Title: Detecting over-claim permissions and recognising dangerous permission in Android apps

Authors: Monika Shah

Addresses: Department of Computer Science and Engineering, Institute of Technology, Nirma University, Ahmedabad, Gujarat, India

Abstract: Android's security is one of the hot research topics in the current days. This is mainly due to the leakage of user's privacy information from third-party apps on mobile. Even after the permission model defined by Android we all are witnessing leakage of our critical information. This is mainly due to: 1) the permission model is proportionally coarse granular; 2) insufficient knowledge of user makes him approve over-claim permission mistakenly. Henceforth this paper focuses on recognising dangerous over-claim permission. This starts with describing the permission model, over-claim permission, and some of the dangerous over-claim permission. This paper specifically proposes an algorithm to detect the signature of dangerous permission incorporated during the upgrading version of third-party software.

Keywords: app upgrade; Android permission model; over-claim permission; dangerous permission; information security.

DOI: 10.1504/IJICS.2022.121298

International Journal of Information and Computer Security, 2022 Vol.17 No.1/2, pp.204 - 218

Received: 08 Jun 2020
Accepted: 31 Aug 2020

Published online: 04 Mar 2022 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article