DOCSLIB.ORG

Permission-Based Privacy Analysis for Android Applications Erza Gashi University for Business and Technology - UBT

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Permission-Based Privacy Analysis for Android Applications Erza Gashi University for Business and Technology - UBT University of Business and Technology in Kosovo UBT Knowledge Center Theses and Dissertations Student Work 4-2018 Permission-based Privacy Analysis for Android Applications Erza Gashi University for Business and Technology - UBT Follow this and additional works at: https://knowledgecenter.ubt-uni.net/etd Part of the Computer Sciences Commons Recommended Citation Gashi, Erza, "Permission-based Privacy Analysis for Android Applications" (2018). Theses and Dissertations. 1. https://knowledgecenter.ubt-uni.net/etd/1 This Thesis is brought to you for free and open access by the Student Work at UBT Knowledge Center. It has been accepted for inclusion in Theses and Dissertations by an authorized administrator of UBT Knowledge Center. For more information, please contact [email protected]. Faculty of Computer Science and Engineering Permission-based Privacy Analysis for Android Applications Student: Erza GASHI April 2018 Prishtina Faculty of Computer Science and Engineering Master Thesis Academic Period 2013-2014 Erza GASHI Permission-based Privacy Analysis for Android Applications Advisor: Dr Sc. Zhilbert TAFA April 2018 Submitted in partial fulfillment of the requirements for the degree of Master of Science ABSTRACT While Information and Communication Technology (ICT) trends are moving towards the Internet of Things (IoT), mobile applications are becoming more and more popular. Mostly due to their pervasiveness and the level of interaction with the users, along with the great number of advantages, the mobile applications bring up a great number of privacy related issues as well. These platforms can gather our very sensitive private data by only granting them a list of permissions during the installation process. Additionally, most of the users can find it difficult, or even useless, to analyze system permissions. Thus, their guess of app’s safety mostly relies on the features like rating and popularity, rather than in understanding context of listed permissions. In this work, we investigate the relationship between the features collected from Android Market API 23 and app’s privacy violation. These features include Popularity, Total Number of Permissions, Number of Dangerous Permissions, Rating and Package Size. To show the influence of each feature we use linear regression and Pearson R statistics. The conducted research can contribute to the classification of mobile applications concerning the threat on user’s privacy. i ACKNOWLEDGMENTS I would like to acknowledge my thesis mentor Prof. Zhilbert Tafa for the useful comments, remarks and engagement through the process of this master thesis. Furthermore, I express my very profound gratitude to my family especially to my spouse Artan, for providing me with unconditional support and continuous encouragement throughout my years of study and through the process of researching and writing this thesis. This accomplishment would not have been possible without them. Thank you. ii CONTENT LIST OF FIGURES .............................................................................................................. v ABBREVIATION ................................................................................................................ vii 1. INTRODUCTION .......................................................................................................... 1 1.1 Objective ........................................................................................................................... 1 1.2 Limitations ........................................................................................................................ 2 1.3 Thesis Structure ............................................................................................................... 2 2. LITERATURE REVIEW .............................................................................................. 4 2.1 Related Work .......................................................................................................................... 4 2.2 Definitions and Metrics .......................................................................................................... 6 2.1.1 Android Platform ........................................................................................................................ 6 2.1.1.1 API Levels......................................................................................................................... 7 2.1.2 Android Apps ............................................................................................................................. 7 2.1.3 Android Permissions ........................................................................................................................ 7 2.1.3.1 Protection Level ....................................................................................................................... 8 2.2 Statistical Methods ......................................................................................................... 10 2.2.1 Pearson correlation coefficient ................................................................................................. 10 2.2.2 Histogram ................................................................................................................................. 10 2.2.3 Scatter plot ................................................................................................................................ 11 3. PROBLEM STATEMENT .......................................................................................... 12 4. METHODOLOGY ....................................................................................................... 13 4.1 Data Collection ...................................................................................................................... 13 4.1.1 Categories ................................................................................................................................. 15 4.1.2 Sub-Categories.......................................................................................................................... 15 4.1.3 Applications .............................................................................................................................. 16 4.1.4 Permissions ............................................................................................................................... 