{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2015:NYU7WSH7DOJAUHMEMQZ4JNRI2D","short_pith_number":"pith:NYU7WSH7","canonical_record":{"source":{"id":"1504.03711","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-14T20:33:46Z","cross_cats_sorted":[],"title_canon_sha256":"aa5d7d528df05036bed5f55705acd8642393506177f3c403bb9cad0790f2f717","abstract_canon_sha256":"14686d574abd28bee269e4da15ac15e739ab0a466ec951fb17808a55fb60f711"},"schema_version":"1.0"},"canonical_sha256":"6e29fb48ff1b920a1d846433c4b628d0e87ed79c1bd326779942c62c6070fd6b","source":{"kind":"arxiv","id":"1504.03711","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1504.03711","created_at":"2026-05-18T01:36:10Z"},{"alias_kind":"arxiv_version","alias_value":"1504.03711v2","created_at":"2026-05-18T01:36:10Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1504.03711","created_at":"2026-05-18T01:36:10Z"},{"alias_kind":"pith_short_12","alias_value":"NYU7WSH7DOJA","created_at":"2026-05-18T12:29:34Z"},{"alias_kind":"pith_short_16","alias_value":"NYU7WSH7DOJAUHME","created_at":"2026-05-18T12:29:34Z"},{"alias_kind":"pith_short_8","alias_value":"NYU7WSH7","created_at":"2026-05-18T12:29:34Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2015:NYU7WSH7DOJAUHMEMQZ4JNRI2D","target":"record","payload":{"canonical_record":{"source":{"id":"1504.03711","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-14T20:33:46Z","cross_cats_sorted":[],"title_canon_sha256":"aa5d7d528df05036bed5f55705acd8642393506177f3c403bb9cad0790f2f717","abstract_canon_sha256":"14686d574abd28bee269e4da15ac15e739ab0a466ec951fb17808a55fb60f711"},"schema_version":"1.0"},"canonical_sha256":"6e29fb48ff1b920a1d846433c4b628d0e87ed79c1bd326779942c62c6070fd6b","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T01:36:10.762281Z","signature_b64":"ulwhkWlUoEdU+QBQccGk8sfAG3Ue/F/FqsRQIeVzE1oozeKO12brrS7h4/Puwo0SSAhUOSsnEygV9q3NoTdYCw==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"6e29fb48ff1b920a1d846433c4b628d0e87ed79c1bd326779942c62c6070fd6b","last_reissued_at":"2026-05-18T01:36:10.761736Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T01:36:10.761736Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1504.03711","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T01:36:10Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"2l9m3AcEKi20JuBw3/A6v8/b07qdmJ38cs/5q3HHjg0RshwBddn47cB/21MkWbJxsjaV5wQRC6OFJz0ALd/lDw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-01T22:22:50.401223Z"},"content_sha256":"2ebeaeb76be8a321db9bf675f424152f9ddf0f80521934de13be66f894cef254","schema_version":"1.0","event_id":"sha256:2ebeaeb76be8a321db9bf675f424152f9ddf0f80521934de13be66f894cef254"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2015:NYU7WSH7DOJAUHMEMQZ4JNRI2D","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Checking Interaction-Based Declassification Policies for Android Using Symbolic Execution","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Jeffrey S. Foster, Jinseong Jeon, Jonathan Fetter-Degges, Kristopher Micinski, Michael R. Clarkson","submitted_at":"2015-04-14T20:33:46Z","abstract_excerpt":"Mobile apps can access a wide variety of secure information, such as contacts and location. However, current mobile platforms include only coarse access control mechanisms to protect such data. In this paper, we introduce interaction-based declassification policies, in which the user's interactions with the app constrain the release of sensitive information. Our policies are defined extensionally, so as to be independent of the app's implementation, based on sequences of security-relevant events that occur in app runs. Policies use LTL formulae to precisely specify which secret inputs, read