Visible to the public Overprivileged Permission Detection for Android Applications

Submitted by aekwall on Mon, 08/10/2020 - 10:32am
TitleOverprivileged Permission Detection for Android Applications
Publication TypeConference Paper
Year of Publication2019
AuthorsWu, Sha, Liu, Jiajia
Conference NameICC 2019 - 2019 IEEE International Conference on Communications (ICC)
KeywordsAndroid (operating system), Android applications, android encryption, Android system, App protection technology, Cameras, data mining, data privacy, Droidtector, Encryption, frequent item set mining, Google, Human Behavior, Metrics, mobile computing, overprivileged permission detection, permission mechanism, privacy, privacy leakage, pubcrawl, Resiliency, Scalability, security of data, smart phones, smartphone, Tools
AbstractAndroid applications (Apps) have penetrated almost every aspect of our lives, bring users great convenience as well as security concerns. Even though Android system adopts permission mechanism to restrict Apps from accessing important resources of a smartphone, such as telephony, camera and GPS location, users face still significant risk of privacy leakage due to the overprivileged permissions. The overprivileged permission means the extra permission declared by the App but has nothing to do with its function. Unfortunately, there doesn't exist any tool for ordinary users to detect the overprivileged permission of an App, hence most users grant any permission declared by the App, intensifying the risk of private information leakage. Although some previous studies tried to solve the problem of permission overprivilege, their methods are not applicable nowadays because of the progress of App protection technology and the update of Android system. Towards this end, we develop a user-friendly tool based on frequent item set mining for the detection of overprivileged permissions of Android Apps, which is named Droidtector. Droidtector can operate in online or offline mode and users can choose any mode according to their situation. Finally, we run Droidtector on 1000 Apps crawled from Google Play and find that 479 of them are overprivileged, accounting for about 48% of all the sample Apps.
DOI10.1109/ICC.2019.8761572
Citation Keywu_overprivileged_2019
Groups: