PPChecker: Towards Accessing the Trustworthiness of Android Apps’ Privacy Policies

Yu, Le; Wang, Liu; Chen, Jiachi; Zhou, Hao; Zhang, Tao; Chang, Henry; Leung, Hareton

doi:10.1109/tse.2018.2886875

Cited by 38 publications

(23 citation statements)

References 48 publications

(61 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We excluded mobile-and IoT-specific papers from our survey, because the domains are subject to different privacy concerns, and constrained in terms of privacy communication. Mobile apps are among the most privacy intrusive means of interacting with an online service [12] and privacy policies are almost always incorrect, incomplete, imprecise, inconsistent and/or privacy-unfriendly [160]. Even health apps are often not GDPR compliant [58].…”

Section: Investigating Context-dependency Of Privacymentioning

confidence: 99%

Understanding Online Privacy—A Systematic Review of Privacy Visualizations and Privacy by Design Guidelines

Barth

Hartel

2022

ACM Comput. Surv.

View full text Add to dashboard Cite

Privacy visualizations help users understand the privacy implications of using an online service. Privacy by Design guidelines provide generally accepted privacy standards for developers of online services. To obtain a comprehensive understanding of online privacy, we review established approaches, distill a unified list of 15 privacy attributes and rank them based on perceived importance by users and privacy experts. We then discuss similarities, explain notable differences, and examine trends in terms of the attributes covered. Finally, we show how our results provide a foundation for user-centric privacy visualizations, inspire best practices for developers, and give structure to privacy policies.

show abstract

Section: Investigating Context-dependency Of Privacymentioning

confidence: 99%

Understanding Online Privacy—A Systematic Review of Privacy Visualizations and Privacy by Design Guidelines

Barth

Hartel

2022

ACM Comput. Surv.

View full text Add to dashboard Cite

show abstract

“…Yu et al [22] presented PPCkecker, a tool for assessing the trustworthiness of Android apps' privacy policies.…”

Section: Privacy Policymentioning

confidence: 99%

Mobile app privacy in software engineering research: A systematic mapping study

Ebrahimi

Tushev

Mahmoud

2021

Information and Software Technology

View full text Add to dashboard Cite

“…The privacy threats that address the same concerns are grouped into the same subcategory. We classify privacy compliance into the following three subcategories Omoronyia et al, 2012;De and Metayer, 2016;Yu et al, 2021;Mihaylov et al, 2016;The OWASP Foundation, 2015). There are 16 individual rights identified in our study (see Table 1).…”

Section: Compliancementioning

confidence: 99%

Common Privacy Weaknesses and Vulnerabilities in Software Applications

Sangaroonsilp¹,

Dam²,

Ghose³

2021

Preprint

View full text Add to dashboard Cite

In this digital era, our privacy is under constant threat as our personal data and traceable online/offline activities are frequently collected, processed and transferred by many software applications. Privacy attacks are often formed by exploiting vulnerabilities found in those software applications. The Common Weakness Enumeration (CWE) and Common Vulnerabilities and Exposures (CVE) systems are currently the main sources that software engineers rely on for understanding and preventing publicly disclosed software vulnerabilities. However, our study on all 922 weaknesses in the CWE and 156,537 vulnerabilities registered in the CVE to date has found a very small coverage of privacy-related vulnerabilities in both systems, only 4.45% in CWE and 0.1% in CVE. These also cover only a small number of areas of privacy threats that have been raised in existing privacy software engineering research, privacy regulations and frameworks, and industry sources. The actionable insights generated from our study led to the introduction of 11 new common privacy weaknesses to supplement the CWE system, making it become a source for both security and privacy vulnerabilities.

show abstract

PPChecker: Towards Accessing the Trustworthiness of Android Apps’ Privacy Policies

Cited by 38 publications

References 48 publications

Understanding Online Privacy—A Systematic Review of Privacy Visualizations and Privacy by Design Guidelines

Understanding Online Privacy—A Systematic Review of Privacy Visualizations and Privacy by Design Guidelines

Mobile app privacy in software engineering research: A systematic mapping study

Common Privacy Weaknesses and Vulnerabilities in Software Applications

Contact Info

Product

Resources

About