English
Related papers

Related papers: Intent-Aware Permission Architecture: A Model for …

200 papers

Smartphones' cameras, microphones, and device displays enable users to capture and view memorable moments of their lives. However, adversaries can trick users into authorizing malicious apps that exploit weaknesses in current mobile…

Operating Systems · Computer Science 2016-04-11 Giuseppe Petracca , Ahmad Atamli , Yuqiong Sun , Jens Grossklags , Trent Jaeger

With the requirements and emphases on privacy transparency placed by regulations such as GDPR and CCPA, the Google Play Store requires Android developers to more responsibly communicate their apps' privacy practices to potential users by…

Cryptography and Security · Computer Science 2025-11-18 Anhao Xiang , Weiping Pei , Chuan Yue

Due to Android's open source feature and low barriers to entry for developers, millions of developers and third-party organizations have been attracted into the Android ecosystem. However, over 90 percent of mobile malware are found…

Cryptography and Security · Computer Science 2019-06-26 Bin Zhao

Modern operating systems such as Android, iOS, Windows Phone, and Chrome OS support a cooperating program abstraction. Instead of placing all functionality into a single program, programs cooperate to complete tasks requested by users.…

Cryptography and Security · Computer Science 2018-08-17 Giuseppe Petracca , Jens Grossklags , Patrick McDaniel , Trent Jaeger

We present the design and design rationale for the user interfaces for Privacy Enhancements for Android (PE for Android). These UIs are built around two core ideas, namely that developers should explicitly declare the purpose of why…

The Android permission system is a set of controls to regulate access to sensitive data and platform resources (e.g., camera). The fast evolving nature of Android permissions, coupled with inadequate documentation, results in numerous…

Software Engineering · Computer Science 2023-11-02 Sahrima Jannat Oishwee , Natalia Stakhanova , Zadia Codabux

Android is the most widely deployed end-user focused operating system. With its growing set of use cases encompassing communication, navigation, media consumption, entertainment, finance, health, and access to sensors, actuators, cameras,…

The major mobile platforms, Android and iOS, have introduced changes that restrict user tracking to improve user privacy, yet apps continue to covertly track users via device fingerprinting. We study the opportunity to improve this dynamic…

Cryptography and Security · Computer Science 2026-04-01 Alex Berke , Güliz Seray Tuncay , Michael Specter , Mihai Christodorescu

The permission mechanism in the Android Framework is integral to safeguarding the privacy of users by managing users' and processes' access to sensitive resources and operations. As such, developers need to be equipped with an in-depth…

Software Engineering · Computer Science 2025-10-07 Han Hu , Wei Minn , Yonghui Liu , Jiakun Liu , Ferdian Thung , Terry Yue Zhuo , Lwin Khin Shar , Debin Gao , David Lo

Android apps collecting data from users must comply with legal frameworks to ensure data protection. This requirement has become even more important since the implementation of the General Data Protection Regulation (GDPR) by the European…

Cryptography and Security · Computer Science 2024-09-11 Mugdha Khedkar , Michael Schlichtig , Eric Bodden

Many Android applications collect data from users. The European Union's General Data Protection Regulation (GDPR) requires vendors to faithfully disclose which data their apps collect. This task is complicated because many apps use…

Cryptography and Security · Computer Science 2024-09-09 Mugdha Khedkar , Ambuj Kumar Mondal , Eric Bodden

Android utilizes a security mechanism that requires apps to request permission for accessing sensitive user data, e.g., contacts and SMSs, or certain system features, e.g., camera and Internet access. However, Android apps tend to be…

Software Engineering · Computer Science 2020-01-24 Jianmao Xiao , Shizhan Chen , Qiang He , Zhiyong Feng , Xiao Xue

Determining how voice assistants should broker consent to share data with third party software has proven to be a complex problem. Devices often require users to switch to companion smartphone apps in order to navigate permissions menus for…

Human-Computer Interaction · Computer Science 2022-04-22 William Seymour , Mark Cote , Jose Such

Recent studies observe that app foreground is the most striking component that influences the access control decisions in mobile platform, as users tend to deny permission requests lacking visible evidence. However, none of the existing…

Cryptography and Security · Computer Science 2019-01-24 Hao Fu , Zizhan Zheng , Sencun Zhu , Pransant Mohapatra

Mobile apps offer significant benefits, but their privacy protections often remain ineffective and confusing for users. While prior work mainly analyzes app privacy vulnerabilities, few approaches help users understand, set, and enforce…

Cryptography and Security · Computer Science 2026-04-28 Tran Thanh Lam Nguyen , Edoardo Di Tullio , Barbara Carminati , Elena Ferrari

Advances in service personalization are driven by low-cost data collection and processing, in addition to the wide variety of third-party frameworks for authentication, storage, and marketing. New privacy regulations, such as the General…

Software Engineering · Computer Science 2022-06-15 Marco Robol , Travis D. Breaux , Elda Paja , Paolo Giorgini

Determining how voice assistants should broker consent to share data with third party software has proven to be a complex problem. Devices often require users to switch to companion smartphone apps in order to navigate permissions menus for…

Human-Computer Interaction · Computer Science 2022-06-23 William Seymour , Mark Cote , Jose Such

Access to privacy-sensitive information on Android is a growing concern in the mobile community. Albeit Google Play recently introduced some privacy guidelines, it is still an open problem to soundly verify whether apps actually comply with…

Cryptography and Security · Computer Science 2021-12-13 Luca Verderame , Davide Caputo , Andrea Romdhana , Alessio Merlo

The current "notice and consent" paradigm is broken: consent dialogues are often manipulative, and users cannot realistically read or understand every privacy policy. While recent LLM-based tools empower users seeking active control, many…

Human-Computer Interaction · Computer Science 2026-04-24 Vincent Freiberger

Among populations with limited literacy in emerging digital markets, the adoption of mobile phones, combined with comprehension barriers and poor cybersecurity hygiene, has created hidden privacy risks. This paper examines how informed…