privacy and mobile devices
play

PRIVACY AND MOBILE DEVICES Elizabeth Schlieper Patrick Gage - PowerPoint PPT Presentation

Feb 16, 2024 •310 likes •473 views

PRIVACY AND MOBILE DEVICES Elizabeth Schlieper Patrick Gage Kelley, Lorrie Faith Cranor, and Norman Sadeh. 2013. Privacy as Lab study with 20 participants and a Mturk survey with 366 part of the app decision- participants making

  1. PRIVACY AND MOBILE DEVICES Elizabeth Schlieper

  2. Patrick Gage Kelley, Lorrie Faith Cranor, and Norman Sadeh. 2013. Privacy as „ Lab study with 20 participants and a Mturk survey with 366 part of the app decision- participants making process. In Proceedings of the SIGCHI „ Comparing their Privacy Facts vs Google Play Permissions for Conference on Human Factors in Computing choosing applications Systems (CHI '13). ACM, New York, NY, USA, „ Also compared privacy facts against Play permissions modified to 3393-3402. be on the main information screen. „ Used mostly unknown apps with between 1,000 -10,000 downloads. „ Some compared well known brands against relatively unknown apps (example: Spotify vs. Rdio) PRIVACY AS PART OF THE APP DECISION-MAKING PROCESS

  3. Patrick Gage Kelley, Lorrie Faith Cranor, and Norman OLD VERSUS NEW PERMISSIONS Sadeh. 2013. Privacy as part of the app decision- making process. In Proceedings of the SIGCHI Conference on Human Factors in Computing Systems (CHI '13). ACM, New York, NY, USA, 3393-3402.

  4. Patrick Gage Kelley, Lorrie Faith Cranor, and Norman Sadeh. 2013. Privacy as part of the app decision- making process. In „ In two out of four comparisons for app selection, the participants Proceedings of the SIGCHI who saw the privacy facts checklist were more likely to pick the Conference on Human Factors in Computing app with fewer required permissions Systems (CHI '13). ACM, New York, NY, USA, „ When privacy information was inline for both conditions, privacy 3393-3402. facts participants were significantly more likely to choose a lesser known application for twitter viewing. „ While the style of privacy information given made a difference, it was still a less important characteristic to most participants than the UI and ratings of the application. PRIVACY AS PART OF THE APP DECISION-MAKING PROCESS

  5. „ What changes do you see to the permissions since this article was published? „ What are some improvements? „ Is there anything you think is worse than before? DISCUSSION

  6. Adrienne Porter Felt, Elizabeth Ha, Serge Egelman, Ariel Haney, Erika Chin, and David Wagner. 2012. Android „ 308 participant online survey permissions: user attention, „ 25 participant lab study comprehension, and behavior. In Proceedings „ Assessing whether or not the android permissions dialog prior to of the Eighth Symposium on Usable Privacy and installation was usable according to the C-HIP model Security (SOUPS '12). ACM, New York, NY, „ Mostly focus on the first two steps of the model because the USA, , Article 3 , 14 pages. following steps in the model depend on success in the earlier ones. ANDROID PERMISSIONS: USER ATTENTION, COMPREHENSION, AND BEHAVIOR

  7. Adrienne Porter Felt, Elizabeth Ha, Serge Egelman, Ariel Haney, Erika Chin, and David Wagner. 2012. Android „ The first two steps, getting the user’s attention and being permissions: user attention, understandable to the user, fail for the majority of the users. comprehension, and behavior. In Proceedings „ They think that the few users with high understanding of the of the Eighth Symposium on Usable Privacy and permissions could help protect the other users by posting reviews. Security (SOUPS '12). ACM, New York, NY, „ They may have underestimated how much people understand USA, , Article 3 , 14 pages. the permissions because for their statistics they only considered people who got every correct option and no incorrect options as understanding the permission. ANDROID PERMISSIONS: USER ATTENTION, COMPREHENSION, AND BEHAVIOR

