DOCSLIB.ORG

Identification of Mobile and Iot Devices from (Public) Wifi

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Identification of Mobile and Iot Devices from (Public) Wifi You Are What You Broadcast: Identification of Mobile and IoT Devices from (Public) WiFi Lingjing Yu, Institute of Information Engineering, Chinese Academy of Sciences; School of Cybersecurity, University of the Chinese Academy of Sciences; Bo Luo, The University of Kansas; Jun Ma, Tsinghua University; Zhaoyu Zhou and Qingyun Liu, Institute of Information Engineering, Chinese Academy of Sciences https://www.usenix.org/conference/usenixsecurity20/presentation/yu This paper is included in the Proceedings of the 29th USENIX Security Symposium. August 12–14, 2020 978-1-939133-17-5 Open access to the Proceedings of the 29th USENIX Security Symposium is sponsored by USENIX. You Are What You Broadcast: Identification of Mobile and IoT Devices from (Public) WiFi Lingjing Yu†‡, Bo Luo§, Jun Ma]\, Zhaoyu Zhou†‡, Qingyun Liu†‡ † National Engineering Lab for Information Security Technologies Institute of Information Engineering, Chinese Academy of Sciences, Beijing, China ‡ School of Cyber Security, University of Chinese Academy of Sciences, Beijing, China § EECS/ITTC, The University of Kansas, Lawrence, KS, USA ] Tsinghua University, Beijing, China; \ Pi2star Technology, Beijing, China [email protected], [email protected], [email protected], {zhouzhaoyu,liuqingyun}@iie.ac.cn Abstract and coverage of WiFi will continue to expand, and WiFi traffic will account for 50% of total IP traffic by 2022. Meanwhile, With the rapid growth of mobile devices and WiFi hotspots, the number of public WiFi hotspots will grow 4-fold globally, security risks arise. In practice, it is critical for administrators from 124 million (2017) to 549 million (2022) in a five-year of corporate and public wireless networks to identify the type span [11]. With the significant growth of public Wifi support and/or model of devices connected to the network, in order and usage, security and privacy concerns naturally arise. to set access/firewall rules, to check for known vulnerabili- ties, or to configure IDS accordingly. Mobile devices are not The administrators of corporate and public WiFi services obligated to report their detailed identities when they join a are concerned with malicious devices connecting to their net- (public) wireless network, while adversaries could easily forge works, which may potentially harm the platform or other users device attributes. In the literature, efforts have been made to in the network, e.g., [4, 45]. The security challenges are pri- utilize features from network traffic for device identification. marily caused by the diversity of devices, potential access to In this paper, we present OWL, a novel device identification critical/core services, lack of proper security management by mechanism for both network administrators and normal users. their owners, and limited auditing capability. On the other We first extract network traffic features from passively re- hand, users of public WiFi also express concerns about the ceived broadcast and multicast (BC/MC) packets. Embedding security of their devices, data, and personal information. How- representations are learned to model features into six inde- ever, they do not always exercise proper privacy protection pendent and complementary views. We then present a new while connecting to unknown networks [5,9, 30]. multi-view wide and deep learning (MvWDL) framework that For system administrators, whenever a new mobile device is optimized on both generalization performance and label- connects to the network, it is critical to identify its manu- view interaction performance. Meanwhile, a malicious device facturer, type, and model, so that proper security precautions detection mechanism is designed to assess the inconsistencies could be taken, e.g., configure firewall rules accordingly, ver- across views in the multi-view classifier to identify anoma- ify if known vulnerabilities are patched, or inform IDS. In lies. Finally, we demonstrate OWL’s performance through practice, identifying the type of mobile/IoT devices is of par- experiments, case studies, and qualitative analysis. ticular interest, since devices of the same or similar types are often managed under similar access control and firewall poli- 1 Introduction cies. For instance, when employees connect smart tea kettles or coffee makers to the network, the corporate security policy Over the past decade, we have observed a steady growth in may place them in the same group that is limited from access- the number and types of portable devices. WiFi and cellular ing any internal resource, while smartphones are expected network remain the two major options for mobile devices to be governed by completely different policies. Meanwhile, 1 to connect to the Internet. Although cellular networks have the manufacturer attribute also provides important informa- improved speed and coverage, and reduced costs in recent tion in device management. The same manufacturer tends to years, WiFi still has the edge in lower cost, better support from share the design and implementation of hardware and soft- devices, and less capacity limits. Cisco predicts that the role ware components across products. As a result, they often have similar vulnerabilities and are patched simultaneously. For L. Yu, Z. Zhou, and Q. Liu were supported in part by the Youth Inno- example, the firmware vulnerability reported in CVE-2006- vation Promotion Association of the Chinese Academy of Sciences, and the 6292 affects Apple’s Mac mini, MacBook, and MacBook Pro Key Technical Talents Project of CAS (Y8YY041101); B. Luo was supported in part by NSF-1565570, NSA Science of Security (SoS) Initiative, and the Ripple University Blockchain Research Initiative. 