{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2012:4HZKMGV3YNMBOLFDCCCKQGD6GR","short_pith_number":"pith:4HZKMGV3","canonical_record":{"source":{"id":"1206.5829","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-05-22T13:58:03Z","cross_cats_sorted":["cs.SE"],"title_canon_sha256":"1be903945cbe406cc91ffaa0d4add3db01cbe1143817a879091f6c464654475c","abstract_canon_sha256":"999b388f181b4b23607af84d5aee3f3017e4f4d392873b87953574fb051acff2"},"schema_version":"1.0"},"canonical_sha256":"e1f2a61abbc358172ca31084a8187e3465b0ec70234452e325bdbf8b0503c61a","source":{"kind":"arxiv","id":"1206.5829","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1206.5829","created_at":"2026-05-18T03:30:25Z"},{"alias_kind":"arxiv_version","alias_value":"1206.5829v2","created_at":"2026-05-18T03:30:25Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1206.5829","created_at":"2026-05-18T03:30:25Z"},{"alias_kind":"pith_short_12","alias_value":"4HZKMGV3YNMB","created_at":"2026-05-18T12:26:53Z"},{"alias_kind":"pith_short_16","alias_value":"4HZKMGV3YNMBOLFD","created_at":"2026-05-18T12:26:53Z"},{"alias_kind":"pith_short_8","alias_value":"4HZKMGV3","created_at":"2026-05-18T12:26:53Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2012:4HZKMGV3YNMBOLFDCCCKQGD6GR","target":"record","payload":{"canonical_record":{"source":{"id":"1206.5829","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-05-22T13:58:03Z","cross_cats_sorted":["cs.SE"],"title_canon_sha256":"1be903945cbe406cc91ffaa0d4add3db01cbe1143817a879091f6c464654475c","abstract_canon_sha256":"999b388f181b4b23607af84d5aee3f3017e4f4d392873b87953574fb051acff2"},"schema_version":"1.0"},"canonical_sha256":"e1f2a61abbc358172ca31084a8187e3465b0ec70234452e325bdbf8b0503c61a","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T03:30:25.831378Z","signature_b64":"3DaxsXiVxySpyms3m7Uwpu4U55gtDCohkJwskcV41grt9Yc1S8ODifDh7WtFp187NpyzVx8DiZpFAucfNxJYDQ==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"e1f2a61abbc358172ca31084a8187e3465b0ec70234452e325bdbf8b0503c61a","last_reissued_at":"2026-05-18T03:30:25.830661Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T03:30:25.830661Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1206.5829","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T03:30:25Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"UpdDQOFo/ETLzTBZ0fAcq+AkSYwa9LW6/u3Es8p4xcYQKCtLnD0VmyV4YlgJrdHGrGzLw2/LDGvj+V/ExT5vBw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-31T15:20:39.811471Z"},"content_sha256":"4fa29329f4973627263299fd78e0761f87679dd03246b26296741bfcf4d2a694","schema_version":"1.0","event_id":"sha256:4fa29329f4973627263299fd78e0761f87679dd03246b26296741bfcf4d2a694"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2012:4HZKMGV3YNMBOLFDCCCKQGD6GR","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Automatically Securing Permission-Based Software by Reducing the Attack Surface: An Application to Android","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.SE"],"primary_cat":"cs.CR","authors_text":"Alexandre Bartel (SnT), Jacques Klein (SnT), Martin Monperrus (INRIA Lille - Nord Europe), Yves Le Traon (SnT)","submitted_at":"2012-05-22T13:58:03Z","abstract_excerpt":"A common security architecture, called the permission-based security model (used e.g. in Android and Blackberry), entails intrinsic risks. For instance, applications can be granted more permissions than they actually need, what we call a \"permission gap\". Malware can leverage the unused permissions for achieving their malicious goals, for instance using code injection. In this paper, we present an approach to detecting permission gaps using static analysis. Our prototype implementation in the context of Android shows that the static analysis must take into account a significant amount of