PerRec: A permission configuration recommender system for mobile apps

Yanxiao Cheng; Zheng Yan

doi:10.1007/978-3-319-65482-9_34

PerRec: A permission configuration recommender system for mobile apps

Yanxiao Cheng, Zheng Yan^*

^*Corresponding author for this work

Xidian University

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

2 Citations (Scopus)

Abstract

Android operating system uses a security mechanism based on permissions to restrict mobile apps to access sensitive device resources. However, because of such disadvantages as coarse-granularity of permission management and vague permission description, the current permission-based security mechanism of Android is not sufficiently effective in practice. In addition, only a small number of users realize the importance of permission settings and mostly they cannot make a proper decision on permission settings due to lack of runtime information and professional knowledge. In this paper, we propose PerRec, a permission configuration recommender system based on trust management, which assists the mobile users to set permissions in order to enhance user privacy and device security. It is designed based on our pre-developed reputation system named TruBeRepec [1] to get the trust and reputation values of an app and further offer recommendations on how to set permissions. Based on system implementation, we evaluate the accuracy and safety of PerRec by comparing PerRec’s recommendations with the Android system default permission settings. The result shows that PerRec can provide effective permission recommendations to prevent potential security threats. We further conduct a small-scale user study to demonstrate its user acceptance.

Original language	English
Title of host publication	Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings
Publisher	Springer
Pages	476-485
Number of pages	10
Volume	10393 LNCS
ISBN (Print)	9783319654812
DOIs	https://doi.org/10.1007/978-3-319-65482-9_34
Publication status	Published - 2017
MoE publication type	A4 Conference publication
Event	International Conference on Algorithms and Architectures for Parallel Processing - Helsinki, Finland Duration: 21 Aug 2017 → 23 Aug 2017 Conference number: 17

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	10393 LNCS
ISSN (Print)	03029743
ISSN (Electronic)	16113349

Conference

Conference	International Conference on Algorithms and Architectures for Parallel Processing
Abbreviated title	ICA3PP
Country/Territory	Finland
City	Helsinki
Period	21/08/2017 → 23/08/2017

Keywords

Android platform
Mobile application
Permission configuration
Recommender system
Trust management

Access to Document

10.1007/978-3-319-65482-9_34

Cite this

Cheng, Y., & Yan, Z. (2017). PerRec: A permission configuration recommender system for mobile apps. In Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings (Vol. 10393 LNCS, pp. 476-485). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10393 LNCS). Springer. https://doi.org/10.1007/978-3-319-65482-9_34

Cheng, Yanxiao ; Yan, Zheng. / PerRec : A permission configuration recommender system for mobile apps. Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings. Vol. 10393 LNCS Springer, 2017. pp. 476-485 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{eda079d067bc4429a2538d6fdbdeb328,

title = "PerRec: A permission configuration recommender system for mobile apps",

abstract = "Android operating system uses a security mechanism based on permissions to restrict mobile apps to access sensitive device resources. However, because of such disadvantages as coarse-granularity of permission management and vague permission description, the current permission-based security mechanism of Android is not sufficiently effective in practice. In addition, only a small number of users realize the importance of permission settings and mostly they cannot make a proper decision on permission settings due to lack of runtime information and professional knowledge. In this paper, we propose PerRec, a permission configuration recommender system based on trust management, which assists the mobile users to set permissions in order to enhance user privacy and device security. It is designed based on our pre-developed reputation system named TruBeRepec [1] to get the trust and reputation values of an app and further offer recommendations on how to set permissions. Based on system implementation, we evaluate the accuracy and safety of PerRec by comparing PerRec{\textquoteright}s recommendations with the Android system default permission settings. The result shows that PerRec can provide effective permission recommendations to prevent potential security threats. We further conduct a small-scale user study to demonstrate its user acceptance.",

keywords = "Android platform, Mobile application, Permission configuration, Recommender system, Trust management",

author = "Yanxiao Cheng and Zheng Yan",

year = "2017",

doi = "10.1007/978-3-319-65482-9_34",

language = "English",

isbn = "9783319654812",

volume = "10393 LNCS",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "476--485",

booktitle = "Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings",

address = "Germany",

note = "International Conference on Algorithms and Architectures for Parallel Processing, ICA3PP ; Conference date: 21-08-2017 Through 23-08-2017",

