{"id":"https://openalex.org/W2991173802","doi":"https://doi.org/10.1145/3359789.3359839","title":"AppVeto","display_name":"AppVeto","publication_year":2019,"publication_date":"2019-11-22","ids":{"openalex":"https://openalex.org/W2991173802","doi":"https://doi.org/10.1145/3359789.3359839","mag":"2991173802"},"language":"en","primary_location":{"id":"doi:10.1145/3359789.3359839","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3359789.3359839","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5062036062","display_name":"Tousif Osman","orcid":null},"institutions":[{"id":"https://openalex.org/I60158472","display_name":"Concordia University","ror":"https://ror.org/0420zvk78","country_code":"CA","type":"education","lineage":["https://openalex.org/I60158472"]}],"countries":["CA"],"is_corresponding":true,"raw_author_name":"Tousif Osman","raw_affiliation_strings":["Concordia University, Montreal, Canada"],"affiliations":[{"raw_affiliation_string":"Concordia University, Montreal, Canada","institution_ids":["https://openalex.org/I60158472"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5055898168","display_name":"Mohammad Mannan","orcid":"https://orcid.org/0000-0002-9630-5858"},"institutions":[{"id":"https://openalex.org/I60158472","display_name":"Concordia University","ror":"https://ror.org/0420zvk78","country_code":"CA","type":"education","lineage":["https://openalex.org/I60158472"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Mohammad Mannan","raw_affiliation_strings":["Concordia University, Montreal, Canada"],"affiliations":[{"raw_affiliation_string":"Concordia University, Montreal, Canada","institution_ids":["https://openalex.org/I60158472"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102843571","display_name":"Urs Hengartner","orcid":"https://orcid.org/0000-0002-9840-0015"},"institutions":[{"id":"https://openalex.org/I151746483","display_name":"University of Waterloo","ror":"https://ror.org/01aff2v68","country_code":"CA","type":"education","lineage":["https://openalex.org/I151746483"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Urs Hengartner","raw_affiliation_strings":["University of Waterloo, Waterloo, Canada"],"affiliations":[{"raw_affiliation_string":"University of Waterloo, Waterloo, Canada","institution_ids":["https://openalex.org/I151746483"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5085765243","display_name":"Amr Youssef","orcid":"https://orcid.org/0000-0002-4284-8646"},"institutions":[{"id":"https://openalex.org/I60158472","display_name":"Concordia University","ror":"https://ror.org/0420zvk78","country_code":"CA","type":"education","lineage":["https://openalex.org/I60158472"]}],"countries":["CA"],"is_corresponding":false,"raw_author_name":"Amr Youssef","raw_affiliation_strings":["Concordia University, Montreal, Canada"],"affiliations":[{"raw_affiliation_string":"Concordia University, Montreal, Canada","institution_ids":["https://openalex.org/I60158472"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5062036062"],"corresponding_institution_ids":["https://openalex.org/I60158472"],"apc_list":null,"apc_paid":null,"fwci":0.3317,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.57696084,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"366","last_page":"377"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11800","display_name":"User Authentication and Security Systems","score":0.9966999888420105,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.896140456199646},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.8212829232215881},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7877557277679443},{"id":"https://openalex.org/keywords/password","display_name":"Password","score":0.5857133865356445},{"id":"https://openalex.org/keywords/delegate","display_name":"Delegate","score":0.5791196227073669},{"id":"https://openalex.org/keywords/swipe","display_name":"SwIPe","score":0.559417188167572},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.5372450351715088},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.49052494764328003},{"id":"https://openalex.org/keywords/keystroke-logging","display_name":"Keystroke logging","score":0.4842950701713562},{"id":"https://openalex.org/keywords/mobile-device","display_name":"Mobile device","score":0.4494273364543915},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.37064042687416077}],"concepts":[{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.896140456199646},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.8212829232215881},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7877557277679443},{"id":"https://openalex.org/C109297577","wikidata":"https://www.wikidata.org/wiki/Q161157","display_name":"Password","level":2,"score":0.5857133865356445},{"id":"https://openalex.org/C143273055","wikidata":"https://www.wikidata.org/wiki/Q2382794","display_name":"Delegate","level":2,"score":0.5791196227073669},{"id":"https://openalex.org/C2779623668","wikidata":"https://www.wikidata.org/wiki/Q7652842","display_name":"SwIPe","level":2,"score":0.559417188167572},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.5372450351715088},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.49052494764328003},{"id":"https://openalex.org/C161615301","wikidata":"https://www.wikidata.org/wiki/Q309396","display_name":"Keystroke