{"id":"https://openalex.org/W1977634174","doi":"https://doi.org/10.1145/2810103.2813675","title":"iRiS","display_name":"iRiS","publication_year":2015,"publication_date":"2015-10-06","ids":{"openalex":"https://openalex.org/W1977634174","doi":"https://doi.org/10.1145/2810103.2813675","mag":"1977634174"},"language":"en","primary_location":{"id":"doi:10.1145/2810103.2813675","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813675","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5035561571","display_name":"Zhui Deng","orcid":null},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Zhui Deng","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021029981","display_name":"Brendan Saltaformaggio","orcid":"https://orcid.org/0000-0001-5859-6925"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Brendan Saltaformaggio","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5107249133","display_name":"Xiangyu Zhang","orcid":"https://orcid.org/0000-0002-9544-2500"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xiangyu Zhang","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5108280598","display_name":"Dongyan Xu","orcid":null},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Dongyan Xu","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5035561571"],"corresponding_institution_ids":["https://openalex.org/I219193219"],"apc_list":null,"apc_paid":null,"fwci":6.605,"has_fulltext":false,"cited_by_count":44,"citation_normalized_percentile":{"value":0.9730628,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"44","last_page":"56"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9961000084877014,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9914000034332275,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/vetting","display_name":"Vetting","score":0.9053055644035339},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8228044509887695},{"id":"https://openalex.org/keywords/private-information-retrieval","display_name":"Private information retrieval","score":0.5326789021492004},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4975762665271759},{"id":"https://openalex.org/keywords/iris","display_name":"IRIS (biosensor)","score":0.4710381329059601},{"id":"https://openalex.org/keywords/porting","display_name":"Porting","score":0.46670079231262207},{"id":"https://openalex.org/keywords/iris-recognition","display_name":"Iris recognition","score":0.42414921522140503},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.38668474555015564},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.25039297342300415},{"id":"https://openalex.org/keywords/biometrics","display_name":"Biometrics","score":0.16536906361579895},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.11167895793914795}],"concepts":[{"id":"https://openalex.org/C2777230681","wikidata":"https://www.wikidata.org/wiki/Q7923820","display_name":"Vetting","level":2,"score":0.9053055644035339},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8228044509887695},{"id":"https://openalex.org/C99221444","wikidata":"https://www.wikidata.org/wiki/Q1532069","display_name":"Private information retrieval","level":2,"score":0.5326789021492004},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4975762665271759},{"id":"https://openalex.org/C2779503344","wikidata":"https://www.wikidata.org/wiki/Q5973514","display_name":"IRIS (biosensor)","level":3,"score":0.4710381329059601},{"id":"https://openalex.org/C106251023","wikidata":"https://www.wikidata.org/wiki/Q851989","display_name":"Porting","level":3,"score":0.46670079231262207},{"id":"https://openalex.org/C112356035","wikidata":"https://www.wikidata.org/wiki/Q1672722","display_name":"Iris