}

Cheng, Y & Yan, Z 2017, PerRec: A permission configuration recommender system for mobile apps. in Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings. vol. 10393 LNCS, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10393 LNCS, Springer, pp. 476-485, International Conference on Algorithms and Architectures for Parallel Processing, Helsinki, Finland, 21/08/2017. https://doi.org/10.1007/978-3-319-65482-9_34

PerRec: A permission configuration recommender system for mobile apps. / Cheng, Yanxiao; Yan, Zheng.
Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings. Vol. 10393 LNCS Springer, 2017. p. 476-485 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10393 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

TY - GEN

T1 - PerRec

T2 - International Conference on Algorithms and Architectures for Parallel Processing

AU - Cheng, Yanxiao

AU - Yan, Zheng

N1 - Conference code: 17

PY - 2017

Y1 - 2017

N2 - Android operating system uses a security mechanism based on permissions to restrict mobile apps to access sensitive device resources. However, because of such disadvantages as coarse-granularity of permission management and vague permission description, the current permission-based security mechanism of Android is not sufficiently effective in practice. In addition, only a small number of users realize the importance of permission settings and mostly they cannot make a proper decision on permission settings due to lack of runtime information and professional knowledge. In this paper, we propose PerRec, a permission configuration recommender system based on trust management, which assists the mobile users to set permissions in order to enhance user privacy and device security. It is designed based on our pre-developed reputation system named TruBeRepec [1] to get the trust and reputation values of an app and further offer recommendations on how to set permissions. Based on system implementation, we evaluate the accuracy and safety of PerRec by comparing PerRec’s recommendations with the Android system default permission settings. The result shows that PerRec can provide effective permission recommendations to prevent potential security threats. We further conduct a small-scale user study to demonstrate its user acceptance.

AB - Android operating system uses a security mechanism based on permissions to restrict mobile apps to access sensitive device resources. However, because of such disadvantages as coarse-granularity of permission management and vague permission description, the current permission-based security mechanism of Android is not sufficiently effective in practice. In addition, only a small number of users realize the importance of permission settings and mostly they cannot make a proper decision on permission settings due to lack of runtime information and professional knowledge. In this paper, we propose PerRec, a permission configuration recommender system based on trust management, which assists the mobile users to set permissions in order to enhance user privacy and device security. It is designed based on our pre-developed reputation system named TruBeRepec [1] to get the trust and reputation values of an app and further offer recommendations on how to set permissions. Based on system implementation, we evaluate the accuracy and safety of PerRec by comparing PerRec’s recommendations with the Android system default permission settings. The result shows that PerRec can provide effective permission recommendations to prevent potential security threats. We further conduct a small-scale user study to demonstrate its user acceptance.

KW - Android platform

KW - Mobile application

KW - Permission configuration

KW - Recommender system

KW - Trust management

UR - http://www.scopus.com/inward/record.url?scp=85028457897&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-65482-9_34

DO - 10.1007/978-3-319-65482-9_34

M3 - Conference article in proceedings

AN - SCOPUS:85028457897

SN - 9783319654812

VL - 10393 LNCS

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 476

EP - 485

BT - Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings

PB - Springer

Y2 - 21 August 2017 through 23 August 2017

ER -

Cheng Y, Yan Z. PerRec: A permission configuration recommender system for mobile apps. In Algorithms and Architectures for Parallel Processing - 17th International Conference, ICA3PP 2017, Proceedings. Vol. 10393 LNCS. Springer. 2017. p. 476-485. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-65482-9_34

PerRec: A permission configuration recommender system for mobile apps

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this