16 4.1.5 Basic Statistics .......................................................................................................................... 18 4.1.5.1 Total number of applications........................................................................................... 18 4.1.5.2 Total number of categories .............................................................................................. 18 iii 4.1.5.3 Number of applications per category .............................................................................. 19 4.1.5.4 Top N downloaded applications ...................................................................................... 19 4.2 Estimating Privacy Risk ................................................................................................ 20 4.2.1 Condition#1: App has more than one dangerous permission. ................................................... 21 4.2.2 Condition#2: Has set of permissions ........................................................................................ 21 4.2.3 Condition#3: INTERNET granting permission ........................................................................ 23 4.3 Final Dataset .......................................................................................................................... 24 5. RESULTS ..................................................................................................................... 25 5.1 List of application with most number of permissions ........................................................ 25 5.2 Number of permissions per category .................................................................................. 26 5.3 Cumulative Distribution ....................................................................................................... 29 5.4 Top 10 Permissions ............................................................................................................... 30 5.4.1 Distribution in visual form ............................................................................................................. 31 5.5 Correlation between Rating and Number of Downloads .................................................. 32 5.6 Correlation between Package Size and Number of Permissions ...................................... 34 5.7 Correlation Heatmap ............................................................................................................ 36 6. CONCLUSION ............................................................................................................ 39 7. APPENDIX A .............................................................................................................. 40 8. APPENDIX B .............................................................................................................. 69 9. REFERENCES ............................................................................................................ 72 iv LIST OF FIGURES Figure 1. Grant permissions a) at install-time (left) and b) at run-time (right) .............................................. 9 Figure 2. Process of data
Load more

Recommended publications
  • The Made in India App Landscape Report
    The Made in India App Landscape Report APPNIRBHAR BHARAT 1 2 APPNIRBHAR BHARAT Message from Shri Ravi Shankar Prasad Union Minister for Law & Justice, Communications and Electronics & Information Technology, Government of India APPNIRBHAR BHARAT 3 Foreword Over the past few years, India has undergone a rapid transformation into a digitally empowered society. With a digital population of over 600 million, India is today ranked the world’s second-largest online market. The country’s startup ecosystem has also grown to become the third- largest globally, with its entrepreneurs and tech innovators Shradha Sharma building lasting solutions to solve for not only India, but also Founder & CEO, for the world. YourStory India is also the top country in the world in terms of the number of apps installed and used per month. India’s app ecosystem has, in fact, never been in a greater position of strength, thanks to the renewed enthusiasm and vigour among Indian techies, innovators, and entrepreneurs to build from India, for India and the world. When Prime Minister Narendra Modi recently raised the clarion call for India to become ‘vocal for local’ and Aatmanirbhar, or self-reliant, he also put the spotlight on the need for an ‘Aatmanirbhar App Ecosystem’ when he launched the Government of India’s Aatmanirbhar Bharat App Innovation Challenge. “Today, when the entire nation is working towards creating an Aatmanirbhar Bharat, it is a good opportunity to give direction to their efforts, momentum to their hard work, and mentorship to their talent to evolve Apps which can satisfy our market as well as compete with the world,” PM Modi said.
    [Show full text]
  • INDIAN OTT PLATFORMS REPORT 2019 New Regional Flavours, More Entertaining Content
    INDIAN OTT PLATFORMS REPORT 2019 New Regional Flavours, more Entertaining Content INDIAN TRENDS 2018-19 Relevant Statistics & Insights from an Indian Perspective. Prologue Digital technology has steered the third industrial revolution and influenced human civilization as a whole. A number of industries such as Media, Telecom, Retail and Technology have witnessed unprecedented disruptions and continue to evolve their existing infrastructure to meet the challenge. The telecom explosion in India has percolated to every corner of the country resulting in easy access to data, with Over-The-Top (OTT) media services changing how people watch television. The Digital Media revolution has globalized the world with 50% of the world’s population going online and around two-thirds possessing a mobile phone. Social media has penetrated into our day-to-day life with nearly three billion people accessing it in some form. India has the world’s second highest number of internet users after China and is fully digitally connected with the world. There is a constant engagement and formation of like-minded digital communities. Limited and focused content is the key for engaging with the audience, thereby tapping into the opportunities present, leading to volumes of content creation and bigger budgets. MICA, The School of Ideas, is a premier Management Institute that integrates Marketing, Branding, Design, Digital, Innovation and Creative Communication. MICA offers specializations in Digital Communication Management as well as Media & Entertainment Management as a part of its Two Year Post Graduate Diploma in Management. In addition to this, MICA offers an online Post-Graduate Certificate Programme in Digital Marketing and Communication.
