Please use this identifier to cite or link to this item: http://hdl.handle.net/10397/105704
PIRA download icon_1.1View/Download Full Text
Title: Can we trust the privacy policies of Android apps?
Authors: Yu, L 
Luo, X 
Liu, X 
Zhang, T 
Issue Date: 2016
Source: 2016 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), 28 June - 1 July 2016, Toulouse, France, p. 538-549
Abstract: Recent years have witnessed the sharp increase of malicious apps that steal users' personal information. To address users' concerns about privacy risks, more and more apps are accompanied with privacy policies written in natural language because it is difficult for users to infer an app's behaviors according to the required permissions. However, little is known whether these privacy policies are trustworthy or not. It is worth noting that a questionable privacy policy may result from careless preparation by an app developer or intentional deception by an attacker. In this paper, we conduct the first systematic study on privacy policy by proposing a novel approach to automatically identify three kinds of problems in privacy policy. After tackling several challenging issues, we realize our approach in a system, named PPChecker, and evaluate it with real apps and privacy policies. The experimental results show that PPChecker can effectively identify questionable privacy policies with high precision. Moreover, applying PPChecker to 1,197 popular apps, we found that 282 apps (i.e., 23.6%) have at least one kind of problems. This study sheds light on the research of improving and regulating apps' privacy policies.
Publisher: Institute of Electrical and Electronics Engineers
ISBN: 978-1-4673-8891-7 (Electronic)
978-1-4673-8892-4 (Print on Demand(PoD))
DOI: 10.1109/DSN.2016.55
Rights: ©2016 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
The following publication L. Yu, X. Luo, X. Liu and T. Zhang, "Can We Trust the Privacy Policies of Android Apps?," 2016 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN), Toulouse, France, 2016, pp. 538-549 is available at https://doi.org/10.1109/DSN.2016.55.
Appears in Collections:Conference Paper

Files in This Item:
File Description SizeFormat 
Luo_Can_We_Trust.pdfPre-Published version908.93 kBAdobe PDFView/Open
Open Access Information
Status open access
File Version Final Accepted Manuscript
Access
View full-text via PolyU eLinks SFX Query
Show full item record

Page views

4
Citations as of Apr 28, 2024

SCOPUSTM   
Citations

66
Citations as of Apr 26, 2024

Google ScholarTM

Check

Altmetric


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.