at"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1504.03711","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T01:36:10Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"lOioDQZhqH9mOPgL1srIQF4LB3qM7VPhb/rrWsfReYv+sNC1HYcu4KQO0GwYyjRRuJICikCzmIYAcc651IxzCw==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-01T22:22:50.401582Z"},"content_sha256":"36b82f50a9d7ece41d1b3fb2b103a6beb0fa8f912640ae32994e9c055240b135","schema_version":"1.0","event_id":"sha256:36b82f50a9d7ece41d1b3fb2b103a6beb0fa8f912640ae32994e9c055240b135"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D/bundle.json","state_url":"https://pith.science/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-01T22:22:50Z","links":{"resolver":"https://pith.science/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D","bundle":"https://pith.science/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D/bundle.json","state":"https://pith.science/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D/state.json","well_known_bundle":"https://pith.science/.well-known/pith/NYU7WSH7DOJAUHMEMQZ4JNRI2D/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2015:NYU7WSH7DOJAUHMEMQZ4JNRI2D","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"14686d574abd28bee269e4da15ac15e739ab0a466ec951fb17808a55fb60f711","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-14T20:33:46Z","title_canon_sha256":"aa5d7d528df05036bed5f55705acd8642393506177f3c403bb9cad0790f2f717"},"schema_version":"1.0","source":{"id":"1504.03711","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1504.03711","created_at":"2026-05-18T01:36:10Z"},{"alias_kind":"arxiv_version","alias_value":"1504.03711v2","created_at":"2026-05-18T01:36:10Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1504.03711","created_at":"2026-05-18T01:36:10Z"},{"alias_kind":"pith_short_12","alias_value":"NYU7WSH7DOJA","created_at":"2026-05-18T12:29:34Z"},{"alias_kind":"pith_short_16","alias_value":"NYU7WSH7DOJAUHME","created_at":"2026-05-18T12:29:34Z"},{"alias_kind":"pith_short_8","alias_value":"NYU7WSH7","created_at":"2026-05-18T12:29:34Z"}],"graph_snapshots":[{"event_id":"sha256:36b82f50a9d7ece41d1b3fb2b103a6beb0fa8f912640ae32994e9c055240b135","target":"graph","created_at":"2026-05-18T01:36:10Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"Mobile apps can access a wide variety of secure information, such as contacts and location. However, current mobile platforms include only coarse access control mechanisms to protect such data. In this paper, we introduce interaction-based declassification policies, in which the user's interactions with the app constrain the release of sensitive information. Our policies are defined extensionally, so as to be independent of the app's implementation, based on sequences of security-relevant events that occur in app runs. Policies use LTL formulae to precisely specify which secret inputs, read at","authors_text":"Jeffrey S. Foster, Jinseong Jeon, Jonathan Fetter-Degges, Kristopher Micinski, Michael R. Clarkson","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-14T20:33:46Z","title":"Checking Interaction-Based Declassification Policies for Android Using Symbolic Execution"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1504.03711","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:2ebeaeb76be8a321db9bf675f424152f9ddf0f80521934de13be66f894cef254","target":"record","created_at":"2026-05-18T01:36:10Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"14686d574abd28bee269e4da15ac15e739ab0a466ec951fb17808a55fb60f711","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2015-04-14T20:33:46Z","title_canon_sha256":"aa5d7d528df05036bed5f55705acd8642393506177f3c403bb9cad0790f2f717"},"schema_version":"1.0","source":{"id":"1504.03711","kind":"arxiv","version":2}},"canonical_sha256":"6e29fb48ff1b920a1d846433c4b628d0e87ed79c1bd326779942c62c6070fd6b","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"6e29fb48ff1b920a1d846433c4b628d0e87ed79c1bd326779942c62c6070fd6b","first_computed_at":"2026-05-18T01:36:10.761736Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T01:36:10.761736Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"ulwhkWlUoEdU+QBQccGk8sfAG3Ue/F/FqsRQIeVzE1oozeKO12brrS7h4/Puwo0SSAhUOSsnEygV9q3NoTdYCw==","signature_status":"signed_v1","signed_at":"2026-05-18T01:36:10.762281Z","signed_message":"canonical_sha256_bytes"},"source_id":"1504.03711","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:2ebeaeb76be8a321db9bf675f424152f9ddf0f80521934de13be66f894cef254","sha256:36b82f50a9d7ece41d1b3fb2b103a6beb0fa8f912640ae32994e9c055240b135"],"state_sha256":"b16666746da0f28a93dc9ae8de9787cfe8fa45e1a160681c02325f362f5164ae"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"SdQtIz6tSOUekuXWlhvgpZk9Hr8YMNMnN9/yThbgTQrWaoAbKh0+Jx6epxrJHTyS1WXKA4ZCRf6TthM1RMwBAw==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-01T22:22:50.403565Z","bundle_sha256":"cae212306f8afe4ae28b180548234d28803dc3487295cc2b17f7ed46b51fe2ec"}}