Analysis of Android Applications' Permissions

Johnson, Ryan; Wang, Zhaohui; Gagnon, Corey; Stavrou, Angelos

doi:10.1109/sere-c.2012.44

Cited by 47 publications

(25 citation statements)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…When the user confirms the access, the app will have the requested permissions at all times (until the app is uninstalled). If an application requests the resource without having the appropriate permission, then the Android OS may throw a Security Exception or simply not grant the requested resource [20]. These permission-protected resources are accessed through the Android API and other classes resident on the phone.…”

Section: A Permissions In Android Applicationmentioning

confidence: 99%

Generating various contexts from permissions for testing Android applications

Song¹,

Han²,

Jeong³

et al. 2015

International Conferences on Software Engineering and Knowledge Engineering

View full text Add to dashboard Cite

Abstract-Context-awareness of mobile applications yields several issues for testing, since the mobile applications should be testable in any environment and with any contextual input. In previous studies of testing for Android applications as eventdriven systems, many researchers have focused on using the generated test cases considering only GUI events. However, it is difficult to detect failures in the changes in the context in which applications run. It is important to consider various contexts since the mobile applications adapt and use novel features and sensors of mobile devices. In this paper, we provide the method of systematically generating various executing contexts from permissions. By referring the lists of permissions, the resources that the applications use for running Android applications can be inferred easily. The various contexts of an application can be generated by permuting resource conditions, and the permutations of the contexts are prioritized. We have evaluated the usefulness and effectiveness of our method by showing that our method contributes to detect faults.

show abstract

Section: A Permissions In Android Applicationmentioning

confidence: 99%

Generating various contexts from permissions for testing Android applications

Song¹,

Han²,

Jeong³

et al. 2015

International Conferences on Software Engineering and Knowledge Engineering

View full text Add to dashboard Cite

show abstract

“…In [12], researchers downloaded mobile applications by crawling the Android Market; they used a statistical analysis on the byte-code level and matched the method calls in the Android API to the permissions in the manifest file. Although the study does not provide a userfocused security solution, it reveals which applications use too many or incomplete permissions.…”

Section: A2 Permission-based Solutionsmentioning

confidence: 99%

A Comprehensive Analysis of Android Security and Proposed Solutions

Yüksel¹,

Zaim²,

Aydın³

2014

IJCNIS

View full text Add to dashboard Cite

Abstract-The increasing popularity of smart devices have led users to complete all of their daily work with these devices. Users are now able to shop online, share information with the applications that they install on their smart devices. Installed applications gain access to various sensitive information, such as the user's contact list, phone number, location. However, there is no control mechanism in place that can check whether these applications are safe to install. Therefore, applications are installed according to the users' decisions, without any limitations or warnings. As a result, users become the target of malicious applications, and the personal security and privacy are compromised. In this study, we investigate the security solutions that aim to protect the privacy and security of Android users. We reveal the shortcomings of mobile security solutions and shed light on the research community. Additionally, we present the taxonomy of Android-based mobile security solutions.

show abstract

“…al. [16] proposed architecture for automatic downloading of android applications from the android market. Different algorithms employed for searching of applications such as downloading applications by application category.…”

Section: Permission-based Analysismentioning

confidence: 99%