}