  8. „ Take this quiz about how well you understand the permissions tested in this paper. „ Does anyone think they did better than the study participants? PUT IT TO THE TEST

  9. Adrienne Porter Felt, Elizabeth Ha, Serge Egelman, Ariel Haney, Erika Chin, and David „ 1. a, c „ 9. c Wagner. 2012. Android permissions: user „ 2. a, c „ 10. a, d attention, comprehension, and „ 3. d „ 11. a, b, c, d behavior. In Proceedings of the Eighth Symposium on Usable Privacy and „ 4. c, d Security (SOUPS '12). ACM, New York, NY, „ 5. a, b „ How many did you get right? USA, , Article 3 , 14 pages. „ 6. a „ 7. b, c „ 8. b ANSWERS

  10. Rebecca Balebako, Jaeyeon Jung, Wei Lu, Lorrie Faith Cranor, and Carolyn Nguyen. 2013. „ Created an application called Privacy Leaks that detects data "Little brothers watching you": raising awareness leaving the phone from various applications. of data leaks on smartphones. In „ Filters the data and only presents information about presumably Proceedings of the Ninth Symposium on Usable unexpected data sharing, aka privacy leaks. Privacy and Security (SOUPS '13). ACM, New „ The app creates a visualization of data that is shared after the York, NY, USA, , Article 12 , 11 pages. fact and can provide notifications as data is being shared. „ Lab study with 19 participants, playing game on android phone, once without privacy leaks app and once with it running in the background. “LITTLE BROTHERS WATCHING YOU:” RAISING AWARENESS OF DATA LEAKS ON SMARTPHONES

  11. Rebecca Balebako, Jaeyeon Jung, Wei Lu, Lorrie Faith Cranor, and „ Participants were told that the study was about android games. Carolyn Nguyen. 2013. "Little brothers watching „ After 3-7 minutes of playing, they were asked about what kind of you": raising awareness data was being shared while they played the game. of data leaks on smartphones. In Proceedings of the Ninth „ Three levels of awareness about data sharing Symposium on Usable Privacy and Security „ People who think that the game is self contained, and never (SOUPS '13). ACM, New expected any data to leave the phone. York, NY, USA, , Article 12 , 11 pages. „ People who thought data was being shared with the developer to improve the game „ People who knew that there was marketing data being shared, but not how much. “LITTLE BROTHERS WATCHING YOU:” RAISING AWARENESS OF DATA LEAKS ON SMARTPHONES

  12. Rebecca Balebako, Jaeyeon Jung, Wei Lu, Lorrie Faith Cranor, and Carolyn Nguyen. 2013. "Little brothers watching „ People did want to know that their data was being leaked you": raising awareness of data leaks on „ They would also mostly like to use an app similar to Privacy Leaks smartphones. In Proceedings of the Ninth to know what kind of data is being shared. Symposium on Usable Privacy and Security „ It wouldn’t change most peoples’ minds about using the apps or (SOUPS '13). ACM, New York, NY, USA, , Article 12 , recommending them to others, but they would tell people about 11 pages. the data leaking. „ People weren’t sure if there were problems or benefits to data sharing in these applications. “LITTLE BROTHERS WATCHING YOU:” RAISING AWARENESS OF DATA LEAKS ON SMARTPHONES

  13. Christopher Thompson, Maritza Johnson, Serge Egelman, David Wagner, „ First conducted an online survey to understand how well people and Jennifer King. 2013. understand attribution mechanisms and other aspects of When it's better to ask forgiveness than get Android. permission: attribution mechanisms for „ People don’t understand that background apps can still use smartphone resources. In Proceedings of the Ninth resources and perform as usual. Symposium on Usable Privacy and Security „ They also conducted an in person study that corroborated the (SOUPS '13). ACM, New findings from the first survey. York, NY, USA, , Article 1 , 14 pages. „ Then conducted a lab study to see if adding information to the notification tray would help users to identify what application was causing a particular misbehavior. WHEN IT’S BETTER TO ASK FORGIVENESS THAN GET PERMISSION: ATTRIBUTION MECHANISMS FOR SMARTPHONE RESOURCES

