Title :
Using Statistical Information to Communicate Android Permission Risks to Users
Author :
Kraus, Ludek ; Wechsung, Ina ; Moller, Sebastian
Author_Institution :
Quality & Usability Lab., Tech. Univ. Berlin, Berlin, Germany
Abstract :
The Android OS has a permission-based security system that controls the third party applications´ access to sensitive information on the smartphone. The risk evaluation is left to the user who has to evaluate whether or not the requested permissions are appropriate. However, former work has shown that users lack attention to and understanding of the permissions which makes it difficult for them to make appropriate decisions. To support users with better understandable information we provide statistical information about permissions, grouped by functionality. We use methods from health risk communication to communicate this information to the users. In a lab experiment with 48 participants we find that users tend to choose more often the app with a lower number of permissions when statistical information is provided together with graphics. We also find that the privacy-intrusiveness and trustworthiness of apps is perceived differently when statistical information is given.
Keywords :
Android (operating system); data privacy; smart phones; statistical analysis; trusted computing; Android OS; Android permission risk communication; app privacy-intrusiveness; app trustworthiness; functionality; health risk communication; information communication; permission-based security system; risk evaluation; sensitive information; smart phone; statistical information; third-party application access controls; Androids; Graphics; Humanoid robots; Meteorology; Privacy; Security; Standards; Android permissions; Users; app functionality; risk communication; statistical information;
Conference_Titel :
Socio-Technical Aspects in Security and Trust (STAST), 2014 Workshop on
Conference_Location :
Vienna
DOI :
10.1109/STAST.2014.15
