{"id":"https://openalex.org/W2805533793","doi":"https://doi.org/10.1145/3196494.3196549","title":"Dazed Droids","display_name":"Dazed Droids","publication_year":2018,"publication_date":"2018-05-29","ids":{"openalex":"https://openalex.org/W2805533793","doi":"https://doi.org/10.1145/3196494.3196549","mag":"2805533793"},"language":"en","primary_location":{"id":"doi:10.1145/3196494.3196549","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3196494.3196549","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2018 on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071638205","display_name":"Ryan Johnson","orcid":"https://orcid.org/0000-0002-5800-7796"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Ryan Johnson","raw_affiliation_strings":["Kryptowire &amp;George Mason University, Fairfax, VA, USA"],"affiliations":[{"raw_affiliation_string":"Kryptowire &amp;George Mason University, Fairfax, VA, USA","institution_ids":["https://openalex.org/I162714631"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029805433","display_name":"Mohamed Elsabagh","orcid":"https://orcid.org/0000-0002-5320-4985"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Mohamed Elsabagh","raw_affiliation_strings":["Kryptowire, Fairfax, VA, USA"],"affiliations":[{"raw_affiliation_string":"Kryptowire, Fairfax, VA, USA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5041500780","display_name":"Angelos Stavrou","orcid":"https://orcid.org/0000-0001-9888-0592"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Angelos Stavrou","raw_affiliation_strings":["Kryptowire &amp;George Mason University, Fairfax, VA, USA"],"affiliations":[{"raw_affiliation_string":"Kryptowire &amp;George Mason University, Fairfax, VA, USA","institution_ids":["https://openalex.org/I162714631"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5079608186","display_name":"Jeff Offutt","orcid":"https://orcid.org/0000-0002-8657-2557"},"institutions":[{"id":"https://openalex.org/I162714631","display_name":"George Mason University","ror":"https://ror.org/02jqj7156","country_code":"US","type":"education","lineage":["https://openalex.org/I162714631"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Jeff Offutt","raw_affiliation_strings":["George Mason University, Fairfax, VA, USA"],"affiliations":[{"raw_affiliation_string":"George Mason University, Fairfax, VA, USA","institution_ids":["https://openalex.org/I162714631"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5071638205"],"corresponding_institution_ids":["https://openalex.org/I162714631"],"apc_list":null,"apc_paid":null,"fwci":0.4954,"has_fulltext":false,"cited_by_count":7,"citation_normalized_percentile":{"value":0.62401379,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"777","last_page":"791"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9952999949455261,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.978600025177002,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.9127435684204102},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7318943738937378},{"id":"https://openalex.org/keywords/reuse","display_name":"Reuse","score":0.541970431804657},{"id":"https://openalex.org/keywords/phone","display_name":"Phone","score":0.5172958374023438},{"id":"https://openalex.org/keywords/android-app","display_name":"Android app","score":0.5081303119659424},{"id":"https://openalex.org/keywords/mobile-device","display_name":"Mobile device","score":0.4990696907043457},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.4623836874961853},{"id":"https://openalex.org/keywords/android-beam","display_name":"Android Beam","score":0.4334324598312378},{"id":"https://openalex.org/keywords/multimedia","display_name":"Multimedia","score":0.33929339051246643},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2886219620704651},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.12618649005889893}],"concepts":[{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.9127435684204102},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7318943738937378},{"id":"https://openalex.org/C206588197","wikidata":"https://www.wikidata.org/wiki/Q846574","display_name":"Reuse","level":2,"score":0.541970431804657},{"id":"https://openalex.org/C2778707766","wikidata":"https://www.wikidata.org/wiki/Q202064","display_name":"Phone","level":2,"score":0.5172958374023438},{"id":"https://openalex.org/C2988045736","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android app","level":3,"score":0.5081303119659424},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.4990696907043457},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.4623836874961853},{"id":"https://openalex.org/C65902250","wikidata":"https://www.wikidata.org/wiki/Q4759452","display_name":"Android Beam","level":3,"score":0.4334324598312378},{"id":"https://openalex.org/C49774154","wikidata":"https://www.wikidata.org/wiki/Q131765","display_name":"Multimedia","level":1,"score":0.33929339051246643},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2886219620704651},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.12618649005889893},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C548081761","wikidata":"https://www.wikidata.org/wiki/Q180388","display_name":"Waste