  14. Christopher Thompson, Maritza Johnson, Serge Egelman, David Wagner, and Jennifer King. 2013. When it's better to ask „ Only a third of participants figured out the culprit with the forgiveness than get permission: attribution additional notification. mechanisms for smartphone resources. In „ People usually assumed the foreground application was Proceedings of the Ninth Symposium on Usable responsible for the misbehavior. Privacy and Security (SOUPS '13). ACM, New „ People assumed the permissions of an application based on York, NY, USA, , Article 1 , 14 pages. functionality and did not check the settings. „ Essentially, once it’s on the phone users have no idea what an app has permission to do. WHEN IT’S BETTER TO ASK FORGIVENESS THAN GET PERMISSION: ATTRIBUTION MECHANISMS FOR SMARTPHONE RESOURCES

  15. „ Based on the last two papers, would you rather know every permission an application uses before it installs, or would it be better to have tools built into android that tell you as an application runs what it’s doing? DISCUSSION

  16. QUESTIONS?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SoK: Privacy on Mobile Devices Its Complicated Chad Spensky , Jeffrey Stewart, Arkady

SoK: Privacy on Mobile Devices Its Complicated Chad Spensky , Jeffrey Stewart, Arkady

SoK: Privacy on Mobile Devices Its Complicated Chad Spensky , Jeffrey Stewart, Arkady Yerukhimovich, Richard Shay, Ari Trachtenberg, Rick Housley, and Robert K. Cunningham Privacy Enhancing Technologies Symposium 2016 Is Privacy Possible

542 views • 15 slides
Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda Protecting mobile devices and your privacy Protecting Mobile Devices and Your Privacy Before We Start The City of Phoenix does not

971 views • 52 slides
Localization ocalization of mobile devices of mobile devices L Seminar: Mobile Computing IFW

Localization ocalization of mobile devices of mobile devices L Seminar: Mobile Computing IFW

Localization ocalization of mobile devices of mobile devices L Seminar: Mobile Computing IFW C42 Tuesday, 29th May 2001 Roger Zimmermann Overview Overview Introduction Why Technologies Absolute Positioning Relative

314 views • 30 slides
Mobility, Data Mining, and Privacy Yannis Theodoridis InfoLab, University of Piraeus, Greece

Mobility, Data Mining, and Privacy Yannis Theodoridis InfoLab, University of Piraeus, Greece

Mobility, Data Mining, and Privacy Yannis Theodoridis InfoLab, University of Piraeus, Greece infolab.cs.unipi.gr Mobile devices and services Large diffusion of mobile devices, mobile services and location-based services 2 Wireless networks

664 views • 39 slides
Mobile Privacy: Tor On The iPhone And Other Unusual Devices Marco Bonetti - CutAway s.r.l.

Mobile Privacy: Tor On The iPhone And Other Unusual Devices Marco Bonetti - CutAway s.r.l.

Mobile Privacy: Tor On The iPhone And Other Unusual Devices Marco Bonetti - CutAway s.r.l. whoami Marco Bonetti Security Consultant @ CutAway s.r.l. mbonetti@cutaway.it http://www.cutaway.it/ Tor user & researcher @ SLP-IT

943 views • 53 slides
Securing Mobile Devices & Protecting the Privacy of Users Martina Lindorfer Technische

Securing Mobile Devices & Protecting the Privacy of Users Martina Lindorfer Technische

Securing Mobile Devices & Protecting the Privacy of Users Martina Lindorfer Technische Universitt Wien martina@iseclab.org https://martina.lindorfer.in @lindorferin About Me Assistant Professor at TU Wien (Security &

