A Conundrum of Permissions: Installing Applications on an Android Smartphone

Kelley, Patrick Gage; Consolvo, Sunny; Cranor, Lorrie Faith; Jung, Jaeyeon; Sadeh, Norman; Wetherall, David

doi:10.1007/978-3-642-34638-5_6

Cited by 264 publications

(178 citation statements)

References 6 publications

Supporting

Mentioning

169

Contrasting

Unclassified

Order By: Relevance

“…However, consumers, firms, regulators, and ethicists may understand ''privacy'' differently. Privacy can be defined as variously as technical data protection measures (Kelley et al 2012); individual control over personal data (Westin 1970); appropriate data use in situated contexts (Nissenbaum 2009); or categories of harms to individuals and groups (Solove 2010). Mulligan et al (2016) describe privacy as an ''essentially contested concept,'' arguing that the definition of privacy depends upon situated practice, and that scholars must analyze how privacy is invoked and discussed across multiple contexts.…”

Section: Introduction: Investigating Work Dynamics That Impact Privacmentioning

confidence: 99%

Linking Platforms, Practices, and Developer Ethics: Levers for Privacy Discourse in Mobile Application Development

Shilton

Greene

2017

J Bus Ethics

View full text Add to dashboard Cite

Privacy is a critical challenge for corporate social responsibility in the mobile device ecosystem. Mobile application firms can collect granular and largely unregulated data about their consumers, and must make ethical decisions about how and whether to collect, store, and share these data. This paper conducts a discourse analysis of mobile application developer forums to discover when and how privacy conversations, as a representative of larger ethical debates, arise during development. It finds that online forums can be useful spaces for ethical deliberations, as developers use these spaces to define, discuss, and justify their values. It also discovers that ethical discussions in mobile development are prompted by work practices which vary considerably between iOS and Android, today's two major mobile platforms. For educators, regulators, and managers interested in encouraging more ethical discussion and deliberation in mobile development, these work practices provide a valuable point of entry. But while the triggers for privacy conversations are quite different between platforms, ultimately the justifications for privacy are similar. Developers for both platforms use moral and cautionary tales, moral evaluation, and instrumental and technical rationalization to justify and legitimize privacy as a value in mobile development. Understanding these three forms of justification for privacy is useful to educators, regulators, and managers who wish to promote ethical practices in mobile development.

show abstract

Section: Introduction: Investigating Work Dynamics That Impact Privacmentioning

confidence: 99%

Linking Platforms, Practices, and Developer Ethics: Levers for Privacy Discourse in Mobile Application Development

Shilton

Greene

2017

J Bus Ethics

View full text Add to dashboard Cite

show abstract

“…Some people believe that it is someone else's responsibility to ensure that apps respect their privacy [4] and consequently skip through the permissions interface without taking much notice. Finally, there is evidence that many rely heavily on star ratings, full text reviews or word of mouth when deciding whether to install an app or not [4], so when they see the interface they simply grant the permission without thinking about it.…”

Section: Dismissing the Permission Interfacementioning

confidence: 99%

“…Finally, there is evidence that many rely heavily on star ratings, full text reviews or word of mouth when deciding whether to install an app or not [4], so when they see the interface they simply grant the permission without thinking about it.…”

Section: Dismissing the Permission Interfacementioning

confidence: 99%

“…They also need to be informed enough to rely on the signal-bearing indicators in deciding whether to grant access or not. A number of researchers have concluded that this understanding is not necessarily a given [4,14,15,16]. Kelley et al [4], for example, declare the permission descriptions to be 'at best vague, and at worst confusing, misleading, jargon-filled, and poorly grouped' (p.78).…”

Section: Problems When Considering Permissionmentioning

confidence: 99%

“…The fact that this decision has to be made post-installation is problematical since it requires post-commitment abandonment of a predefined course of action. These interfaces also tend to use overly technical jargon and complex wording [4].…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

The simpler, the better? Presenting the COPING Android permission-granting interface for better privacy-related decisions

Gerber

Volkamer

Renaud

2017

Journal of Information Security and Applications

View full text Add to dashboard Cite

One of the great innovations of the modern world is the Smartphone app. The sheer multitude of available apps attests to their popularity and general ability to satisfy our wants and needs. The flip side of the functionality these apps offer is their potential for privacy invasion. Apps can, if granted permission, gather a vast amount of very personal and sensitive information. App developers might exploit the combination of human propensities and the design of the Android permission-granting interface to gain permission to access more information than they really need. This compromises personal privacy. The fact that the Android is the globally dominant phone means widespread privacy invasion is a real concern.We, and other researchers, have proposed alternatives to the Android permission-granting interface. The aim of these alternatives is to highlight privacy considerations more effectively during app installation: to ensure that privacy becomes part of the decision-making process. We report, here, on a study with 344 participants that compared the impact of a number of permission-granting interface proposals, including our own (called the COPING interface -COmprehensive PermIssioN Granting) and two Android interfaces. To conduct the comparison we carried out an online study with a mixed-model design.Our main finding is that the focus in these interfaces ought to be on improving the quality of the provided information rather than merely simplifying the interface. The intuitive approach is to reduce and simplify information, but we discovered that this actually impairs the quality of the decision. Our recommendation is that further investigation is required in order to find the "sweet spot" where understandability and comprehensiveness are maximised.

show abstract

Dark Side of Online Social Networks: Technical, Managerial, and Behavioral Perspectives

Kéfi¹,

Pérez²

2017

Encyclopedia of Social Network Analysis and Mining

View full text Add to dashboard Cite

Online social networks deviance; Online social networks misusage; Online social networking threats, Dark side of digital social networks Glossary APIs Application programming interfaces BFAS Bergen Facebook Addiction Scale DDoS Distributed denial-of-service DSM-V The fifth version of diagnostic and statistical manual of mental disorders IP Internet Protocol OPPA Online Privacy Protection act of 2003 OSINT Open source intelligence PIPEDA Personal Information Protection and Electronic Documents Act SmartPLS 3.0 Software that performs latent variable modeling (e.g., PLS-POS, IPMA) Definition There is an increasing awareness that online social networks (OSN), besides their numerous benefits like social capital enhancement and knowledge dissemination, present a "Dark Side," including a set of complex and often alarming ways in which the development and use of these platforms affect private, professional, and social life (Fox and Moreland 2015; Turel and Qahri-Saremi 2016). This dark side refers, among others, to privacy, security, maliciousness, and more generally all bad effects and deviancies that one can observe and analyze on the various types of online social networks. Among the largest online social networks nowadays, one can quote Facebook, Twitter, Weibo, and Instagram that have rapidly emerged as the most widely adopted and continuously used information and communication technology devices. Thus, analyzing the dark side of online social networks requires both the ability to (1) understand the socio-psychological drivers of digital communication usage to better analyze addiction, fatigue, privacy, and security concerns better and (2) build methodologies and approaches to identify and capture the various malicious activities that take place in OSN.

show abstract

A Conundrum of Permissions: Installing Applications on an Android Smartphone

Cited by 264 publications

References 6 publications

Linking Platforms, Practices, and Developer Ethics: Levers for Privacy Discourse in Mobile Application Development

Linking Platforms, Practices, and Developer Ethics: Levers for Privacy Discourse in Mobile Application Development

The simpler, the better? Presenting the COPING Android permission-granting interface for better privacy-related decisions

Dark Side of Online Social Networks: Technical, Managerial, and Behavioral Perspectives

Contact Info

Product

Resources

About