logging","level":2,"score":0.4842950701713562},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.4494273364543915},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.37064042687416077},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3359789.3359839","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3359789.3359839","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 35th Annual Computer Security Applications Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.6000000238418579,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G6103875446","display_name":null,"funder_award_id":"N01347","funder_id":"https://openalex.org/F4320321487","funder_display_name":"Canadian Network for Research and Innovation in Machining Technology, Natural Sciences and Engineering Research Council of Canada"}],"funders":[{"id":"https://openalex.org/F4320321487","display_name":"Canadian Network for Research and Innovation in Machining Technology, Natural Sciences and Engineering Research Council of Canada","ror":"https://ror.org/01h531d29"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":29,"referenced_works":["https://openalex.org/W34350934","https://openalex.org/W776418363","https://openalex.org/W1579838312","https://openalex.org/W1973831058","https://openalex.org/W1977001074","https://openalex.org/W2004876093","https://openalex.org/W2033811191","https://openalex.org/W2073445898","https://openalex.org/W2074367177","https://openalex.org/W2090465075","https://openalex.org/W2093316511","https://openalex.org/W2099468260","https://openalex.org/W2107816859","https://openalex.org/W2132073183","https://openalex.org/W2150097065","https://openalex.org/W2158705880","https://openalex.org/W2294068577","https://openalex.org/W2405120356","https://openalex.org/W2474388146","https://openalex.org/W2611887307","https://openalex.org/W2786308658","https://openalex.org/W2798069878","https://openalex.org/W2890915954","https://openalex.org/W2923593504","https://openalex.org/W2947213621","https://openalex.org/W2963204406","https://openalex.org/W3100675173","https://openalex.org/W3101731393","https://openalex.org/W4353004773"],"related_works":["https://openalex.org/W2320589413","https://openalex.org/W4309773753","https://openalex.org/W2065920179","https://openalex.org/W2886761711","https://openalex.org/W2889672494","https://openalex.org/W2277743221","https://openalex.org/W2278696264","https://openalex.org/W3129147562","https://openalex.org/W2370466952","https://openalex.org/W1990636673"],"abstract_inverted_index":{"Modern":[0],"mobile":[1,89],"operating":[2],"systems":[3],"such":[4,52,100,109],"as":[5,53,110],"Android":[6,225,232],"and":[7,76,205],"Apple":[8],"iOS":[9],"allow":[10],"apps":[11,26,122,174],"to":[12,47,65,96,123,144,160,163,170,183,218],"access":[13,46,64,182,196,212],"various":[14],"system":[15],"resources,":[16,72],"with":[17],"or":[18,67,86,130],"without":[19,230],"explicit":[20,131],"user":[21,55],"permission.":[22],"Running":[23],"multiple":[24],"concurrent":[25],"is":[27],"also":[28],"commonly":[29],"supported,":[30],"although":[31],"the":[32,54,84,158,184,200,207,210,227],"OS":[33,159],"generally":[34],"maintains":[35],"strict":[36],"separation":[37],"between":[38],"apps.":[39,137],"However,":[40],"an":[41,94,142],"app":[42,82,95,143,155,219],"can":[43,156],"still":[44],"get":[45],"another":[48],"app's":[49],"private":[50],"information,":[51],"input,":[56],"through":[57],"numerous":[58],"side-channels,":[59],"mostly":[60],"enabled":[61],"by":[62],"having":[63],"permissioned":[66],"permission-less":[68],"(sometimes":[69],"even":[70],"unrelated)":[71],"e.g.,":[73,180],"inferring":[74],"keystroke":[75],"swipe":[77],"gestures":[78],"from":[79,99,103,126,133,216],"a":[80,118,150,153,176,190,194],"victim":[81],"via":[83],"accelerometer":[85,185],"gyroscope.":[87],"Current":[88],"OSes":[90],"do":[91],"not":[92],"empower":[93],"defend":[97,124],"itself":[98],"implicit":[101,129],"interference":[102,132],"other":[104,134,172],"apps;":[105],"few":[106],"exceptions":[107],"exist":[108],"blocking":[111],"screenshot":[112],"captures":[113],"in":[114],"Android.":[115],"We":[116,221],"propose":[117],"general":[119],"mechanism":[120],"for":[121,149,175],"themselves":[125],"any":[127],"unwanted":[128],"concurrently":[135],"running":[136,173],"Our":[138],"AppVeto":[139,223,238],"solution":[140],"enables":[141],"easily":[145],"configure":[146],"its":[147],"requirements":[148],"safe":[151],"environment;":[152],"foreground":[154],"request":[157],"disallow":[161],"access---i.e.,":[162],"enable":[164,193],"veto":[165],"powers---to":[166],"selected":[167],"side-channel-prone":[168],"resources":[169],"all":[171],"certain":[177],"(short)":[178],"duration,":[179],"no":[181],"during":[186],"password":[187],"input.":[188],"In":[189],"sense,":[191],"we":[192,235],"finer-grained":[195],"control":[197],"policy":[198],"than":[199],"current":[201],"runtime":[202],"permission":[203],"model,":[204],"delegate":[206],"responsibility":[208],"of":[209],"resource":[211],"decision":[213],"(for":[214],"vetoing)":[215],"users":[217],"developers.":[220],"implement":[222],"on":[224],"using":[226],"Xposed":[228],"framework,":[229],"changing":[231],"APIs.":[233],"Furthermore,":[234],"show":[236],"that":[237],"imposes":[239],"negligible":[240],"overhead,":[241],"while":[242],"being":[243],"effective":[244],"against":[245],"several":[246],"well-known":[247],"side-channel":[248],"attacks.":[249]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2019-12-05T00:00:00"}