Enhancing User Privacy on Android Mobile Devices via Permissions Removal

Author

Quang Do ; Martini, Ben ; Choo, Kim-Kwang Raymond

Author_Institution

Inf. Assurance Res. Group, Univ. of South Australia, Adelaide, SA, Australia

fYear

2014

fDate

6-9 Jan. 2014

Firstpage

5070

Lastpage

5079

Abstract

Android mobile devices are becoming a popular alternative to computers. The rise in the number of tasks performed on smartphones means sensitive information is stored on the devices. Consequently, Android devices are a potential vector for criminal exploitation. Existing research on enhancing user privacy on Android devices can generally be classified as Android modifications. These solutions often require operating system modifications, which significantly reduce their potential. This research proposes the use of permissions removal, wherein a reverse engineering process is used to remove an app´s permission to a resource. The repackaged app will run on all devices the original app supported. Our findings that are based on a study of seven popular social networking apps for Android mobile devices indicate that the difficulty of permissions removal may vary between types of permissions and how well-integrated a permission is within an app.

Keywords

Android (operating system); data privacy; mobile computing; reverse engineering; smart phones; social networking (online); Android mobile devices; Android modifications; criminal exploitation; operating system modifications; permissions removal; reverse engineering process; smartphones; social networking apps; user privacy enhancement; Androids; Google; Humanoid robots; Privacy; Security; Smart phones; Android apps; Android mobile devices; Mobile apps;

fLanguage

English

Publisher

ieee

Conference_Titel

System Sciences (HICSS), 2014 47th Hawaii International Conference on

Conference_Location

Waikoloa, HI

Type

conf

DOI

10.1109/HICSS.2014.623

Filename

6759226