IMDEA Networks Institute Publications Repository

50 Ways to Leak Your Data: An Exploration of Apps’ Circumvention of the Android Permissions System

Reardon, Joel and Feal, Álvaro and Wijesekera, Primal and Elazari Bar On, Amit and Vallina-Rodriguez, Narseo and Egelman, Serge (2019) 50 Ways to Leak Your Data: An Exploration of Apps’ Circumvention of the Android Permissions System. [Magazine Articles]

Full text not available from this repository.

Abstract

Smartphones are general-purpose computers that store a great deal of sensitive personal information. Apps are prevented from accessing this information at will through the use of a permission system at the operating-system level. These security mechanisms are reasonable because we carry our smartphones alongside us all day, and they can gain access to our intimate communications and social network, our web browsing history, our location at all times—even if the GPS is disabled. When apps are denied permissions, however, they still have options to cheat the permission system by using side and covert channels. In our research we found a small number of such channels being actively exploited when we tested Google Play Store apps.

Item Type: Magazine Articles
Subjects: UNSPECIFIED
Divisions: UNSPECIFIED
Depositing User: Narseo Vallina
Date Deposited: 17 Jan 2020 09:37
Last Modified: 03 Feb 2020 10:53
URI: http://eprints.networks.imdea.org/id/eprint/2083

Actions (login required)

View Item View Item