Title: Detecting over-claim permissions and recognising dangerous permission in Android apps
Authors: Monika Shah
Addresses: Department of Computer Science and Engineering, Institute of Technology, Nirma University, Ahmedabad, Gujarat, India
Abstract: Android's security is one of the hot research topics in the current days. This is mainly due to the leakage of user's privacy information from third-party apps on mobile. Even after the permission model defined by Android we all are witnessing leakage of our critical information. This is mainly due to: 1) the permission model is proportionally coarse granular; 2) insufficient knowledge of user makes him approve over-claim permission mistakenly. Henceforth this paper focuses on recognising dangerous over-claim permission. This starts with describing the permission model, over-claim permission, and some of the dangerous over-claim permission. This paper specifically proposes an algorithm to detect the signature of dangerous permission incorporated during the upgrading version of third-party software.
Keywords: app upgrade; Android permission model; over-claim permission; dangerous permission; information security.
DOI: 10.1504/IJICS.2022.121298
International Journal of Information and Computer Security, 2022 Vol.17 No.1/2, pp.204 - 218
Received: 08 Jun 2020
Accepted: 31 Aug 2020
Published online: 04 Mar 2022 *