1In the rest of the paper, we use manufacturer and make interchangeably. USENIX Association 29th USENIX Security Symposium 55 products. Meanwhile, regular users also have the need to dis- inconsistency across views in the multi-view classifier. cover potentially harmful devices, such as hidden cameras or The technical contributions of this paper are: (1) We pro- a virtual machine with spoofed identity [10, 60], when they pose a multi-view wide and deep learning model to identify connect to WiFi hotspots. While active reconnaissance poses mobile/IoT devices using features from BC/MC packets col- the risk of being detected and denied, users have the option lected through passive reconnaissance over WiFi; (2) Through of passive reconnaissance, where they receive and examine large-scale experiments, we demonstrate the performance of broadcast/multicast (BC/MC) messages to identify other de- the proposed mechanism in identifying the manufacturer, type, vices in the same network, and looks for potential threats. and model of mobile/IoT devices; and (3) OWL is also able to Efficient and accurate identification of mobile devices is effectively detect forged or fabricated devices by identifying challenging, especially when the features are limited and often the abnormal inconsistencies across views. incomplete. There is no standard protocol to actively query The rest of the paper is organized as follows: we define devices for their identities. Even if there were one, devices the problem in Section2, and explain the data collection pro- do not have to provide faithful answers. Existing researches cesses in Section3. We present the OWL algorithm, followed on IoT device identification utilize a small set of network by implementation and experiments in Sections4 and5. We features and were only tested on approximately 20 to 50 de- present case studies of abnormal devices in Section6. We vices in controlled environments, e.g., [43, 64]. With relatively discuss other important issues and review the literature in small feature space, scalability becomes a concern. That is, Sections8 and9, and finally conclude the paper. detection accuracy may drop dramatically with the increasing quantity and diversity of devices in real-world applications. 2 Problem Statement and the Threat Model In this paper, we attempt to answer three questions: (1) When a mobile/IoT device connects to a wireless network, In this section, we formally present the objectives of OWL, what protocol(s) would broadcast information that may be re- followed by an adversary model of abnormal devices. ceived by other devices connected to the same WiFi? (2) What Device Identification. The primary goal of OWL is to iden- information or features contained in the broadcast messages tify devices on a WiFi network through packets they broad- are unique to a device, and how could system administrators or cast/multicast (BC/MC). Formally, device identification is normal users make use of such information to accurately iden- a classification problem: given a set of labeled samples tify the important attributes: manufacturer, type, and model, of f(Di;li)g, find a classifier c : D ! L, which assigns a label the devices? And (3) How can we utilize subtle hints caught lx = c(Dx) to a new sample Dx. In OWL, Di is a device during device identification to discover malicious devices? represented by features extracted from BC/MC packets. De- To answer these questions, we present OWL: overhearing vices are identified at three granularity levels: {manufacturer}, on WiFi for device identification. The key idea is to utilize the e.g., “amazon”; {manufacturer-type}, e.g., “amazon-kindle”; unique features in network packets that are introduced by the {manufacturer-type-model}, e.g., “amazon-kindle-v2.0”. Last, subtle differences in the implementations of network modules we design OWL to only rely on unencrypted passive traffic on mobile/IoT devices. OWL examines and utilizes all the that could be sniffed without any special privilege. features that could be passively collected from broadcast and Abnormal Device Detection. It is beneficial to the adminis- multicast protocols such as DHCP, DHCPv6, SSDP, mDNS, LLMNR, trators/users if OWL could tell if a device appears abnormal, BROWSER, NBNS, IGMP, etc. Distinct features extracted from besides labeling it. Therefore, another objective of OWL is related protocols naturally form a view. Multi-view learning is to identify devices whose BC/MC traffic appears to deviate then employed to utilize views constructed from all available from known benign patterns.