    [Show full text]
  • Appnirbhar Bharat Report
    The Made in India App Landscape Report APPNIRBHAR BHARAT 1 2 APPNIRBHAR BHARAT Message from Shri Ravi Shankar Prasad Union Minister for Law & Justice, Communications and Electronics & Information Technology, Government of India APPNIRBHAR BHARAT 3 Foreword Over the past few years, India has undergone a rapid transformation into a digitally empowered society. With a digital population of over 600 million, India is today ranked the world’s second-largest online market. The country’s startup ecosystem has also grown to become the third- largest globally, with its entrepreneurs and tech innovators Shradha Sharma building lasting solutions to solve for not only India, but also Founder & CEO, for the world. YourStory India is also the top country in the world in terms of the number of apps installed and used per month. India’s app ecosystem has, in fact, never been in a greater position of strength, thanks to the renewed enthusiasm and vigour among Indian techies, innovators, and entrepreneurs to build from India, for India and the world. When Prime Minister Narendra Modi recently raised the clarion call for India to become ‘vocal for local’ and Aatmanirbhar, or self-reliant, he also put the spotlight on the need for an ‘Aatmanirbhar App Ecosystem’ when he launched the Government of India’s Aatmanirbhar Bharat App Innovation Challenge. “Today, when the entire nation is working towards creating an Aatmanirbhar Bharat, it is a good opportunity to give direction to their efforts, momentum to their hard work, and mentorship to their talent to evolve Apps which can satisfy our market as well as compete with the world,” PM Modi said.
    [Show full text]
  • Mapping-Chinese-Footprints
    Copyright © 2021 Law and Society Alliance Published by the Law and Society Alliance, 67D, Third Floor, Pocket A, DDA SFS Flats, Mayur Vihar Phase 3, New Delhi 110096 Photocopies and reproductions of excerpts are allowed with proper credits and with due written permission of the Law and Society Alliance. While reasonable efforts have been made to ensure that the contents of this publication are factually correct and properly referenced, the Law and Society Alliance does not accept responsibility for the accuracy or completeness of the contents and shall not be liable for any loss or damage that may be occasioned directly or indirectly by the use of, or reliance on, its contents. The designations employed and the presentation of the material in this publication do not imply the expression of any opinion whatsoever on the part of the Law and Society Alliance concerning the legal status of any country, territory, city, or area, or of its authorities, or concerning the delimitation of its frontiers or boundaries. Mapping Chinese Footprints and Influence Operations in India Published by the Law and Society Alliance - August 2021 This publication has been edited in accordance with elements of the Law and Society Alliance in-house editorial style. Edited by N. C. Bipindra, Chairman of Law and Society Alliance. Cover Images: For representational purposes only. Copies of this publication can be obtained from: Law and Society Alliance. Mobile Phone No. +91 9871050869. Contribution: Rs 200 Only Law and Society Alliance 2 August 2021 CONTENTS A. INTRODUCTION ....................................................................................................................... 4 B. CHINESE INFLUENCE ON INDIAN ENTERTAINMENT INDUSTRY .................................................. 9 C.
    [Show full text]
  • EY Media & Entertainment (M&E) Report
    A billion screens of opportunity India's Media & Entertainment sector March 2019 Foreword Global Goes Indian! A heartfelt welcome to the 2019 edition of the FICCI–EY Media & Entertainment (M&E) report. This year’s report provides an opportunity to the industry to better understand last year’s performance and take stock of the emerging market dynamics. In a nutshell, last year has proven to be a decent one for our sector as traditional sectors like broadcast TV and films seem to have maintained a healthy pace and performed as per expectations on the back of growing subscription base and ticket prices respectively. Whereas, new age digital media has created an upward trajectory of its own and an explosion in growth seems to be on the cards. Thus, Indian M&E continues to match up to predictions and become ever more vibrant. Uday Shankar The M&E sector is poised to kickstart a new era of growth. Vice President, FICCI & Chair, Technological disruptions are creating new opportunities for the FICCI Media and Entertainment Division sector. India is headed towards a billion screens of opportunity and one can hope that the sector’s incumbents shall innovate, transform and increase their relevance to mass and individual consumers. In doing so the Indian M&E sector shall become the harbinger of technical and product innovation and create content that would not only capture our imaginations but firmly establish India’s position as a global content hub. I’m confident that Indian M&E is headed towards becoming a world-class media-tech sector on the back of access to global audiences through online platforms, its large talent pool, storytelling capabilities, post-production and VFX expertise and policy and regulatory certainty.
    [Show full text]