Expectation and purpose: Understanding users' mental models of mobile app privacy through crowdsourcing

Jialiu Lin*, Shahriyar Amini, Jason I. Hong, Norman Sadeh, Janne Lindqvist, Joy Zhang

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionScientificpeer-review

253 Citations (Scopus)

Abstract

Smartphone security research has produced many useful tools to analyze the privacy-related behaviors of mobile apps. However, these automated tools cannot assess people's perceptions of whether a given action is legitimate, or how that action makes them feel with respect to privacy. For example, automated tools might detect that a blackjack game and a map app both use one's location information, but people would likely view the map's use of that data as more legitimate than the game. Our work introduces a new model for privacy, namely privacy as expectations. We report on the results of using crowdsourcing to capture users' expectations of what sensitive resources mobile apps use. We also report on a new privacy summary interface that prioritizes and highlights places where mobile apps break people's expectations. We conclude with a discussion of implications for employing crowdsourcing as a privacy evaluation technique.

Original languageEnglish
Title of host publicationUbiComp'12 - Proceedings of the 2012 ACM Conference on Ubiquitous Computing
Pages501-510
Number of pages10
DOIs
Publication statusPublished - 19 Oct 2012
MoE publication typeA4 Article in a conference publication
EventACM International Joint Conference on Pervasive and Ubiquitous Computing - Pittsburgh, United States
Duration: 5 Sep 20128 Sep 2012
Conference number: 14

Conference

ConferenceACM International Joint Conference on Pervasive and Ubiquitous Computing
Abbreviated titleUbiComp
CountryUnited States
CityPittsburgh
Period05/09/201208/09/2012

Keywords

  • Android permissions
  • Crowdsourcing
  • Mental model
  • Mobile app
  • Privacy as expectations
  • Privacy summary

Fingerprint Dive into the research topics of 'Expectation and purpose: Understanding users' mental models of mobile app privacy through crowdsourcing'. Together they form a unique fingerprint.

Cite this