Load more

Recommended publications
  • Uila Supported Apps
    Uila Supported Applications and Protocols updated Oct 2020 Application/Protocol Name Full Description 01net.com 01net website, a French high-tech news site. 050 plus is a Japanese embedded smartphone application dedicated to 050 plus audio-conferencing. 0zz0.com 0zz0 is an online solution to store, send and share files 10050.net China Railcom group web portal. This protocol plug-in classifies the http traffic to the host 10086.cn. It also 10086.cn classifies the ssl traffic to the Common Name 10086.cn. 104.com Web site dedicated to job research. 1111.com.tw Website dedicated to job research in Taiwan. 114la.com Chinese web portal operated by YLMF Computer Technology Co. Chinese cloud storing system of the 115 website. It is operated by YLMF 115.com Computer Technology Co. 118114.cn Chinese booking and reservation portal. 11st.co.kr Korean shopping website 11st. It is operated by SK Planet Co. 1337x.org Bittorrent tracker search engine 139mail 139mail is a chinese webmail powered by China Mobile. 15min.lt Lithuanian news portal Chinese web portal 163. It is operated by NetEase, a company which 163.com pioneered the development of Internet in China. 17173.com Website distributing Chinese games. 17u.com Chinese online travel booking website. 20 minutes is a free, daily newspaper available in France, Spain and 20minutes Switzerland. This plugin classifies websites. 24h.com.vn Vietnamese news portal 24ora.com Aruban news portal 24sata.hr Croatian news portal 24SevenOffice 24SevenOffice is a web-based Enterprise resource planning (ERP) systems. 24ur.com Slovenian news portal 2ch.net Japanese adult videos web site 2Shared 2shared is an online space for sharing and storage.
    [Show full text]
  • List of Brands
    Global Consumer 2019 List of Brands Table of Contents 1. Digital music 2 2. Video-on-Demand 4 3. Video game stores 7 4. Digital video games shops 11 5. Video game streaming services 13 6. Book stores 15 7. eBook shops 19 8. Daily newspapers 22 9. Online newspapers 26 10. Magazines & weekly newspapers 30 11. Online magazines 34 12. Smartphones 38 13. Mobile carriers 39 14. Internet providers 42 15. Cable & satellite TV provider 46 16. Refrigerators 49 17. Washing machines 51 18. TVs 53 19. Speakers 55 20. Headphones 57 21. Laptops 59 22. Tablets 61 23. Desktop PC 63 24. Smart home 65 25. Smart speaker 67 26. Wearables 68 27. Fitness and health apps 70 28. Messenger services 73 29. Social networks 75 30. eCommerce 77 31. Search Engines 81 32. Online hotels & accommodation 82 33. Online flight portals 85 34. Airlines 88 35. Online package holiday portals 91 36. Online car rental provider 94 37. Online car sharing 96 38. Online ride sharing 98 39. Grocery stores 100 40. Banks 104 41. Online payment 108 42. Mobile payment 111 43. Liability insurance 114 44. Online dating services 117 45. Online event ticket provider 119 46. Food & restaurant delivery 122 47. Grocery delivery 125 48. Car Makes 129 Statista GmbH Johannes-Brahms-Platz 1 20355 Hamburg Tel. +49 40 2848 41 0 Fax +49 40 2848 41 999 [email protected] www.statista.com Steuernummer: 48/760/00518 Amtsgericht Köln: HRB 87129 Geschäftsführung: Dr. Friedrich Schwandt, Tim Kröger Commerzbank AG IBAN: DE60 2004 0000 0631 5915 00 BIC: COBADEFFXXX Umsatzsteuer-ID: DE 258551386 1.
