UCL Discovery
UCL home » Library Services » Electronic resources » UCL Discovery

Studying users' adaptation to Android's run-time fine-grained access control system

Andriotis, P; Stringhini, G; Sasse, MA; (2018) Studying users' adaptation to Android's run-time fine-grained access control system. Journal of Information Security and Applications , 40 pp. 31-43. 10.1016/j.jisa.2018.02.004. Green open access

[thumbnail of JISApreprint.pdf]
Preview
Text
JISApreprint.pdf - Accepted version

Download (7MB) | Preview

Abstract

The advent of the sixth Android version brought a significant security and privacy advancement to its users. The platform’s security model has changed dramatically, allowing users to grant or deny access to resources when requested by applications during run-time. This improvement changed the traditional coarse-grained permission system and it was anticipated for a long time by privacy-aware users. In this paper, we present a pilot study that aims to analyze how Android users adapted to the run-time permission model. We gathered anonymous data from 52 participants, who downloaded an application we developed and answered questions related to the run-time permission model. Their answers suggest that most of them positively accepted the new model. We also collected data that describe users’ permission settings for each installed application on their devices. Our analysis shows that individuals make consistent choices regarding the resources they allow to various applications to access. In addition, the results of this pilot study showcase that on a second data collection round (occurred one month after the first phase of our experiments), 50% of the respondents did not change a single permission on their devices and only 2.26% of installed applications (on average) presented altered permission settings.

Type: Article
Title: Studying users' adaptation to Android's run-time fine-grained access control system
Open access status: An open access version is available from UCL Discovery
DOI: 10.1016/j.jisa.2018.02.004
Publisher version: https://doi.org/10.1016/j.jisa.2018.02.004
Language: English
Additional information: This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions.
Keywords: Privacy, Android, Usability, Acceptance, Controls, Permissions
UCL classification: UCL
UCL > Provost and Vice Provost Offices > UCL BEAMS
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science
UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science
URI: https://discovery.ucl.ac.uk/id/eprint/10044936
Downloads since deposit
101Downloads
Download activity - last month
Download activity - last 12 months
Downloads by country - last 12 months

Archive Staff Only

View Item View Item