Mobile apps have become an integral part of our daily lives in that they can be used for accessing a variety of services everywhere, being smart IoT one of the most important domain. However, despite the many benefits that the use of mobile apps provide, there are also risks related to the usage of personal information. Understanding the privacy implications of installing an app could be very difficult, especially for non skilled users. To cope with this issue, in this paper, we provide a risk estimation approach based on apps’ static analysis. The output of the static analysis is then used to determine how much the personal data usage pattern of an app diverges from that of apps with the same purpose and this is in turn used to determine the app privacy risk. To prove that the proposed risk estimation measure is effective, we run several experiments with the involvement of different groups of participants, obtaining an accuracy varying from 79% to 82%.

A Risk Assessment Mechanism for Android Apps

Son H. X.;Carminati B.;Ferrari E.
2021-01-01

Abstract

Mobile apps have become an integral part of our daily lives in that they can be used for accessing a variety of services everywhere, being smart IoT one of the most important domain. However, despite the many benefits that the use of mobile apps provide, there are also risks related to the usage of personal information. Understanding the privacy implications of installing an app could be very difficult, especially for non skilled users. To cope with this issue, in this paper, we provide a risk estimation approach based on apps’ static analysis. The output of the static analysis is then used to determine how much the personal data usage pattern of an app diverges from that of apps with the same purpose and this is in turn used to determine the app privacy risk. To prove that the proposed risk estimation measure is effective, we run several experiments with the involvement of different groups of participants, obtaining an accuracy varying from 79% to 82%.
2021
Proceedings - 5th IEEE International Conference on Smart Internet of Things, SmartIoT 2021
978-1-6654-4511-5
5th IEEE International Conference on Smart Internet of Things, SmartIoT 2021
kor
2021
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11383/2136808
 Attenzione

L'Ateneo sottopone a validazione solo i file PDF allegati

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 13
  • ???jsp.display-item.citation.isi??? ND
social impact