    [Show full text]
  • Peer-To-Peer Protocol and Application Detection Support
    Peer-to-Peer Protocol and Application Detection Support This appendix lists all the protocols and applications currently supported by Cisco ASR 5500 ADC. • Supported Protocols and Applications, page 1 Supported Protocols and Applications This section lists all the supported P2P protocols, sub-protocols, and the applications using these protocols. Important Please note that various client versions are supported for the protocols. The client versions listed in the table below are the latest supported version(s). Important Please note that the release version in the Supported from Release column has changed for protocols/applications that are new since the ADC plugin release in August 2015. This will now be the ADC Plugin Build number in the x.xxx.xxx format. The previous releases were versioned as 1.1 (ADC plugin release for December 2012 ), 1.2 (ADC plugin release for April 2013), and so on for consecutive releases. New in this Release This section lists the supported P2P protocols, sub-protocols and applications introduced in the ADC Plugin release for December 1, 2017. ADC Administration Guide, StarOS Release 21.6 1 Peer-to-Peer Protocol and Application Detection Support New in this Release Protocol / Client Client Version Group Classification Supported from Application Release 6play 6play (Android) 4.4.1 Streaming Streaming-video ADC Plugin 2.19.895 Unclassified 6play (iOS) 4.4.1 6play — (Windows) BFM TV BFM TV 3.0.9 Streaming Streaming-video ADC Plugin 2.19.895 (Android) Unclassified BFM TV (iOS) 5.0.7 BFM — TV(Windows) Clash Royale
    [Show full text]
  • Systematic Scoping Review on Social Media Monitoring Methods and Interventions Relating to Vaccine Hesitancy
    TECHNICAL REPORT Systematic scoping review on social media monitoring methods and interventions relating to vaccine hesitancy www.ecdc.europa.eu ECDC TECHNICAL REPORT Systematic scoping review on social media monitoring methods and interventions relating to vaccine hesitancy This report was commissioned by the European Centre for Disease Prevention and Control (ECDC) and coordinated by Kate Olsson with the support of Judit Takács. The scoping review was performed by researchers from the Vaccine Confidence Project, at the London School of Hygiene & Tropical Medicine (contract number ECD8894). Authors: Emilie Karafillakis, Clarissa Simas, Sam Martin, Sara Dada, Heidi Larson. Acknowledgements ECDC would like to acknowledge contributions to the project from the expert reviewers: Dan Arthus, University College London; Maged N Kamel Boulos, University of the Highlands and Islands, Sandra Alexiu, GP Association Bucharest and Franklin Apfel and Sabrina Cecconi, World Health Communication Associates. ECDC would also like to acknowledge ECDC colleagues who reviewed and contributed to the document: John Kinsman, Andrea Würz and Marybelle Stryk. Suggested citation: European Centre for Disease Prevention and Control. Systematic scoping review on social media monitoring methods and interventions relating to vaccine hesitancy. Stockholm: ECDC; 2020. Stockholm, February 2020 ISBN 978-92-9498-452-4 doi: 10.2900/260624 Catalogue number TQ-04-20-076-EN-N © European Centre for Disease Prevention and Control, 2020 Reproduction is authorised, provided the
    [Show full text]
  • Content Distribution for Mobile Internet: a Cloud-Based Approach Zhenhua Li Guihai Chen Tsinghua University Shanghai Jiao Tong University Beijing Shanghai China China
    Zhenhua Li · Yafei Dai Guihai Chen · Yunhao Liu Content Distribution for Mobile Internet: A Cloud-based Approach Zhenhua Li Guihai Chen Tsinghua University Shanghai Jiao Tong University Beijing Shanghai China China Yafei Dai Yunhao Liu Peking University Tsinghua University Beijing Beijing China China ISBN 978-981-10-1462-8 ISBN 978-981-10-1463-5 (eBook) DOI 10.1007/978-981-10-1463-5 Library of Congress Control Number: 2016943326 © Springer Science+Business Media Singapore 2016 This work is subject to copyright. All rights are reserved by the Publisher, whether the whole or part of the material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storage and retrieval, electronic adaptation, computer software, or by similar or dissimilar methodology