Author_Institution :
Inst. for Parallel & Distrib. Syst., Univ. of Stuttgart, Stuttgart, Germany
Abstract :
There is an increasing popularity of mobile devices-especially Android devices-particularly because of the huge amount of available third-party applications. Albeit, the number of diagnosed hacker attacks against mobile user increased in unison, as these devices became the prime target of the latest malware, thanks to inexperienced users and a negligent way of dealing with private data. To make matters worse, the Android permission system is much too coarse-grained and too hard to grasp for an average user. However, even if a user is able to comprehend the meaning and impact of a certain permission, in the end, s/he must grant all requested permission anyhow, if s/he wants to install the application. Therefore, we introduce PMP a privacy management platform for Android, which enables a user to grant an application fine-grained access rights to critical data. Furthermore, those rights can depend on some contextual constraints (e.g. Internet usage is restricted to certain locations) and the policy rules can be modified at run-time. Depending upon the granted rights an application provides a different scope of service. Moreover, the user is-due to a catchy GUI-always informed what impact the granting or respectively the revocation of a permission has on the application´s service quality.
Keywords :
computer crime; data privacy; invasive software; mobile computing; mobile radio; operating systems (computers); quality of service; telecommunication security; Android device; Android permission system; Android phone; GUI; Internet usage; PMP; contextual constraint; diagnosed hacker attack; fine-grained access rights; malware; mobile device; mobile user; policy rule; privacy management platform; private data; service quality; third-party application; Androids; Data privacy; Google; Mobile communication; Privacy; Smart phones; Unsolicited electronic mail; Android; demonstrator; privacy management;
