{"id":"https://openalex.org/W2990732436","doi":"https://doi.org/10.1145/3359789.3359814","title":"Detecting (absent) app-to-app authentication on cross-device short-distance channels","display_name":"Detecting (absent) app-to-app authentication on cross-device short-distance channels","publication_year":2019,"publication_date":"2019-11-22","ids":{"openalex":"https://openalex.org/W2990732436","doi":"https://doi.org/10.1145/3359789.3359814","mag":"2990732436"},"language":"en","primary_location":{"id":"doi:10.1145/3359789.3359814","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3359789.3359814","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359814","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359814","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086273669","display_name":"Stefano Cristalli","orcid":"https://orcid.org/0000-0002-0124-4467"},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":true,"raw_author_name":"Stefano Cristalli","raw_affiliation_strings":["University of Milan, Milan, Italy"],"affiliations":[{"raw_affiliation_string":"University of Milan, Milan, Italy","institution_ids":["https://openalex.org/I189158943"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5013217302","display_name":"Long Lu","orcid":"https://orcid.org/0000-0003-1550-479X"},"institutions":[{"id":"https://openalex.org/I87182695","display_name":"Universidad del Noreste","ror":"https://ror.org/02ahky613","country_code":"MX","type":"education","lineage":["https://openalex.org/I87182695"]}],"countries":["MX"],"is_corresponding":false,"raw_author_name":"Long Lu","raw_affiliation_strings":["Northeastern University"],"affiliations":[{"raw_affiliation_string":"Northeastern University","institution_ids":["https://openalex.org/I87182695"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5058151309","display_name":"Danilo Bruschi","orcid":"https://orcid.org/0000-0002-5905-5976"},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Danilo Bruschi","raw_affiliation_strings":["University of Milan, Milan, Italy"],"affiliations":[{"raw_affiliation_string":"University of Milan, Milan, Italy","institution_ids":["https://openalex.org/I189158943"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5017862259","display_name":"Andrea Lanzi","orcid":"https://orcid.org/0000-0002-1544-3758"},"institutions":[{"id":"https://openalex.org/I189158943","display_name":"University of Milan","ror":"https://ror.org/00wjc7c48","country_code":"IT","type":"education","lineage":["https://openalex.org/I189158943"]}],"countries":["IT"],"is_corresponding":false,"raw_author_name":"Andrea Lanzi","raw_affiliation_strings":["University of Milan, Milan, Italy"],"affiliations":[{"raw_affiliation_string":"University of Milan, Milan, Italy","institution_ids":["https://openalex.org/I189158943"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5086273669"],"corresponding_institution_ids":["https://openalex.org/I189158943"],"apc_list":null,"apc_paid":null,"fwci":0.167,"has_fulltext":true,"cited_by_count":3,"citation_normalized_percentile":{"value":0.47346318,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"328","last_page":"338"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.8161411285400391},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7797229290008545},{"id":"https://openalex.org/keywords/bluetooth","display_name":"Bluetooth","score":0.6994013786315918},{"id":"https://openalex.org/keywords/mobile-apps","display_name":"Mobile apps","score":0.5951777696609497},{"id":"https://openalex.org/keywords/android-app","display_name":"Android app","score":0.5824812650680542},{"id":"https://openalex.org/keywords/smartphone-app","display_name":"Smartphone app","score":0.4857400059700012},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.48531025648117065},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.42894038558006287},{"id":"https://openalex.org/keywords/near-field-communication","display_name":"Near field communication","score":0.41551342606544495},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.33494263887405396},{"id":"https://openalex.org/keywords/human\u2013computer-interaction","display_name":"Human\u2013computer interaction","score":0.19506752490997314},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.19347411394119263},{"id":"https://openalex.org/keywords/wireless","display_name":"Wireless","score":0.18069326877593994},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.18058061599731445},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.08261355757713318}],"concepts":[{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.8161411285400391},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7797229290008545},{"id":"https://openalex.org/C546215728","wikidata":"https://www.wikidata.org/wiki/Q39531","display_name":"Bluetooth","level":3,"score":0.6994013786315918},{"id":"https://openalex.org/C2988145974","wikidata":"https://www.wikidata.org/wiki/Q620615","display_name":"Mobile apps","level":2,"score":0.5951777696609497},{"id":"https://openalex.org/C2988045736","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android app","level":3,"score":0.5824812650680542},{"id":"https://openalex.org/C3017619522","wikidata":"https://www.wikidata.org/wiki/Q620615","display_name":"Smartphone app","level":2,"score":0.4857400059700012},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.48531025648117065},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.42894038558006287},{"id":"https://openalex.org/C175604262","wikidata":"https://www.wikidata.org/wiki/Q273353","display_name":"Near field communication","level":3,"score":0.41551342606544495},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33494263887405396},{"id":"https://openalex.org/C107457646","wikidata":"https://www.wikidata.org/wiki/Q207434","display_name":"Human\u2013computer interaction","level":1,"score":0.19506752490997314},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.19347411394119263},{"id":"https://openalex.org/C555944384","wikidata":"https://www.wikidata.org/wiki/Q249","display_name":"Wireless","level":2,"score":0.18069326877593994},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.18058061599731445},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.08261355757713318},{"id":"https://openalex.org/C96122199","wikidata":"https://www.wikidata.org/wiki/Q628096","display_name":"Ultra high frequency","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1145/3359789.3359814","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3359789.3359814","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359814","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},{"id":"pmh:oai:air.unimi.it:2434/706090","is_oa":true,"landing_page_url":"http://hdl.handle.net/2434/706090","pdf_url":null,"source":{"id":"https://openalex.org/S4306400516","display_name":"Archivio Istituzionale della Ricerca (Universita Degli Studi Di Milano)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I189158943","host_organization_name":"University of Milan","host_organization_lineage":["https://openalex.org/I189158943"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/bookPart"}],"best_oa_location":{"id":"doi:10.1145/3359789.3359814","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3359789.3359814","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3359789.3359814","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G4113610684","display_name":null,"funder_award_id":"PGR00814","funder_id":"https://openalex.org/F4320323988","funder_display_name":"Ministero degli Affari Esteri e della Cooperazione Internazionale"},{"id":"https://openalex.org/G5813769722","display_name":null,"funder_award_id":"W911NF-17-1-0039","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"},{"id":"https://openalex.org/G7452299184","display_name":null,"funder_award_id":"W911NF","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"},{"id":"https://openalex.org/G8998121839","display_name":null,"funder_award_id":"911NF","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"}],"funders":[{"id":"https://openalex.org/F4320323988","display_name":"Ministero degli Affari Esteri e della Cooperazione Internazionale","ror":"https://ror.org/02jkm3388"},{"id":"https://openalex.org/F4320338281","display_name":"Army Research Office","ror":"https://ror.org/05epdh915"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2990732436.pdf","grobid_xml":"https://content.openalex.org/works/W2990732436.grobid-xml"},"referenced_works_count":27,"referenced_works":["https://openalex.org/W124941384","https://openalex.org/W1490011260","https://openalex.org/W1542316315","https://openalex.org/W1555215938","https://openalex.org/W1977001074","https://openalex.org/W2001619264","https://openalex.org/W2057816098","https://openalex.org/W2061719810","https://openalex.org/W2062489711","https://openalex.org/W2101894667","https://openalex.org/W2104497251","https://openalex.org/W2109327215","https://openalex.org/W2109538160","https://openalex.org/W2116897550","https://openalex.org/W2132073183","https://openalex.org/W2140656373","https://openalex.org/W2166743230","https://openalex.org/W2195475747","https://openalex.org/W2407313496","https://openalex.org/W2518060702","https://openalex.org/W2525250877","https://openalex.org/W2532201797","https://openalex.org/W2588425636","https://openalex.org/W2593825757","https://openalex.org/W2803054784","https://openalex.org/W2888121333","https://openalex.org/W2932551155"],"related_works":["https://openalex.org/W1995145055","https://openalex.org/W2783775584","https://openalex.org/W2792997778","https://openalex.org/W4281772464","https://openalex.org/W2958719183","https://openalex.org/W2750259497","https://openalex.org/W2071194128","https://openalex.org/W2963285709","https://openalex.org/W1625870857","https://openalex.org/W3125700964"],"abstract_inverted_index":{"Short-distance":[0],"or":[1,12,49],"near-field":[2],"communication":[3,30,57],"is":[4,117],"increasingly":[5],"used":[6],"by":[7,137],"mobile":[8],"apps":[9,37,111],"for":[10,78,100],"interacting":[11],"exchanging":[13],"data":[14],"in":[15,84,134],"a":[16,24,91,107],"cross-device":[17,28],"fashion.":[18],"In":[19,63],"this":[20],"paper,":[21],"we":[22,70,149],"identify":[23],"security":[25,68],"issue,":[26,69],"namely":[27],"app-to-app":[29,51,96],"hijacking":[31],"(or":[32],"CATCH),":[33],"that":[34],"affect":[35],"Android":[36,85,110],"using":[38],"short-distance":[39],"channels":[40,58],"(e.g.,":[41],"Bluetooth":[42],"and":[43,61,112],"Wi-Fi-Direct).":[44],"This":[45],"issue":[46],"causes":[47],"unauthenticated":[48],"malicious":[50],"interactions":[52],"even":[53],"when":[54],"the":[55,67,80,114,121,129,132,144,147],"underlying":[56],"are":[59],"authenticated":[60],"secured.":[62],"addition":[64],"to":[65],"discovering":[66],"design":[71],"an":[72,95],"algorithm":[73,88],"based":[74],"on":[75,106,120],"data-flow":[76],"analysis":[77],"detecting":[79],"presence":[81],"of":[82,109,131,146,152],"CATCH":[83,115],"apps.":[86],"Our":[87],"checks":[89],"if":[90],"given":[92],"app":[93],"contains":[94],"authentication":[97],"scheme,":[98],"necessary":[99],"preventing":[101],"CATCH.":[102],"We":[103,126],"perform":[104],"experiments":[105],"set":[108],"show":[113],"problem":[116,133],"always":[118],"present":[119],"whole":[122],"analyzed":[123],"applications":[124],"set.":[125],"also":[127],"discuss":[128],"impact":[130],"real":[135,140],"scenarios":[136],"presenting":[138],"two":[139],"case":[141],"studies.":[142],"At":[143],"end":[145],"paper":[148],"reported":[150],"limitations":[151],"our":[153],"model":[154],"along":[155],"with":[156],"future":[157],"improvements.":[158]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2020,"cited_by_count":1}],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}