English
Related papers

Related papers: Tricking Johnny into Granting Web Permissions

200 papers

A cyber security problem in a networked system formulated as a resilient graph problem based on a game-theoretic approach is considered. The connectivity of the underlying graph of the network system is reduced by an attacker who removes…

Systems and Control · Electrical Eng. & Systems 2023-03-14 Yurid Nugraha , Ahmet Cetinkaya , Tomohisa Hayakawa , Hideaki Ishii , Quanyan Zhu

Conforming to W3C specifications, mobile web browsers allow JavaScript code in a web page to access motion and orientation sensor data without the user's permission. The associated risks to user security and privacy are however not…

Cryptography and Security · Computer Science 2016-05-04 Maryam Mehrnezhad , Ehsan Toreini , Siamak F. Shahandashti , Feng Hao

As LLMs are increasingly integrated into systems that browse, retrieve, summarize, and act on web content, webpages have become an untrusted input vector for downstream model behavior. This enables site owners, contributors, and adversaries…

Cryptography and Security · Computer Science 2026-05-01 Soheil Khodayari , Xuenan Zhang , Bhupendra Acharya , Giancarlo Pellegrino

Desktop browser extensions have long allowed users to improve their experience online and tackle widespread harms on websites. So far, no equivalent solution exists for mobile apps, despite the fact that individuals now spend significantly…

Human-Computer Interaction · Computer Science 2023-02-27 Konrad Kollnig , Siddhartha Datta , Nigel Shadbolt

In mobile applications, Pop-up window (PoW) plays a crucial role in improving user experience, guiding user actions, and delivering key information. Unfortunately, the excessive use of PoWs severely degrades the user experience. These PoWs…

Software Engineering · Computer Science 2025-05-20 Dongpeng Wu , Yuhong Nan , Shaojiang Wang , Jiawei Wang , Luwa Li , Xueqiang Wang

Mobile gaming applications (apps) have become increasingly pervasive, including a growing number of games designed for children. Despite their popularity, these apps often integrate complex analytics, advertising, and attribution…

Cryptography and Security · Computer Science 2026-03-31 Bakheet Aljedaani

Although there are over 1,600,000 third-party Android apps in the Google Play Store, little has been conclusively shown about how their individual (and collective) permission usage has evolved over time. Recently, Android 6 overhauled the…

Cryptography and Security · Computer Science 2016-08-11 Vincent F. Taylor , Ivan Martinovic

The proper use of Android app permissions is crucial to the success and security of these apps. Users must agree to permission requests when installing or running their apps. Despite official Android platform documentation on proper…

Cryptography and Security · Computer Science 2025-08-05 Ali Alkinoon , Trung Cuong Dang , Ahod Alghuried , Abdulaziz Alghamdi , Soohyeon Choi , Manar Mohaisen , An Wang , Saeed Salem , David Mohaisen

With the requirements and emphases on privacy transparency placed by regulations such as GDPR and CCPA, the Google Play Store requires Android developers to more responsibly communicate their apps' privacy practices to potential users by…

Cryptography and Security · Computer Science 2025-11-18 Anhao Xiang , Weiping Pei , Chuan Yue

Web browsers are integral parts of everyone's daily life. They are commonly used for security-critical and privacy sensitive tasks, like banking transactions and checking medical records. Unfortunately, modern web browsers are too complex…

Cryptography and Security · Computer Science 2022-01-03 Jungwon Lim , Yonghwi Jin , Mansour Alharthi , Xiaokuan Zhang , Jinho Jung , Rajat Gupta , Kuilin Li , Daehee Jang , Taesoo Kim

Recently, online video chat services are becoming increasingly popular. While experiencing tremendous growth, online video chat services have also become yet another spamming target. Unlike spam propagated via traditional medium like emails…

Cryptography and Security · Computer Science 2012-04-13 Xinyu Xing , Junho Ahn , Wenke Lee , Richard Han , Shivakant Mishra

Web servers service client requests, some of which might cause the web server to perform security-sensitive operations (e.g. money transfer, voting). An attacker may thus forge or maliciously manipulate such requests by compromising a web…

Cryptography and Security · Computer Science 2023-07-06 He Shuang , Lianying Zhao , David Lie

Opportunistic networking is one way to realize pervasive applications while placing little demand on network infrastructure, especially for operating in less well connected environments. In contrast to the ubiquitous network access model…

Networking and Internet Architecture · Computer Science 2015-12-15 Marcin Nagy , Teemu Kärkkäinen , Arseny Kurnikov , Jörg Ott

The usage of quick response (QR) codes was limited in the pre-era of the COVID-19 pandemic. Due to the widespread and frequent application since then, this opened up an attractive phishing opportunity for malicious actors. They trick users…

Cryptography and Security · Computer Science 2024-07-24 Marvin Geisler , Daniela Pöhn

Like many desktop operating systems in the 1990s, Android is now in the process of including support for multi-user scenarios. Because these scenarios introduce new threats to the system, we should have an understanding of how well the…

Cryptography and Security · Computer Science 2014-10-29 Paul Ratazzi , Yousra Aafer , Amit Ahlawat , Hao Hao , Yifei Wang , Wenliang Du

This paper presents a user study (N=22) where participants used an interface combining Web Search and a Generative AI-Chat feature to solve health-related information tasks. We study how people behaved with the interface, why they behaved…

Human-Computer Interaction · Computer Science 2025-04-08 Kerstin Mayerhofer , Rob Capra , David Elsweiler

Browser-use agents are widely used for everyday tasks. They enable automated interaction with web pages through structured DOM based interfaces or vision language models operating on page screenshots. However, web pages often change between…

Cryptography and Security · Computer Science 2026-03-03 Linxi Jiang , Zhijie Liu , Haotian Luo , Zhiqiang Lin

The industry for children's apps is thriving at the cost of children's privacy: these apps routinely disclose children's data to multiple data trackers and ad networks. As children spend increasing time online, such exposure accumulates to…

Human-Computer Interaction · Computer Science 2021-11-30 Anirudh Ekambaranathan , Jun Zhao , Max Van Kleek

In spite of efforts to increase participation, many online groups struggle to survive past the initial days, as members leave and activity atrophies. We argue that a main assumption of online group design -- that groups ask nothing of their…

Human-Computer Interaction · Computer Science 2024-10-31 Lindsay Popowski , Yutong Zhang , Michael S. Bernstein

A website browser cookie is a small file created by a web server upon visitation, which is placed in the user's browser directory to enhance the user's experience. However, first and third-party cookies have become a significant threat to…

Computers and Society · Computer Science 2022-11-15 Matthew Wheeler , Suleiman Saka , Sanchari Das