{"bundle_type":"pith_open_graph_bundle","bundle_version":"1.0","pith_number":"pith:2016:P4UOISUV4EOX2Y3CKUTAU4JOCU","short_pith_number":"pith:P4UOISUV","canonical_record":{"source":{"id":"1611.01477","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2016-11-04T18:18:38Z","cross_cats_sorted":[],"title_canon_sha256":"91294d20b7cc9bc9584cccdc8c12f141809f73dd2a62c24a3196b9a2f8acc9ca","abstract_canon_sha256":"c6ecbcce42a0d2a9a9727cb81a7b6177b2bd96c8b2b2f5e2ea960a18d7454e21"},"schema_version":"1.0"},"canonical_sha256":"7f28e44a95e11d7d636255260a712e1539e2e0cad6b53ce08db2e51827d3c6de","source":{"kind":"arxiv","id":"1611.01477","version":2},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1611.01477","created_at":"2026-05-18T00:38:46Z"},{"alias_kind":"arxiv_version","alias_value":"1611.01477v2","created_at":"2026-05-18T00:38:46Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1611.01477","created_at":"2026-05-18T00:38:46Z"},{"alias_kind":"pith_short_12","alias_value":"P4UOISUV4EOX","created_at":"2026-05-18T12:30:36Z"},{"alias_kind":"pith_short_16","alias_value":"P4UOISUV4EOX2Y3C","created_at":"2026-05-18T12:30:36Z"},{"alias_kind":"pith_short_8","alias_value":"P4UOISUV","created_at":"2026-05-18T12:30:36Z"}],"events":[{"event_type":"record_created","subject_pith_number":"pith:2016:P4UOISUV4EOX2Y3CKUTAU4JOCU","target":"record","payload":{"canonical_record":{"source":{"id":"1611.01477","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2016-11-04T18:18:38Z","cross_cats_sorted":[],"title_canon_sha256":"91294d20b7cc9bc9584cccdc8c12f141809f73dd2a62c24a3196b9a2f8acc9ca","abstract_canon_sha256":"c6ecbcce42a0d2a9a9727cb81a7b6177b2bd96c8b2b2f5e2ea960a18d7454e21"},"schema_version":"1.0"},"canonical_sha256":"7f28e44a95e11d7d636255260a712e1539e2e0cad6b53ce08db2e51827d3c6de","receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:38:46.459883Z","signature_b64":"Mt0LjU/jfpVe81FDvRvRf2e6MVoodCZYC545HiqiFJvgbzugTLZspHU13KxEtf7XLE6/QTn1+5NrQAoxzYHSDg==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"7f28e44a95e11d7d636255260a712e1539e2e0cad6b53ce08db2e51827d3c6de","last_reissued_at":"2026-05-18T00:38:46.459302Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:38:46.459302Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"source_kind":"arxiv","source_id":"1611.01477","source_version":2,"attestation_state":"computed"},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:38:46Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"NGWkZpDHI1ChG4Zdji+utuhhY4PvGxRApJ4nLjMIG8RJHf7CH6ND8NuM3u/FrrXb5ffpDmdaUVtaB6F8j5+GDg==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-01T09:35:34.921011Z"},"content_sha256":"9edb11386887296d1bd82f3fdffbc287cee2568edf742946da020519b8227685","schema_version":"1.0","event_id":"sha256:9edb11386887296d1bd82f3fdffbc287cee2568edf742946da020519b8227685"},{"event_type":"graph_snapshot","subject_pith_number":"pith:2016:P4UOISUV4EOX2Y3CKUTAU4JOCU","target":"graph","payload":{"graph_snapshot":{"paper":{"title":"Using Hover to Compromise the Confidentiality of User Input on Android","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Alessandro Mei, Enis Ulqinaku, Julinda Stefa, Luka Malisa, Srdjan Capkun","submitted_at":"2016-11-04T18:18:38Z","abstract_excerpt":"We show that the new hover (floating touch) technology, available in a number of today's smartphone models, can be abused by any Android application running with a common SYSTEM_ALERT_WINDOW permission to record all touchscreen input into other applications. Leveraging this attack, a malicious application running on the system is therefore able to profile user's behavior, capture sensitive input such as passwords and PINs as well as record all user's social interactions. To evaluate our attack we implemented Hoover, a proof-of-concept malicious application that runs in the system background an"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1611.01477","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"verdict_id":null},"signer":{"signer_id":"pith.science","signer_type":"pith_registry","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"created_at":"2026-05-18T00:38:46Z","supersedes":[],"prev_event":null,"signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"fcdd8fNb5OHz+wdj4QEg+7xpAKoz2ehxDSXWRAfo9AtaGiuLe48Tu1gqm9rlUyShLrpc6BXWJRIhF7xOgIGjDg==","signed_message":"open_graph_event_sha256_bytes","signed_at":"2026-06-01T09:35:34.921372Z"},"content_sha256":"022d5667c5592fc89972ab22616738b667f0f4a5d81ee23e5558465c7af184cb","schema_version":"1.0","event_id":"sha256:022d5667c5592fc89972ab22616738b667f0f4a5d81ee23e5558465c7af184cb"}],"timestamp_proofs":[],"mirror_hints":[{"mirror_type":"https","name":"Pith Resolver","base_url":"https://pith.science","bundle_url":"https://pith.science/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU/bundle.json","state_url":"https://pith.science/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU/state.json","well_known_bundle_url":"https://pith.science/.well-known/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU/bundle.json","status":"primary"}],"public_keys":[{"key_id":"pith-v1-2026-05","algorithm":"ed25519","format":"raw","public_key_b64":"stVStoiQhXFxp4s2pdzPNoqVNBMojDU/fJ2db5S3CbM=","public_key_hex":"b2d552b68890857171a78b36a5dccf368a953413288c353f7c9d9d6f94b709b3","fingerprint_sha256_b32_first128bits":"RVFV5Z2OI2J3ZUO7ERDEBCYNKS","fingerprint_sha256_hex":"8d4b5ee74e4693bcd1df2446408b0d54","rotates_at":null,"url":"https://pith.science/pith-signing-key.json","notes":"Pith uses this Ed25519 key to sign canonical record SHA-256 digests. Verify with: ed25519_verify(public_key, message=canonical_sha256_bytes, signature=base64decode(signature_b64))."}],"merge_version":"pith-open-graph-merge-v1","built_at":"2026-06-01T09:35:34Z","links":{"resolver":"https://pith.science/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU","bundle":"https://pith.science/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU/bundle.json","state":"https://pith.science/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU/state.json","well_known_bundle":"https://pith.science/.well-known/pith/P4UOISUV4EOX2Y3CKUTAU4JOCU/bundle.json"},"state":{"state_type":"pith_open_graph_state","state_version":"1.0","pith_number":"pith:2016:P4UOISUV4EOX2Y3CKUTAU4JOCU","merge_version":"pith-open-graph-merge-v1","event_count":2,"valid_event_count":2,"invalid_event_count":0,"equivocation_count":0,"current":{"canonical_record":{"metadata":{"abstract_canon_sha256":"c6ecbcce42a0d2a9a9727cb81a7b6177b2bd96c8b2b2f5e2ea960a18d7454e21","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2016-11-04T18:18:38Z","title_canon_sha256":"91294d20b7cc9bc9584cccdc8c12f141809f73dd2a62c24a3196b9a2f8acc9ca"},"schema_version":"1.0","source":{"id":"1611.01477","kind":"arxiv","version":2}},"source_aliases":[{"alias_kind":"arxiv","alias_value":"1611.01477","created_at":"2026-05-18T00:38:46Z"},{"alias_kind":"arxiv_version","alias_value":"1611.01477v2","created_at":"2026-05-18T00:38:46Z"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1611.01477","created_at":"2026-05-18T00:38:46Z"},{"alias_kind":"pith_short_12","alias_value":"P4UOISUV4EOX","created_at":"2026-05-18T12:30:36Z"},{"alias_kind":"pith_short_16","alias_value":"P4UOISUV4EOX2Y3C","created_at":"2026-05-18T12:30:36Z"},{"alias_kind":"pith_short_8","alias_value":"P4UOISUV","created_at":"2026-05-18T12:30:36Z"}],"graph_snapshots":[{"event_id":"sha256:022d5667c5592fc89972ab22616738b667f0f4a5d81ee23e5558465c7af184cb","target":"graph","created_at":"2026-05-18T00:38:46Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"graph_snapshot":{"author_claims":{"count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","strong_count":0},"builder_version":"pith-number-builder-2026-05-17-v1","claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"paper":{"abstract_excerpt":"We