319 views • 17 slides
Threats to Mobile Devices Possible attack threats to mobile devices Network exploit

Threats to Mobile Devices Possible attack threats to mobile devices Network exploit

Threats to Mobile Devices Possible attack threats to mobile devices Network exploit Hackers takes advantage of vulnerability or flaw of users web browser on mobile device in WiFi communication to attack victims. Hackers send

464 views • 30 slides
CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International

CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International

CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International Data Tracking 2 http://privacyinternational.org/feature/2433/i-asked-online-tracking-company-all-my-data-and-heres-what-i-found Two Main Attack

986 views • 63 slides
Mobile Devices Mobile Devices NAGTRI Webinar Series NCJRL / NAAG Objectives Objectives

Mobile Devices Mobile Devices NAGTRI Webinar Series NCJRL / NAAG Objectives Objectives

Mobile Devices Mobile Devices NAGTRI Webinar Series NCJRL / NAAG Objectives Objectives Identify mobile devices Identify mobile devices Learn how mobile devices obtain and transmit information transmit information Identify

863 views • 68 slides
devices Im going to be talking about how we hold and interact our mobile devices And how

devices Im going to be talking about how we hold and interact our mobile devices And how

Im going to be introducing you to ergonomics More specifically ergonomics in terms of designing touch interfaces for mobile devices Im going to be talking about how we hold and interact our mobile devices And how you can use

1.12k views • 62 slides
Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference

Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference

Tutorial: Development of Interactive Applications for Mobile Devices 7th International Conference on Human Computer Interaction with Mobile Devices and Services (Mobile HCI 2005) Enrico Rukzio (Media Informatics Group, University of Munich )

641 views • 24 slides
Smart Devices in Airbnbs: Considering Privacy and Security for both Guests and Hosts Abstract:

Smart Devices in Airbnbs: Considering Privacy and Security for both Guests and Hosts Abstract:

Proceedings on Privacy Enhancing Technologies ; 2020 (2):436458 Shrirang Mare*, Franziska Roesner, and Tadayoshi Kohno Smart Devices in Airbnbs: Considering Privacy and Security for both Guests and Hosts Abstract: Consumer smart home devices

596 views • 23 slides
Characteristics of Mobile Web Content Felix Nwaobasi Text Block #3 Contact, Department, or

Characteristics of Mobile Web Content Felix Nwaobasi Text Block #3 Contact, Department, or

Characteristics of Mobile Web Content Felix Nwaobasi Text Block #3 Contact, Department, or Other Information Background 2 Worcester Polytechnic Institute Mobile vs. Non-Mobile Devices Non-mobile devices Mobile devices Great

333 views • 20 slides
MOBILE DEVICES USING WIFI NETWORK JOAQUIN BERENGUER 30 MINUTES IMAGES OF IOT CONTENT

MOBILE DEVICES USING WIFI NETWORK JOAQUIN BERENGUER 30 MINUTES IMAGES OF IOT CONTENT

SERVER FOR IOT DEVICES AND MOBILE DEVICES USING WIFI NETWORK JOAQUIN BERENGUER 30 MINUTES IMAGES OF IOT CONTENT Environment Architecture Server Functionality Security IoT Devices Mobile and Desktop Devices Events

904 views • 23 slides
Smart Mobile Devices Registration System THE PURPOSES OF THE SYSTEM To detect illegally imported

Smart Mobile Devices Registration System THE PURPOSES OF THE SYSTEM To detect illegally imported

Smart Mobile Devices Registration System THE PURPOSES OF THE SYSTEM To detect illegally imported and/or uncertifjed To detect and prevent usage of mobile devices 1 5 devices within mobile operator network in with cloned and/or invalid

241 views • 10 slides
Interaction Devices Mobile Keyboard Animation, Speech and Displays

