PoliDroid-AS: A Privacy Policy Alignment Plugin for Android Studio
نویسندگان
چکیده
Mobile applications frequently access personal information to meet user or business requirements. Developers are, in turn, often required to align their code with a privacy policy or to create the privacy requirements to specify the collection and use of personal information. However, it is challenging for a regular programmer to create code complying with a privacy policy. To aid app developers in such tasks, we have created PoliDroidAS, an Android Studio plugin for the detection of code-policy misalignments and the generation of privacy specifications. Keywords-mobile; privacy; Android;
منابع مشابه
Flexible and Fine-grained Mandatory Access Control on Android for Diverse Security and Privacy Policies
In this paper we tackle the challenge of providing a generic security architecture for the Android OS that can serve as a flexible and effective ecosystem to instantiate different security solutions. In contrast to prior work our security architecture, termed FlaskDroid, provides mandatory access control simultaneously on both Android’s middleware and kernel layers. The alignment of policy enfo...
متن کاملGUILeak: Tracing Privacy Policy Claims on User Input Data for Android Applications
The Android mobile platform supports millions of users and their mobile devices across more than 190 countries around the world. This popularity coupled with user data collection by Android apps has made privacy protection a well-known challenge in the Android ecosystem. In practice, app producers provide privacy policies disclosing what information is collected and processed by the app. Howeve...
متن کاملLogChamber: Inferring Source Code Locations Corresponding to Mobile Applications Run-time Logs
We present a development support tool, called LogChamber, which infers source-code locations by analyzing run-time logs of mobile applications. During development, developers insert log functions into applications calls in order to confirm that the applications correctly run as expected. After that, they need to have a process for estimating a program’s runtime behavior in order to identify the...
متن کاملEnforcing Least Privilege with Android Permissions in Mobile App Development
Though there is evidence that presenting Android app permission information to the user in a clear, more contextdependent way can influence mobile phone users in choosing apps that request fewer permissions [4], ultimately users still tend to make poor privacy and security decisions, especially when warnings are unclear or inhibitive [1]. As a result, we believe that code developers should take...
متن کاملGUILeak: Identifying Privacy Practices on GUI-Based Data
As the most popular mobile platform, Android devices have millions of users around the world. As these devices are used everyday and collects various data from users, effective privacy protection has been a well known challenge in the Android world. Existing privacy-protection approaches focus on information accessed from Android API methods, such as location and device ID, while existing secur...
متن کامل