management","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3196494.3196549","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3196494.3196549","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2018 on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":26,"referenced_works":["https://openalex.org/W1893159092","https://openalex.org/W1912565424","https://openalex.org/W1988737164","https://openalex.org/W1994588724","https://openalex.org/W1994931937","https://openalex.org/W2008345765","https://openalex.org/W2010395842","https://openalex.org/W2012813306","https://openalex.org/W2015933956","https://openalex.org/W2056073317","https://openalex.org/W2067364868","https://openalex.org/W2088983597","https://openalex.org/W2140462040","https://openalex.org/W2154015533","https://openalex.org/W2222498311","https://openalex.org/W2291268284","https://openalex.org/W2292487094","https://openalex.org/W2350778671","https://openalex.org/W2398484989","https://openalex.org/W2399034518","https://openalex.org/W2467281709","https://openalex.org/W2504627788","https://openalex.org/W2504947579","https://openalex.org/W2571630450","https://openalex.org/W2593474785","https://openalex.org/W2740643205"],"related_works":["https://openalex.org/W2354350616","https://openalex.org/W2894765413","https://openalex.org/W771153674","https://openalex.org/W2387651243","https://openalex.org/W2773184731","https://openalex.org/W2581685432","https://openalex.org/W4281396960","https://openalex.org/W4241298517","https://openalex.org/W2112252392","https://openalex.org/W2489789418"],"abstract_inverted_index":{"Android":[0,25,50,72,117,123,139,244],"devices":[1,39,245],"are":[2],"an":[3],"integral":[4],"part":[5],"of":[6,22,37,80,101,110,115,149,162,173,182,235,243,248,268,283,295],"modern":[7],"life":[8],"from":[9,131,141],"phone":[10],"to":[11,14,92,133,144,303],"media":[12],"boxes":[13],"smart":[15],"home":[16],"appliances":[17],"and":[18,47,56,65,76,125,169,175,195,202,227,232,246,293],"cameras.":[19],"With":[20],"38.9%":[21],"market":[23],"share,":[24],"is":[26,153],"now":[27],"the":[28,88,99,127,147,154,160,233,249,300],"most":[29],"used":[30],"operating":[31],"system":[32],"not":[33],"just":[34],"in":[35,308],"terms":[36],"mobile":[38],"but":[40],"considering":[41],"all":[42,204],"OSes.":[43],"As":[44],"applications'":[45],"complexity":[46],"features":[48],"increased,":[49],"relied":[51],"more":[52,273,280],"heavily":[53],"on":[54,221,253],"code":[55],"data":[57,77],"sharing":[58],"among":[59],"apps":[60,73,130,252],"for":[61,198,213,272,288],"faster":[62],"response":[63],"times":[64],"richer":[66],"user":[67],"experience.":[68],"To":[69,146,185],"achieve":[70],"that,":[71],"reuse":[74],"functionality":[75],"by":[78],"means":[79],"inter-app":[81,103,187,261],"message":[82],"passing":[83],"where":[84],"each":[85],"app":[86,177,200,205,220,306],"defines":[87],"messages":[89],"it":[90],"expects":[91],"receive.":[93],"In":[94],"this":[95],"paper,":[96],"we":[97,189],"analyze":[98],"proliferation":[100],"exploitable":[102],"communication":[104],"vulnerabilities":[105,163,226,270,285,297],"using":[106],"a":[107,112,170,180,193],"rich":[108],"corpus":[109,136],"1)":[111],"representative":[113],"sample":[114],"32":[116],"devices,":[118,174],"2)":[119],"59":[120],"official":[121],"Google":[122,254],"versions,":[124],"3)":[126],"top":[128,250],"18,583":[129],"2016":[132],"2017.":[134],"This":[135],"covers":[137],"$91$":[138],"builds":[140],"version":[142],"4.4":[143],"present.":[145],"best":[148],"our":[150,309],"knowledge,":[151],"ours":[152],"first":[155],"longitudinal":[156],"study":[157],"looking":[158],"into":[159],"propagation":[161],"across":[164,176],"AOSP":[165,168],"builds,":[166],"between":[167],"diverse":[171],"set":[172],"versions":[178,236,307],"over":[179],"period":[181],"13":[183],"months.":[184],"identify":[186],"vulnerabilities,":[188],"developed":[190],"Daze":[191,207],"as":[192],"swift":[194],"fully-automated":[196],"framework":[197],"extracting":[199],"components":[201],"fuzzing":[203],"interfaces.":[206],"needs":[208],"only":[209],"about":[210,266],"three":[211],"hours":[212],"full-device":[214],"analysis":[215],"or":[216],"two":[217,302],"minutes":[218],"per":[219],"average.":[222],"We":[223,263],"identified":[224],"14,413":[225],"quantified":[228],"their":[229],"exposure":[230],"time":[231],"number":[234],"affected.":[237],"Our":[238],"findings":[239],"revealed":[240],"that":[241,265],"$51.7%$":[242],"$49%$":[247],"$300$":[251],"Play":[255],"contained":[256],"at":[257,289],"least":[258,290],"one":[259],"critical":[260],"vulnerability.":[262],"found":[264],"$15%$":[267],"fixed":[269],"lived":[271],"than":[274,281],"$100$":[275],"days":[276],"before":[277],"being":[278],"patched,":[279],"$20%$":[282],"unpatched":[284,296],"have":[286],"existed":[287],"$180$":[291],"days,":[292],"$45%$":[294],"persisted":[298],"through":[299],"latest":[301],"four":[304],"consecutive":[305],"dataset.":[310]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2018-06-13T00:00:00"}