Technical Report
 

Analysis and Transformations in Support of Android Privacy

Public Deposited

Downloadable Content

Download PDF
https://ir.library.oregonstate.edu/concern/technical_reports/2227mq86d

Descriptions

Attribute NameValues
Creator
Abstract
  • To protect user’s privacy and system’s integrity, mobile platforms use permission models to control accesses to protected resources such as GPS location, Contacts, etc. The previous major version of Android used a static permission model, which compromised the security and privacy of apps. Android 6 overhauled its permission model to ask permissions at runtime which reduces the risk of permission abuse. However, migrating to the runtime permission model requires significant effort from the app developers. In this paper we first present a large-scale formative study to understand how app developers use and migrate to the new permission model. Inspired by these findings, we designed, implemented, and evaluated a tool suite that (i) recommends locations where to insert permission requests and (ii) automatically inserts all the permission-related code. Our empirical evaluations on a diverse corpus of real-world apps show that our tools are highly applicable and accurate.
  • Keywords: software analysis, Android, permissions
Resource Type
Date Available
Date Issued
Academic Affiliation
Series
Rights Statement
Publisher
Language
Replaces

Relationships

Parents:

This work has no parents.

Items