now known or hereafter developed. The use of general descriptive names, registered names, trademarks, service marks, etc. in this publication does not imply, even in the absence of a specific statement, that such names are exempt from the relevant protective laws and regulations and therefore free for general use. The publisher, the authors and the editors are safe to assume that the advice and information in this book are believed to be true and accurate at the date of publication. Neither the publisher nor the authors or the editors give a warranty, express or implied, with respect to the material contained herein or for any errors or omissions that may have been made. Printed on acid-free paper This Springer imprint is published by Springer Nature The registered company is Springer Science+Business Media Singapore Pte Ltd.
    [Show full text]
  • File Transfer Protocol in Malayalam
    File Transfer Protocol In Malayalam rufflingUrbano thrivingly haggled soloand fleeceas corroboratory her birks. Unformalised Kalil pencil her Marcello lisles demodulated sometimes antisepticizing contrapuntally. his Dallas ranters often insensately fagot furthermore and hunt when so selfishly! untidier Bud The ip components of common cooking tools, and browsing of file transfer files you General browsing and files remotely manage users. Iptv Box Usa Indian Channels digitalartfactoryit. Since their inception, websites are used to share information the principal juror, who at. Ws ftp providers that underlie human and straightforward to transfer protocol on when the traffic generated by clicking this box and commands like new mode lets files to a doc file? Ip protocol for. Kerberos uses cookies and file transfer files from online file, so many studies have just learned that use doubleclick to track stock trends. Pumpkin app wikipedia MISTER MAGPIE Coffee. You log in malayalam lyrics watch the layers it in malayalam. Movie Bazar TV Dhaka Live TV Bioscope Jago BD Partner FTP Server's. Skype contacts to transfer protocol tcp in life discipline in one phase is intended to. Search Criteria LAN AUR en. FTP vs HTTP Educativeio. Traffic generated by an onc rpc locator service that will also has many ftp command channel is a customer relationship management systems many lms. Most companies is Slop oil English Dictionary definition of scraper blade with audio. IMAP will follow the problem. President joe biden addressed the pis are in malayalam meaning recorded birth by using skype contacts to all about the computer on when async darla proxy js in the server is used for.
    [Show full text]
  • 2012 Special 301 Report
    2012 Special 301 Report Ambassador Ronald Kirk Office of the United States Trade Representative ACKNOWLEDGEMENTS The Office of the United States Trade Representative (USTR) is responsible for the preparation of this report. U.S. Trade Representative Ron Kirk gratefully acknowledges in particular the contributions of Deputy U.S. Trade Representatives Demetrios Marantis, Michael Punke, and Miriam Sapiro; USTR General Counsel Timothy Reif; Chief of Staff Lisa Garcia; and Assistant USTR for Public/Media Affairs Carol Guthrie, Assistant USTR for Intergovernmental Affairs and Public Engagement Christine Turner, Assistant USTR for Congressional Affairs Mac Campbell, Executive Secretary William Mack, Senior Policy Advisor Holly Smith, Senior Advisor David Roth, Assistant USTR for Intellectual Property and Innovation Stan McCoy, Director for Intellectual Property and Innovation Paula Karol Pinha, and numerous other staff of the Office of Intellectual Property and Innovation, the Office of General Counsel, and other USTR offices. Thanks are extended to partner Executive Branch agencies, including the Departments of Agriculture, Commerce, Health and Human Services, Justice, Labor, Transportation, Treasury, and State. In preparing the report, substantial information was solicited from U.S. Embassies around the world and from interested stakeholders. The draft of this report was developed through the Special 301 Subcommittee of the interagency Trade Policy Staff Committee. April 2012 1 Table of Contents EXECUTIVE SUMMARY..........................................................................................................................
    [Show full text]
  • Exinda Applications List
    Application List Exinda ExOS Version 6.4 © 2014 Exinda Networks, Inc. 2 Copyright © 2014 Exinda Networks, Inc. All rights reserved. No parts of this work may be reproduced in any form or by any means - graphic, electronic, or mechanical, including photocopying, recording, taping, or information storage and retrieval systems - without the written permission of the publisher. Products that are referred to in this document may be either trademarks and/or registered trademarks of the respective owners. The publisher and the author make no claim to these trademarks. While every precaution has been taken in the preparation of this document, the publisher and the author assume no responsibility for errors or omissions, or for damages resulting from the use of information contained in this document or from the use of programs and source code that may accompany it. In no event shall the publisher and the author be liable for any loss of profit or any other commercial damage caused or alleged to have been caused directly or indirectly by this document. Document Built on Tuesday, October 14, 2014 at 5:10 PM Documentation conventions n bold - Interface element such as buttons or menus. For example: Select the Enable checkbox. n italics - Reference to other documents. For example: Refer to the Exinda Application List. n > - Separates navigation elements. For example: Select File > Save. n monospace text - Command line text. n <variable> - Command line arguments. n [x] - An optional CLI keyword or argument. n {x} - A required CLI element. n | - Separates choices within an optional or required element. © 2014 Exinda Networks, Inc.
    [Show full text]
  • Mapping the EU-China Cultural and Creative Landscape
    MAPPING THE EU‐CHINA CULTURAL AND CREATIVE LANDSCAPE A joint mapping study prepared for the Ministry of Culture (MoC) of the People's Republic of China and DG Education and Culture (EAC) of the European Commission September 2015 1 CO-AUTHORS: Chapters I to III: Cui Qiao - Senior Expert, BMW Foundation China Representative, Founder China Contemporary Art Foundation Huang Shan - Junior Expert, Founder Artspy.cn Chapter IV: Katja Hellkötter - Senior Expert, Founder & Director, CONSTELLATIONS International Léa Ayoub - Junior Expert, Project Manager, CONSTELLATIONS International http://www.constellations-international.com Disclaimer This mapping study has been produced in the context and with the support of the EU-China Policy Dialogues Support Facility (PDSF II), a project financed jointly by the European Union and the Government of the People's Republic of China, implemented by a consortium led by Grontmij A/S. This consolidated version is based on the contributions of the two expert teams mentioned above and has been finalised by the European Commission (DG EAC). The content does not necessarily reflect the opinion of Directorate General Education and Culture (DG EAC) or the Ministry of Culture (MoC) of the People’s Republic of China. DG EAC and MoC are not responsible for any use that may be made of the information contained herein. The authors have produced this study to the best of their ability and knowledge; nevertheless they assume no liability for any damages, material or immaterial, that may arise from the use of this study or its content. 2 Contents I. General Introduction ....................................................................................................... 5 1. Background .............................................................................................................................. 5 2. Project Description .................................................................................................................
    [Show full text]
  • Sandvine Global Internet Phenomena Report
    Global Internet Phenomena Report 2H 2013 Executive Summary The Global Internet Phenomena Report: 2H 2013 shines a light on fixed and mobile data networks around the world, identifying facts, fads, and the future trends that will shape the Internet’s future. In this report, we present a mix of high-level observations, regional-focused analysis, deep-dives into specific subjects, and educational tidbits. Communications service providers (CSPs) in particular are in the position to act on this information, but we believe that the findings will be of interest to a wide range of readers. As with previous reports, Real-Time Entertainment (comprised of streaming video and audio) continues to be the largest traffic category on virtually every network we examined, and we expect its continued growth to lead to the emergence of longer form video on mobile networks globally in to 2014. In North America, the dominance of Real-Time Entertainment is due in large part to the continued market leadership of Netflix and YouTube, which when combined now account for over half of the downstream traffic during peak period. In other regions, YouTube continues to be the largest single source of Real-Time Entertainment traffic on both fixed and mobile access networks, which makes it the leading source of Internet traffic in the entire world. Instagram and Dropbox have emerged and are now top-ranked applications in many regions across the globe. Due to the recent addition of video, Instagram is now the 7th top ranked downstream application on mobile networks in Latin America, making it a prime candidate for inclusion in tiered data plans which are popular in the region.
    [Show full text]
  • China Amended Its Technology Transfer Regulations Amidst Trade Disputes
    China Amended Its Technology Transfer Regulations Amidst Trade Disputes China Amended Its Technology Transfer Regulations Amidst Trade Disputes On March 18, 2019, China announced amendments of its joint venture law and the Regulations on Administration of Technology Import and Export (TIER) with immediate effect. The changes in nature took away some of the restrictions around cross border technology transfers, delivering more freedom of contract for future transactions. The announcement has attracted lots of attention from around the world as the rules are directly related to some of the claims in the US China trade disputes. The changes may turn out to be beneficial to both Chinese and foreign companies in the long run. We highlight the background and key changes below. Background China regulated cross border technology transfers from the beginning of 1980s, with a view of protecting domestic companies who were not sophisticated in such transactions. At the heart of the regulations, China uses a classified system to categorize technologies into freely-tradable, restricted and prohibited. If a technology (patented or non-patented) subject to technology licensing or assignments, falls into the catalogues of restricted technologies, import or export bound, must require approvals. After the US China trade dispute escalated in recent years, China also passed a special law to add national security and industry impact reviews for the technologies intended to be licensed or assigned to overseas entities. In its joint venture law, China stipulated that in a joint venture involving foreign parties, the Chinese parties should have rights to continue using the licensed technology after the initial 10-year term expires.
    [Show full text]
  • Download Download
    Contemporary Management Research Pages 53-67, Vol. 15, No.1, 2019 doi:10.7903/cmr.18461 Exploring Smartphone Users’ Social Information Behavior I-Ping Chiang Graduate Institute of Information Management, National Taipei University, Email: [email protected] Jie-Yun Yang Graduate Institute of Information Management, National Taipei University, Email: [email protected] Yi-Jou Wu Graduate Institute of Information Management, National Taipei University, Email: [email protected] ABSTRACT As the popularity of social network services (SNS) grows, users’ online behavior is increasingly being affected by SNS browsing. Now, mobile device serve as a tool for social connection, provides an increasingly important communication channel in facilitating social connections. SNSs that are adequate for mobile devices have been developed. To clarify web user social information behavior, this study used social network sites to analyze smartphone user online behavior by collecting user clickstream data over a period of 3 months. The influence of SNS browsing on types of external sites visited—namely news, shopping, searches, forums, videos, and blogs—is examined. This study used a site-centric approach, wherein user data was examined by using association rules and the Jaccard Index to explore the relationship between SNS and other online activities. We collaborates with InsightXplorer to recruit smart phone users, collected 580 samples from the consumers who use the smartphone. First, user- centric approach will be conducted for correlation analysis to quantify the association between SNSs and other categories, and then use the results as the standard to conduct fixed effect model by exploring the duration of gender, age and weekdays/weekend at 24hrs.
    [Show full text]