Actions
  • shareshare
  • link
  • cite
  • add
add
auto_awesome_motion View all 8 versions
Publication . Part of book or chapter of book . Conference object . 2019

A Multilateral Privacy Impact Analysis Method for Android Apps

Majid Hatamian; Nurul Momen; Lothar Fritsch; Kai Rannenberg;
Open Access
English
Published: 08 Jun 2019
Publisher: Springer International Publishing
Abstract

Smartphone apps have the power to monitor most of people’s private lives. Apps can permeate private spaces, access and map social relationships, monitor whereabouts and chart people’s activities in digital and/or real world. We are therefore interested in how much information a particular app can and intends to retrieve in a smartphone. Privacy-friendliness of smartphone apps is typically measured based on single-source analyses, which in turn, does not provide a comprehensive measurement regarding the actual privacy risks of apps. This paper presents a multi-source method for privacy analysis and data extraction transparency of Android apps. We describe how we generate several data sets derived from privacy policies, app manifestos, user reviews and actual app profiling at run time. To evaluate our method, we present results from a case study carried out on ten popular fitness and exercise apps. Our results revealed interesting differences concerning the potential privacy impact of apps, with some of the apps in the test set violating critical privacy principles. The result of the case study shows large differences that can help make relevant app choices.

Subjects by Vocabulary

Medical Subject Headings: mental disorders

ACM Computing Classification System: GeneralLiterature_INTRODUCTORYANDSURVEY

Microsoft Academic Graph classification: Internet privacy business.industry business Privacy policy Computer science Analysis method Smartphone app Actual Privacy Data extraction Privacy principles Test set Android (operating system)

Funded by
EC| Privacy.Us
Project
Privacy.Us
Privacy and Usability
  • Funder: European Commission (EC)
  • Project Code: 675730
  • Funding stream: H2020 | MSCA-ITN-ETN
Validated by funder
,
EC| Privacy.Us
Project
Privacy.Us
Privacy and Usability
  • Funder: European Commission (EC)
  • Project Code: 675730
  • Funding stream: H2020 | MSCA-ITN-ETN
Validated by funder
Download fromView all 3 sources
lock_open
https://zenodo.org/record/3248...
Part of book or chapter of book
License: cc-by
Providers: UnpayWall
moresidebar