show that the new hover (floating touch) technology, available in a number of today's smartphone models, can be abused by any Android application running with a common SYSTEM_ALERT_WINDOW permission to record all touchscreen input into other applications. Leveraging this attack, a malicious application running on the system is therefore able to profile user's behavior, capture sensitive input such as passwords and PINs as well as record all user's social interactions. To evaluate our attack we implemented Hoover, a proof-of-concept malicious application that runs in the system background an","authors_text":"Alessandro Mei, Enis Ulqinaku, Julinda Stefa, Luka Malisa, Srdjan Capkun","cross_cats":[],"headline":"","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2016-11-04T18:18:38Z","title":"Using Hover to Compromise the Confidentiality of User Input on Android"},"references":{"count":0,"internal_anchors":0,"resolved_work":0,"sample":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1611.01477","kind":"arxiv","version":2},"verdict":{"created_at":null,"id":null,"model_set":{},"one_line_summary":"","pipeline_version":null,"pith_extraction_headline":"","strongest_claim":"","weakest_assumption":""}},"verdict_id":null}}],"author_attestations":[],"timestamp_anchors":[],"storage_attestations":[],"citation_signatures":[],"replication_records":[],"corrections":[],"mirror_hints":[],"record_created":{"event_id":"sha256:9edb11386887296d1bd82f3fdffbc287cee2568edf742946da020519b8227685","target":"record","created_at":"2026-05-18T00:38:46Z","signer":{"key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signer_id":"pith.science","signer_type":"pith_registry"},"payload":{"attestation_state":"computed","canonical_record":{"metadata":{"abstract_canon_sha256":"c6ecbcce42a0d2a9a9727cb81a7b6177b2bd96c8b2b2f5e2ea960a18d7454e21","cross_cats_sorted":[],"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2016-11-04T18:18:38Z","title_canon_sha256":"91294d20b7cc9bc9584cccdc8c12f141809f73dd2a62c24a3196b9a2f8acc9ca"},"schema_version":"1.0","source":{"id":"1611.01477","kind":"arxiv","version":2}},"canonical_sha256":"7f28e44a95e11d7d636255260a712e1539e2e0cad6b53ce08db2e51827d3c6de","receipt":{"algorithm":"ed25519","builder_version":"pith-number-builder-2026-05-17-v1","canonical_sha256":"7f28e44a95e11d7d636255260a712e1539e2e0cad6b53ce08db2e51827d3c6de","first_computed_at":"2026-05-18T00:38:46.459302Z","key_id":"pith-v1-2026-05","kind":"pith_receipt","last_reissued_at":"2026-05-18T00:38:46.459302Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","receipt_version":"0.3","signature_b64":"Mt0LjU/jfpVe81FDvRvRf2e6MVoodCZYC545HiqiFJvgbzugTLZspHU13KxEtf7XLE6/QTn1+5NrQAoxzYHSDg==","signature_status":"signed_v1","signed_at":"2026-05-18T00:38:46.459883Z","signed_message":"canonical_sha256_bytes"},"source_id":"1611.01477","source_kind":"arxiv","source_version":2}}},"equivocations":[],"invalid_events":[],"applied_event_ids":["sha256:9edb11386887296d1bd82f3fdffbc287cee2568edf742946da020519b8227685","sha256:022d5667c5592fc89972ab22616738b667f0f4a5d81ee23e5558465c7af184cb"],"state_sha256":"0f00f52971517e312af3f08d51e6259b5b0ecd0cd19dd088703d40da539dd7c0"},"bundle_signature":{"signature_status":"signed_v1","algorithm":"ed25519","key_id":"pith-v1-2026-05","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54","signature_b64":"IrYiULJtfUi0wXUt0XrS+l4UoL8YY80/erwhRGNifKVvwaULaW715kC+A3a6bDoFzBrL0Uk+BDTqLOLyliJACw==","signed_message":"bundle_sha256_bytes","signed_at":"2026-06-01T09:35:34.923356Z","bundle_sha256":"13d6da415bd271210c74517a174cfc45faf3d7eda2a4396f42acbc506b1022d2"}}