Usability versus privacy instead of usable privacy

Article English OPEN
Gerber, Paul ; Volkamer, Melanie ; Renaud, Karen

A smartphone is an indispensible device that also holds a great deal of personal and private data. Contact details, party or holiday photos and emails --- all carried around in our pockets and easily lost. On Android, the most widely-used smartphone operating system, access to this data is regulated by permissions. Apps request these permissions at installation, and they ideally only ask for permission to access data they really need to carry out their functions. The user is expected to check, and grant, requested permissions before installing the app. Their privacy can potentially be violated if they fail to check the permissions carefully. In June 2014 Google changed the Android permission screen, perhaps attempting to improve its usability. Does this mean that all is well in the Android eco-system, or was this update a retrograde move? This article discusses the new permission screen and its possible implications for smartphone owner privacy.
  • References (16)
    16 references, page 1 of 2

    [1] Android.com. Manifest.permission. Retrieved December 15th, 2014. http://developer.android.com/reference/android/ Manifest.permission.html.

    [2] androidnext. Google Play Store: Jungstes Update sorgt fur laxere Handhabung von App-Berechtigungen. Retrieved December 1st, 2014. http://www.androidnext.de/news/google-play-storejuengstes-update-sorgt-fuer-laxere-handhabung-vonapp-berechtigungen/.

    [3] areamobile. Google erschwert Prufen von App-Berechtigungen. Retrieved October 1st, 2014. http://www.areamobile.de/news/27347-androidgoogle-erschwert-pruefen-von-app-berechtigungen.

    [4] S. Egelman, J. Tsai, L. F. Cranor, and A. Acquisti. Timing is everything? In Proceedings of the 27th international conference on Human factors in computing systems - CHI 09, page 319, New York, New York, USA, 2009. ACM Press.

    [5] Fachbereich Informatik Technische Universitat Darmstadt. Forschungsgruppe Security, Usability and Society: Privacy friendly QR Scanner App. Retrieved December 15th, 2014. https://www.secuso.informatik.tudarmstadt.de/de/research/results/privacy-friendly-qrscanner-app/.

    [6] A. P. Felt, E. Chin, S. Hanna, D. Song, and D. Wagner. Android permissions demysti ed. Proceedings of the 18th ACM conference on Computer and communications security - CCS '11, page 627, 2011.

    [7] A. P. Felt, E. Ha, S. Egelman, A. Haney, E. Chin, and D. Wagner. Android Permissions : User Attention , Comprehension , and Behavior. In Symposium on Usable Privacy and Security (SOUPS) 2012, Washington, DC, USA, 2012.

    [8] golem.de. Android-Apps erhalten leichter mehr Berechtigungen. Retrieved October 1st, 2014. http://www.golem.de/news/google-play-store-androidapps-erhalten-leichter-mehr-berechtigungen-1406- 106856.html.

    [9] Google. Check app permissions. Retrieved September 29th, 2014. https://support.google.com/googleplay/answer/ 6014972?hl=dehttps://support.google.com/googleplay/ answer/6014972?hl=de.

    [10] M. Harbach, M. Hettig, S. Weber, and M. Smith. Using personal examples to improve risk communication for security & privacy decisions. Proceedings of the 32nd annual ACM conference on Human factors in computing systems - CHI '14, pages 2647{2656, 2014.

  • Metrics
    No metrics available
Share - Bookmark