Majda Moussa, M. D. Penta, G. Antoniol, G. Beltrame
{"title":"ACCUSE: Helping Users to Minimize Android App Privacy Concerns","authors":"Majda Moussa, M. D. Penta, G. Antoniol, G. Beltrame","doi":"10.1109/MOBILESoft.2017.22","DOIUrl":null,"url":null,"abstract":"System permissions play a crucial role in the Android security architecture. They are used to restrict app operations only to resources (e.g., file system, network) that the user has agreed to share. In this paper, we present ACCUSE (Android Confidentiality Concern User Support Environment),an approach aimed at helping Android users and developers to compare and contrast the risk level of a set of Android apps. First, ACCUSE assigns to each app risk factors based on the Android classification of permissions. Then, such factors are combined with the app rating and downloading information to produce a new, overall risk factor. ACCUSE has been evaluated on a realworld dataset of 11,576 android apps as well as on a baseline of around 1000 known malware apps. Our results show that ACCUSE always assigns high risk to known malware apps, and outperforms the state-of-the-art.","PeriodicalId":281934,"journal":{"name":"2017 IEEE/ACM 4th International Conference on Mobile Software Engineering and Systems (MOBILESoft)","volume":"79 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-05-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IEEE/ACM 4th International Conference on Mobile Software Engineering and Systems (MOBILESoft)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/MOBILESoft.2017.22","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 5
Abstract
System permissions play a crucial role in the Android security architecture. They are used to restrict app operations only to resources (e.g., file system, network) that the user has agreed to share. In this paper, we present ACCUSE (Android Confidentiality Concern User Support Environment),an approach aimed at helping Android users and developers to compare and contrast the risk level of a set of Android apps. First, ACCUSE assigns to each app risk factors based on the Android classification of permissions. Then, such factors are combined with the app rating and downloading information to produce a new, overall risk factor. ACCUSE has been evaluated on a realworld dataset of 11,576 android apps as well as on a baseline of around 1000 known malware apps. Our results show that ACCUSE always assigns high risk to known malware apps, and outperforms the state-of-the-art.
系统权限在Android安全架构中起着至关重要的作用。它们用于将应用程序操作限制在用户同意共享的资源(例如,文件系统,网络)上。在本文中,我们提出了一种名为ACCUSE (Android confidential Concern User Support Environment)的方法,旨在帮助Android用户和开发者比较和对比一组Android应用程序的风险水平。首先,根据Android的权限分类,对每个应用程序分配风险因素。然后,将这些因素与应用评级和下载信息相结合,产生一个新的、整体的风险因素。在11,576个android应用程序的真实数据集以及大约1000个已知恶意软件应用程序的基线上,对ACCUSE进行了评估。我们的研究结果表明,控诉总是将高风险分配给已知的恶意软件应用程序,并且优于最先进的技术。
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
