Article

Using Statistical Information to Communicate Android Permission Risks to Users

Authors:

Lydia Kraus,

Ina Wechsung,

Sebastian MöllerAuthors Info & Claims

STAST '14: Proceedings of the 2014 Workshop on Socio-Technical Aspects in Security and Trust

Pages 48 - 55

https://doi.org/10.1109/STAST.2014.15

Published: 18 July 2014 Publication History

Abstract

The Android OS has a permission-based security system that controls the third party applications' access to sensitive information on the smartphone. The risk evaluation is left to the user who has to evaluate whether or not the requested permissions are appropriate. However, former work has shown that users lack attention to and understanding of the permissions which makes it difficult for them to make appropriate decisions. To support users with better understandable information we provide statistical information about permissions, grouped by functionality. We use methods from health risk communication to communicate this information to the users. In a lab experiment with 48 participants we find that users tend to choose more often the app with a lower number of permissions when statistical information is provided together with graphics. We also find that the privacy-intrusiveness and trustworthiness of apps is perceived differently when statistical information is given.

Cited By

View all

Schmitt VPoikela MMöller S(2022)Android Permission Manager, Visual Cues, and their Effect on Privacy Awareness and Privacy LiteracyProceedings of the 17th International Conference on Availability, Reliability and Security10.1145/3538969.3543790(1-12)Online publication date: 23-Aug-2022
https://dl.acm.org/doi/10.1145/3538969.3543790
Stöver AGerber NKaushik SMühlhäuser MMarky K(2021)Investigating Simple Privacy Indicators for Supporting Users when Installing New Mobile AppsExtended Abstracts of the 2021 CHI Conference on Human Factors in Computing Systems10.1145/3411763.3451791(1-7)Online publication date: 8-May-2021
https://dl.acm.org/doi/10.1145/3411763.3451791
Bock SMomen NLamas DSarapuu HŠmorgun IBerget G(2020)Nudging the User with Privacy Indicator: A Study on the App Selection Behavior of the UserProceedings of the 11th Nordic Conference on Human-Computer Interaction: Shaping Experiences, Shaping Society10.1145/3419249.3420111(1-12)Online publication date: 25-Oct-2020
https://dl.acm.org/doi/10.1145/3419249.3420111
Show More Cited By

Recommendations

Permission evolution in the Android ecosystem
ACSAC '12: Proceedings of the 28th Annual Computer Security Applications Conference

Android uses a system of permissions to control how apps access sensitive devices and data stores. Unfortunately, we have little understanding of the evolution of Android permissions since their inception (2008). Is the permission model allowing the ...
Permission-Educator: App for Educating Users About Android Permissions
Intelligent Human Computer Interaction
Abstract
Cyberattacks and malware infestation are issues that surround most operating systems (OS) these days. In smartphones, Android OS is more susceptible to malware infection. Although Android has introduced several mechanisms to avoid cyberattacks, ...
Risky Cohabitation: Understanding and Addressing Over-privilege Risks of Commodity Application Virtualization Platforms in Android
CODASPY '24: Proceedings of the Fourteenth ACM Conference on Data and Application Security and Privacy

The Android system protects its users' privacy via app permissions, which govern apps' access to sensitive data and resources. However, recent research has reported that, during app virtualization, the current Android permission model fails to prevent ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

STAST '14: Proceedings of the 2014 Workshop on Socio-Technical Aspects in Security and Trust

July 2014

55 pages

ISBN:9781479979011

Publisher

IEEE Computer Society

United States

Publication History

Published: 18 July 2014

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

6
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 05 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Schmitt VPoikela MMöller S(2022)Android Permission Manager, Visual Cues, and their Effect on Privacy Awareness and Privacy LiteracyProceedings of the 17th International Conference on Availability, Reliability and Security10.1145/3538969.3543790(1-12)Online publication date: 23-Aug-2022
https://dl.acm.org/doi/10.1145/3538969.3543790
Stöver AGerber NKaushik SMühlhäuser MMarky K(2021)Investigating Simple Privacy Indicators for Supporting Users when Installing New Mobile AppsExtended Abstracts of the 2021 CHI Conference on Human Factors in Computing Systems10.1145/3411763.3451791(1-7)Online publication date: 8-May-2021
https://dl.acm.org/doi/10.1145/3411763.3451791
Bock SMomen NLamas DSarapuu HŠmorgun IBerget G(2020)Nudging the User with Privacy Indicator: A Study on the App Selection Behavior of the UserProceedings of the 11th Nordic Conference on Human-Computer Interaction: Shaping Experiences, Shaping Society10.1145/3419249.3420111(1-12)Online publication date: 25-Oct-2020
https://dl.acm.org/doi/10.1145/3419249.3420111
Momen NBock SFritsch LLobo JStoller SLiu P(2020)Accept - Maybe - DeclineProceedings of the 25th ACM Symposium on Access Control Models and Technologies10.1145/3381991.3395603(71-80)Online publication date: 10-Jun-2020
https://dl.acm.org/doi/10.1145/3381991.3395603
Gerber NGerber PDrews HKirchner ESchlegel NSchmidt TScholz LBella GLenzini G(2018)FoxITProceedings of the 7th Workshop on Socio-Technical Aspects in Security and Trust10.1145/3167996.3167999(53-63)Online publication date: 5-Dec-2018
https://dl.acm.org/doi/10.1145/3167996.3167999
Gerber PVolkamer MRenaud K(2015)Usability versus privacy instead of usable privacyACM SIGCAS Computers and Society10.1145/2738210.273821445:1(16-21)Online publication date: 19-Feb-2015
https://dl.acm.org/doi/10.1145/2738210.2738214

Abstract

Cited By

Recommendations

Permission evolution in the Android ecosystem

Permission-Educator: App for Educating Users About Android Permissions

Risky Cohabitation: Understanding and Addressing Over-privilege Risks of Commodity Application Virtualization Platforms in Android

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Share

Share this Publication link

Share on social media

Affiliations