Interaction Devices Mobile Keyboard Animation, Speech and Displays

Interaction Devices Mobile Keyboard Animation, Speech and Displays Small Pointing Novel device image, and Layouts auditory and Large Devices devices display s video interfaces

194 views • 7 slides
TKPERM: Cross-platform Permission Knowledge Transfer to Detect Overprivileged Third-party

TKPERM: Cross-platform Permission Knowledge Transfer to Detect Overprivileged Third-party

TKPERM: Cross-platform Permission Knowledge Transfer to Detect Overprivileged Third-party Applications Faysal Hossain Shezan, Kaiming Cheng, Zhen Zhang, Yinzhi Cao, Yuan Tian Permission-based Access Control Android Chrome IFTTT 2

842 views • 82 slides
A Non-Inclusive Memory Permissions Architecture for Protection Against Cross-Layer Attacks Jesse

A Non-Inclusive Memory Permissions Architecture for Protection Against Cross-Layer Attacks Jesse

A Non-Inclusive Memory Permissions Architecture for Protection Against Cross-Layer Attacks Jesse Elwell 1 Ryan Riley 2 Nael Abu-Ghazaleh 1 Dmitry Ponomarev 1 1 State University of New York at Binghamton Department of Computer Science 2 Qatar

872 views • 76 slides
pNFS Access Permissions Check draft-faibish-nfsv4-pnfs-access-permissions-check-03.txt IETF 78

pNFS Access Permissions Check draft-faibish-nfsv4-pnfs-access-permissions-check-03.txt IETF 78

pNFS Access Permissions Check draft-faibish-nfsv4-pnfs-access-permissions-check-03.txt IETF 78 NFSv4 WG Meeting, July 28, 2010 Sorin Faibish sfaibish@emc.com David Black - EMC Mike Eisler - NetApp Jason Glasgow - Google Problem Statement

376 views • 6 slides
Regions and Permissions for Data Invariants Romain Bardou and Claude March e Septembre 2009

Regions and Permissions for Data Invariants Romain Bardou and Claude March e Septembre 2009

Regions and Permissions for Data Invariants Romain Bardou and Claude March e Septembre 2009 Regions and Permissions for Data Invariants 1 / 1 Motivation preservation of data invariants in pointer programs ownership system of Spec#

301 views • 29 slides
This Lecture General Database Security Privileges Database Security Granting

This Lecture General Database Security Privileges Database Security Granting

This Lecture General Database Security Privileges Database Security Granting Revoking Views Database Systems SQL Insertion Attacks Michael Pound Further Reading The Manga Guide to Databases, Chapter 5 Database

285 views • 7 slides
Real-time Access Control Reconfiguration By Ashish Gehani and Gershon Kedem Department of

Real-time Access Control Reconfiguration By Ashish Gehani and Gershon Kedem Department of

Real-time Access Control Reconfiguration By Ashish Gehani and Gershon Kedem Department of Computer Science, Duke University Introduction Internet growth Increasingly frequent attacks Heterogenous deployed software More

585 views • 15 slides
Agenda Virtual Memory Final Review Assembly Calling Conventions Malloc/Free

Agenda Virtual Memory Final Review Assembly Calling Conventions Malloc/Free

Agenda Virtual Memory Final Review Assembly Calling Conventions Malloc/Free Caching Questions, Evaluations Virtual Memory Used for 3 things Efficient use of main memory (RAM) Use RAM as cache for parts of

499 views • 18 slides
COMP 2718: Permissions: Part 2 By: Dr. Andrew Vardy Adapted from the notes of Dr. Rod Byrne

COMP 2718: Permissions: Part 2 By: Dr. Andrew Vardy Adapted from the notes of Dr. Rod Byrne

COMP 2718: Permissions: Part 2 By: Dr. Andrew Vardy Adapted from the notes of Dr. Rod Byrne Outline Permissions: Part 2 umask - Set Default Permissions Special Permissions Changing Identities su - Run a New Shell as Another

288 views • 11 slides

More recommend