{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2015:2UHXH5BKR2V76S2VKF5QTCVJ26","short_pith_number":"pith:2UHXH5BK","canonical_record":{"source":{"id":"1504.03747","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-15T00:07:17Z","cross_cats_sorted":[],"title_canon_sha256":"571a509670ff590fa36260537371844d9e3b5db803201e0ead59a7397359a67c","abstract_canon_sha256":"43ede6fcb44fec7ed01d6f639dcf7b0ea98661c285ce675e264e5e898db00a5d"},"schema_version":"1.0"},"canonical_sha256":"d50f73f42a8eabff4b55517b098aa9d7bc05817af44e4b8c23b13a18ceeab118","source":{"kind":"arxiv","id":"1504.03747","version":1},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1504.03747","created_at":"2026-05-18T02:18:42Z"},{"alias_kind":"arxiv_version","alias_value":"1504.03747v1","created_at":"2026-05-18T02:18:42Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1504.03747","created_at":"2026-05-18T02:18:42Z"},{"alias_kind":"pith_short_12","alias_value":"2UHXH5BKR2V7","created_at":"2026-05-18T12:29:02Z"},{"alias_kind":"pith_short_16","alias_value":"2UHXH5BKR2V76S2V","created_at":"2026-05-18T12:29:02Z"},{"alias_kind":"pith_short_8","alias_value":"2UHXH5BK","created_at":"2026-05-18T12:29:02Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2015:2UHXH5BKR2V76S2VKF5QTCVJ26","target":"record","payload":{"canonical_record":{"source":{"id":"1504.03747","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-15T00:07:17Z","cross_cats_sorted":[],"title_canon_sha256":"571a509670ff590fa36260537371844d9e3b5db803201e0ead59a7397359a67c","abstract_canon_sha256":"43ede6fcb44fec7ed01d6f639dcf7b0ea98661c285ce675e264e5e898db00a5d"},"schema_version":"1.0"},"canonical_sha256":"d50f73f42a8eabff4b55517b098aa9d7bc05817af44e4b8c23b13a18ceeab118","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T02:18:42.248354Z","signature_b64":"nySFMpnVc+Z9ntdKaoiTOBfQubi1sAbNtafycp/+y+BuOC5GzM6HK0muQA3f8p2Gt9W7FjaSZ8VN+Pvt+U6EAw==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"d50f73f42a8eabff4b55517b098aa9d7bc05817af44e4b8c23b13a18ceeab118","last_reissued_at":"2026-05-18T02:18:42.247632Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T02:18:42.247632Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1504.03747","source_version":1,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T02:18:42Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"x0UnMblZv53QlsWOHh128NBCrDOGFEjN1EYq0IcXemYBXZ6tm50ssmlM2ouvCFVaHn/37zLScu2Wm311pbhOAQ==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-01T12:29:39.524250Z"},"content_sha256":"e1a18d49f1f519c0eb95bd620d5b35f5f294e41ce059378644b9a06cb9b089a8","schema_version":"1.0","event_id":"sha256:e1a18d49f1f519c0eb95bd620d5b35f5f294e41ce059378644b9a06cb9b089a8"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2015:2UHXH5BKR2V76S2VKF5QTCVJ26","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Android Permissions Remystified: A Field Study on Contextual Integrity","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Arjun Baokar, Ashkan Hosseini, David Wagner, Konstantin Beznosov, Primal Wijesekera, Serge Egelman","submitted_at":"2015-04-15T00:07:17Z","abstract_excerpt":"Due to the amount of data that smartphone applications can potentially access, platforms enforce permission systems that allow users to regulate how applications access protected resources. If users are asked to make security decisions too frequently and in benign situations, they may become habituated and approve all future requests without regard for the consequences. If they are asked to make too few security decisions, they may become concerned that the platform is revealing too much sensitive information. To explore this tradeoff, we instrumented the Android platform to collect data regar"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1504.03747","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T02:18:42Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"Jn5wN5GtheJeYNOzF6Q2EIw3tFm57hr9coe9DW7joGMMDqSzIk78FS9Rp1O0xgbodHqySfGkr32GKyALs71/AQ==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-01T12:29:39.524640Z"},"content_sha256":"f719cf2d65d7bdf78fd406f311f0a68e6302893880efd0c552df5727a016e5c8","schema_version":"1.0","event_id":"sha256:f719cf2d65d7bdf78fd406f311f0a68e6302893880efd0c552df5727a016e5c8"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/2UHXH5BKR2V76S2VKF5QTCVJ26/bundle.json","state_url":"https://pith.science/pith/2UHXH5BKR2V76S2VKF5QTCVJ26/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/2UHXH5BKR2V76S2VKF5QTCVJ26/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-01T12:29:39Z","links":{"resolver":"https://pith.science/pith/2UHXH5BKR2V76S2VKF5QTCVJ26","bundle":"https://pith.science/pith/2UHXH5BKR2V76S2VKF5QTCVJ26/bundle.json","state":"https://pith.science/pith/2UHXH5BKR2V76S2VKF5QTCVJ26/state.json","well_known_bundle":"https://pith.science/.well-known/pith/2UHXH5BKR2V76S2VKF5QTCVJ26/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2015:2UHXH5BKR2V76S2VKF5QTCVJ26","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"43ede6fcb44fec7ed01d6f639dcf7b0ea98661c285ce675e264e5e898db00a5d","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-15T00:07:17Z","title_canon_sha256":"571a509670ff590fa36260537371844d9e3b5db803201e0ead59a7397359a67c"},"schema_version":"1.0","source":{"id":"1504.03747","kind":"arxiv","version":1}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1504.03747","created_at":"2026-05-18T02:18:42Z"},{"alias_kind":"arxiv_version","alias_value":"1504.03747v1","created_at":"2026-05-18T02:18:42Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1504.03747","created_at":"2026-05-18T02:18:42Z"},{"alias_kind":"pith_short_12","alias_value":"2UHXH5BKR2V7","created_at":"2026-05-18T12:29:02Z"},{"alias_kind":"pith_short_16","alias_value":"2UHXH5BKR2V76S2V","created_at":"2026-05-18T12:29:02Z"},{"alias_kind":"pith_short_8","alias_value":"2UHXH5BK","created_at":"2026-05-18T12:29:02Z"}],"graph_snapshots":[{"event_id":"sha256:f719cf2d65d7bdf78fd406f311f0a68e6302893880efd0c552df5727a016e5c8","target":"graph","created_at":"2026-05-18T02:18:42Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Due to the amount of data that smartphone applications can potentially access, platforms enforce permission systems that allow users to regulate how applications access protected resources. If users are asked to make security decisions too frequently and in benign situations, they may become habituated and approve all future requests without regard for the consequences. If they are asked to make too few security decisions, they may become concerned that the platform is revealing too much sensitive information. To explore this tradeoff, we instrumented the Android platform to collect data regar","authors_text":"Arjun Baokar, Ashkan Hosseini, David Wagner, Konstantin Beznosov, Primal Wijesekera, Serge Egelman","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-15T00:07:17Z","title":"Android Permissions Remystified: A Field Study on Contextual Integrity"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1504.03747","kind":"arxiv","version":1},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:e1a18d49f1f519c0eb95bd620d5b35f5f294e41ce059378644b9a06cb9b089a8","target":"record","created_at":"2026-05-18T02:18:42Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"43ede6fcb44fec7ed01d6f639dcf7b0ea98661c285ce675e264e5e898db00a5d","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-15T00:07:17Z","title_canon_sha256":"571a509670ff590fa36260537371844d9e3b5db803201e0ead59a7397359a67c"},"schema_version":"1.0","source":{"id":"1504.03747","kind":"arxiv","version":1}},"canonical_sha256":"d50f73f42a8eabff4b55517b098aa9d7bc05817af44e4b8c23b13a18ceeab118","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"d50f73f42a8eabff4b55517b098aa9d7bc05817af44e4b8c23b13a18ceeab118","first_computed_at":"2026-05-18T02:18:42.247632Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T02:18:42.247632Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"nySFMpnVc+Z9ntdKaoiTOBfQubi1sAbNtafycp/+y+BuOC5GzM6HK0muQA3f8p2Gt9W7FjaSZ8VN+Pvt+U6EAw==","signature_status":"signed_v1","signed_at":"2026-05-18T02:18:42.248354Z","signed_message":"canonical_sha256_bytes"},"source_id":"1504.03747","source_kind":"arxiv","source_version":1}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:e1a18d49f1f519c0eb95bd620d5b35f5f294e41ce059378644b9a06cb9b089a8","sha256:f719cf2d65d7bdf78fd406f311f0a68e6302893880efd0c552df5727a016e5c8"],"state_sha256":"87340a3a678a79267390dcc686b34fc30e2d24cf34aba101c3c914bc0b3e070e"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"Yq1Y2gRqPZKtWj91IdmsacJFl+sh3/krmJV4cxXsTAvINxdFw6dFkMX79eECsI8GHqMUcEgcelr9QMcrJRHfBA==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-01T12:29:39.526530Z","bundle_sha256":"7fa7688bb3bf1ad83d2d115e018a9fe9fbdcb4577c259ce70a86b09b1c65cdbc"}}