OATAO - Open Archive Toulouse Archive Ouverte Open Access Week

A recommender-based system for assisting non technical users in managing Android permissions

Oglaza, Arnaud and Laborde, Romain and Barrère, François and Benzekri, Abdelmalek A recommender-based system for assisting non technical users in managing Android permissions. (2016) In: 11th International Conference on Availability, Reliability and Security (ARES 2016), 31 August 2016 - 2 September 2016 (Salzburg, Austria).

(Document in English)

PDF (Author's version) - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader

Official URL: http://doi.ieeecomputersociety.org/10.1109/ARES.2016.54


Today, permissions management solutions on mobile devices employ Identity Based Access Control models. This approach was suitable when people had only few games (like snake or tetris) installed on their mobile phones. Current situa- tion is different. A survey from Google in 2013 showed that, on average, US users have installed 33 applications on their Android smartphones. As a result, these users must manage hundreds of permissions if they want to protect their privacy. Scalability of IBAC is a well known issue and many more advanced access control models have proposed abstractions to cope with this problem. However, such models are more complex to handle for non technical users. Thus, we present a permission management system for Android devices that 1) learns users' privacy preferences, 2) proposes them abstract authorization rules, and 3) provides advanced features to manage these high level rules. We prove this approach is more efficient than current permissions management system by comparing it to Privacy Guard Manager.

Item Type:Conference or Workshop Item (Paper)
Additional Information:Thanks to IEEE editor. The definitive version is available at http://ieeexplore.ieee.org This papers appears in Proceedings of ARES 2016. ISBN: 978-1-5090-0990-9 The original PDF of the article can be found at: http://ieeexplore.ieee.org/document/7784550/ Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
HAL Id:hal-01682972
Audience (conference):International conference proceedings
Uncontrolled Keywords:
Institution:Université de Toulouse > Institut National Polytechnique de Toulouse - Toulouse INP (FRANCE)
French research institutions > Centre National de la Recherche Scientifique - CNRS (FRANCE)
Université de Toulouse > Université Toulouse III - Paul Sabatier - UT3 (FRANCE)
Université de Toulouse > Université Toulouse - Jean Jaurès - UT2J (FRANCE)
Université de Toulouse > Université Toulouse 1 Capitole - UT1 (FRANCE)
Laboratory name:
Deposited On:20 Dec 2017 14:45

Repository Staff Only: item control page