TY - GEN
T1 - CUPA
T2 - 7th IEEE International Conference on Cyber Security and Cloud Computing and 6th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2020
AU - Alkindi, Zainab
AU - Sarrab, Mohamed
AU - Alzidi, Nasser
N1 - Publisher Copyright:
© 2020 IEEE.
PY - 2020/8
Y1 - 2020/8
N2 - Mobile applications can collect large private user data including user bank details, contact numbers, photos, saved locations, etc. This poses privacy concerns on many users while using mobile applications. In Android 6.0 and above, users can control apps permissions, where the system allows users to grant and block the dangerous apps permissions at any time. However, there are additional permissions used by the apps (normal permissions) that cannot be controlled by users, which may eventually lead to many privacy violations. In this paper, we present a new approach (CUPA) that provides users with the ability to control applications' access to Android system resources and private data based on user-defined policies. This approach allows users to reduce the level of privacy violation by providing them with some options that are not available in the Android permission system during the installation and run-Time of Android apps. The proposed approach enables users to control the behavior of the apps, including the app network connections, permissions list, and app to app communication. The proposed approach consists of three main components that can check the app behaviors during the installation and run-Time, provide the users with resources and data filtration and allow users to take appropriate actions to control the leakage of the application.
AB - Mobile applications can collect large private user data including user bank details, contact numbers, photos, saved locations, etc. This poses privacy concerns on many users while using mobile applications. In Android 6.0 and above, users can control apps permissions, where the system allows users to grant and block the dangerous apps permissions at any time. However, there are additional permissions used by the apps (normal permissions) that cannot be controlled by users, which may eventually lead to many privacy violations. In this paper, we present a new approach (CUPA) that provides users with the ability to control applications' access to Android system resources and private data based on user-defined policies. This approach allows users to reduce the level of privacy violation by providing them with some options that are not available in the Android permission system during the installation and run-Time of Android apps. The proposed approach enables users to control the behavior of the apps, including the app network connections, permissions list, and app to app communication. The proposed approach consists of three main components that can check the app behaviors during the installation and run-Time, provide the users with resources and data filtration and allow users to take appropriate actions to control the leakage of the application.
KW - Android
KW - Mobile App
KW - Permissions
KW - Security
KW - User Privacy
UR - http://www.scopus.com/inward/record.url?scp=85092301781&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85092301781&partnerID=8YFLogxK
U2 - 10.1109/CSCloud-EdgeCom49738.2020.00045
DO - 10.1109/CSCloud-EdgeCom49738.2020.00045
M3 - Conference contribution
AN - SCOPUS:85092301781
T3 - Proceedings - 2020 7th IEEE International Conference on Cyber Security and Cloud Computing and 2020 6th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2020
SP - 216
EP - 221
BT - Proceedings - 2020 7th IEEE International Conference on Cyber Security and Cloud Computing and 2020 6th IEEE International Conference on Edge Computing and Scalable Cloud, CSCloud-EdgeCom 2020
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 1 August 2020 through 3 August 2020
ER -