loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Michele Guerra ; Roberto Milanese ; Rocco Oliveto and Fausto Fasano

Affiliation: University of Molise, Italy

Keyword(s): Security, Privacy, Application Security, App Permission, Android, Dynamic Analysis, Android Permission Model.

Abstract: Over the years, there has been an explosion in the app market offering users a wide range of functionalities especially since modern devices are equipped with many hardware resources such as cameras, GPS, and so on. Unfortunately, this is sometimes associated to indiscriminate access to sensitive data. This exposes users to security and privacy risks because, although resource usage requires explicit user authorization, once permission is granted, a mobile application is usually free to access the corresponding resource until the permission is expressly revoked or the app is uninstalled. In this work, we introduce RPCDroid, a dynamic analysis tool for run-time tracking of the behavior (UI events and used permissions) of Android mobile applications that use device resources requiring dangerous permissions. We assessed the effectiveness of the tool to identify usage contexts, discriminating between different kinds of access to the same sensitive resource. We executed RPCDroid on a set of popular applications obtaining evidence that, in many cases, mobile applications access to the same resource though different user interactions. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.15.195.84

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Guerra, M. ; Milanese, R. ; Oliveto, R. and Fasano, F. (2023). RPCDroid: Runtime Identification of Permission Usage Contexts in Android Applications. In Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-624-8; ISSN 2184-4356, SciTePress, pages 714-721. DOI: 10.5220/0011797200003405

@conference{icissp23,
author={Michele Guerra and Roberto Milanese and Rocco Oliveto and Fausto Fasano},
title={RPCDroid: Runtime Identification of Permission Usage Contexts in Android Applications},
booktitle={Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP},
year={2023},
pages={714-721},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011797200003405},
isbn={978-989-758-624-8},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 9th International Conference on Information Systems Security and Privacy - ICISSP
TI - RPCDroid: Runtime Identification of Permission Usage Contexts in Android Applications
SN - 978-989-758-624-8
IS - 2184-4356
AU - Guerra, M.
AU - Milanese, R.
AU - Oliveto, R.
AU - Fasano, F.
PY - 2023
SP - 714
EP - 721
DO - 10.5220/0011797200003405
PB - SciTePress