platf"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1206.5829","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T03:30:25Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"34tA4xaA4SQKqiiaOShdFMa+qa9QMYHH6n6M0jx6pG1COxJw5y+HHoFZ4oLYjex8DCnJwHn/juhWW/2Qqt7+CA==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-05-31T15:20:39.812281Z"},"content_sha256":"25611a2292780236d32c04460967d08741bdf006e99ef94484bf29f33a1088f5","schema_version":"1.0","event_id":"sha256:25611a2292780236d32c04460967d08741bdf006e99ef94484bf29f33a1088f5"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR/bundle.json","state_url":"https://pith.science/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-05-31T15:20:39Z","links":{"resolver":"https://pith.science/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR","bundle":"https://pith.science/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR/bundle.json","state":"https://pith.science/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR/state.json","well_known_bundle":"https://pith.science/.well-known/pith/4HZKMGV3YNMBOLFDCCCKQGD6GR/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2012:4HZKMGV3YNMBOLFDCCCKQGD6GR","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"999b388f181b4b23607af84d5aee3f3017e4f4d392873b87953574fb051acff2","cross_cats_sorted":["cs.SE"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-05-22T13:58:03Z","title_canon_sha256":"1be903945cbe406cc91ffaa0d4add3db01cbe1143817a879091f6c464654475c"},"schema_version":"1.0","source":{"id":"1206.5829","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1206.5829","created_at":"2026-05-18T03:30:25Z"},{"alias_kind":"arxiv_version","alias_value":"1206.5829v2","created_at":"2026-05-18T03:30:25Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1206.5829","created_at":"2026-05-18T03:30:25Z"},{"alias_kind":"pith_short_12","alias_value":"4HZKMGV3YNMB","created_at":"2026-05-18T12:26:53Z"},{"alias_kind":"pith_short_16","alias_value":"4HZKMGV3YNMBOLFD","created_at":"2026-05-18T12:26:53Z"},{"alias_kind":"pith_short_8","alias_value":"4HZKMGV3","created_at":"2026-05-18T12:26:53Z"}],"graph_snapshots":[{"event_id":"sha256:25611a2292780236d32c04460967d08741bdf006e99ef94484bf29f33a1088f5","target":"graph","created_at":"2026-05-18T03:30:25Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"A common security architecture, called the permission-based security model (used e.g. in Android and Blackberry), entails intrinsic risks. For instance, applications can be granted more permissions than they actually need, what we call a \"permission gap\". Malware can leverage the unused permissions for achieving their malicious goals, for instance using code injection. In this paper, we present an approach to detecting permission gaps using static analysis. Our prototype implementation in the context of Android shows that the static analysis must take into account a significant amount of platf","authors_text":"Alexandre Bartel (SnT), Jacques Klein (SnT), Martin Monperrus (INRIA Lille - Nord Europe), Yves Le Traon (SnT)","cross_cats":["cs.SE"],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-05-22T13:58:03Z","title":"Automatically Securing Permission-Based Software by Reducing the Attack Surface: An Application to Android"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1206.5829","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:4fa29329f4973627263299fd78e0761f87679dd03246b26296741bfcf4d2a694","target":"record","created_at":"2026-05-18T03:30:25Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"999b388f181b4b23607af84d5aee3f3017e4f4d392873b87953574fb051acff2","cross_cats_sorted":["cs.SE"],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2012-05-22T13:58:03Z","title_canon_sha256":"1be903945cbe406cc91ffaa0d4add3db01cbe1143817a879091f6c464654475c"},"schema_version":"1.0","source":{"id":"1206.5829","kind":"arxiv","version":2}},"canonical_sha256":"e1f2a61abbc358172ca31084a8187e3465b0ec70234452e325bdbf8b0503c61a","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"e1f2a61abbc358172ca31084a8187e3465b0ec70234452e325bdbf8b0503c61a","first_computed_at":"2026-05-18T03:30:25.830661Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T03:30:25.830661Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"3DaxsXiVxySpyms3m7Uwpu4U55gtDCohkJwskcV41grt9Yc1S8ODifDh7WtFp187NpyzVx8DiZpFAucfNxJYDQ==","signature_status":"signed_v1","signed_at":"2026-05-18T03:30:25.831378Z","signed_message":"canonical_sha256_bytes"},"source_id":"1206.5829","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:4fa29329f4973627263299fd78e0761f87679dd03246b26296741bfcf4d2a694","sha256:25611a2292780236d32c04460967d08741bdf006e99ef94484bf29f33a1088f5"],"state_sha256":"ebf02673780cb4a57ce69ea418ee6f6ce2553c97b7841e13b4544e12cc8bb97f"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"rdPJiTnbSUOv3ON+F0gVy3ymtdb8B3tUFBwYoMxpTmd3JtxLrvOBwZU6HYOQbqLLHnIRO3qmlO0oLiIvOiP+Dw==","signed_message":"bundle_sha256_bytes","signed_at":"2026-05-31T15:20:39.817348Z","bundle_sha256":"fede7b17d287779dd65b59fefdd3537e635e5275b89f874c220e7a8e82d44b24"}}