recognition","level":3,"score":0.42414921522140503},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.38668474555015564},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.25039297342300415},{"id":"https://openalex.org/C184297639","wikidata":"https://www.wikidata.org/wiki/Q177765","display_name":"Biometrics","level":2,"score":0.16536906361579895},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.11167895793914795}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2810103.2813675","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2810103.2813675","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.6499999761581421}],"awards":[{"id":"https://openalex.org/G7991439394","display_name":null,"funder_award_id":"1409668","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W25263107","https://openalex.org/W71622742","https://openalex.org/W1522250664","https://openalex.org/W1534295949","https://openalex.org/W1555215938","https://openalex.org/W1953670109","https://openalex.org/W1954816054","https://openalex.org/W1963971515","https://openalex.org/W1985686072","https://openalex.org/W1988036170","https://openalex.org/W1989734217","https://openalex.org/W2013822603","https://openalex.org/W2014390890","https://openalex.org/W2048714945","https://openalex.org/W2060692877","https://openalex.org/W2071170332","https://openalex.org/W2101512909","https://openalex.org/W2134633067","https://openalex.org/W2142145056","https://openalex.org/W2155943969","https://openalex.org/W2156858199","https://openalex.org/W2158694364","https://openalex.org/W2165269684","https://openalex.org/W2397986719","https://openalex.org/W3136699861","https://openalex.org/W4239813889"],"related_works":["https://openalex.org/W2748952813","https://openalex.org/W2162640687","https://openalex.org/W2162839303","https://openalex.org/W2151970936","https://openalex.org/W2557390811","https://openalex.org/W2355560018","https://openalex.org/W2952386695","https://openalex.org/W2759939383","https://openalex.org/W2347454953","https://openalex.org/W1977634174"],"abstract_inverted_index":{"With":[0],"the":[1,7,20,57,144,225],"booming":[2],"sale":[3],"of":[4,9,22,42,59,131,135,160,214,221],"iOS":[5,10,23,28,77,126,181,215],"devices,":[6],"number":[8,159,213],"applications":[11,142,154,182,216],"has":[12],"increased":[13],"significantly":[14],"in":[15,83,198,224,231],"recent":[16,53],"years.":[17],"To":[18,69],"protect":[19],"security":[21],"users,":[24],"Apple":[25],"requires":[26],"every":[27],"application":[29,78],"to":[30,39,48,92,118,125,208],"go":[31],"through":[32],"a":[33,75,105,129,157,188,211],"vetting":[34,79],"process":[35],"called":[36,81],"App":[37,67,146,226,238],"Review":[38],"detect":[40],"uses":[41,104],"private":[43,61,163,233],"APIs":[44,62,168],"that":[45,98,155,169,217],"provide":[46],"access":[47,170],"sensitive":[49,171],"user":[50,172,195],"information.":[51],"However,":[52],"attacks":[54],"have":[55,122],"shown":[56],"feasibility":[58],"using":[60,183],"without":[63],"being":[64],"detected":[65],"during":[66],"Review.":[68,239],"counter":[70],"such":[71,174],"attacks,":[72],"we":[73,185],"propose":[74],"new":[76],"system,":[80],"iRiS,":[82,184],"this":[84],"paper.":[85],"iRiS":[86,103,132,139,150,228],"first":[87],"applies":[88],"fast":[89],"static":[90,119],"analysis":[91,109],"resolve":[93],"API":[94,234],"calls.":[95],"For":[96],"those":[97],"cannot":[99],"be":[100],"statically":[101],"resolved,":[102],"novel":[106],"iterative":[107],"dynamic":[108],"approach,":[110],"which":[111,193],"is":[112,229],"slower":[113],"but":[114],"more":[115],"powerful":[116],"compared":[117],"analysis.":[120],"We":[121,137],"ported":[123],"Valgrind":[124],"and":[127],"implemented":[128],"prototype":[130],"on":[133],"top":[134],"it.":[136],"evaluated":[138],"with":[140],"2019":[141],"from":[143],"official":[145],"Store.":[147,227],"From":[148],"these,":[149],"identified":[151,187],"146":[152],"(7%)":[153],"use":[156],"total":[158],"150":[161],"different":[162],"APIs,":[164],"including":[165],"25":[166],"security-critical":[167],"information,":[173],"as":[175],"device":[176],"serial":[177],"number.":[178],"By":[179],"analyzing":[180],"also":[186],"suspicious":[189],"advertisement":[190,200],"service":[191,222],"provider":[192],"collects":[194],"privacy":[196],"information":[197],"its":[199],"serving":[201],"library.":[202],"Our":[203],"results":[204],"show":[205],"that,":[206],"contrary":[207],"popular":[209],"belief,":[210],"nontrivial":[212],"violate":[218],"Apple's":[219],"terms":[220],"exist":[223],"effective":[230],"detecting":[232],"abuse":[235],"missed":[236],"by":[237]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":7},{"year":2018,"cited_by_count":9},{"year":2017,"cited_by_count":4},{"year":2016,"cited_by_count":10}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2016-06-24T00:00:00"}