SoK: Privacy on Mobile Devices – It’s Complicated

Spensky, Chad; Stewart, Jeffrey; Yerukhimovich, Arkady; Shay, Richard; Trachtenberg, Ari; Housley, Rick; Cunningham, Robert K.

doi:10.1515/popets-2016-0018

Cited by 37 publications

(23 citation statements)

References 79 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…This problem can be observed for many smart city technologies, including the IoT, wearable devices, sensor networks, autonomous systems, and intelligent vehicles, especially when these devices support a wide range of protocols and include many software components. This is naturally the case for mobile phones that, when compromised, can lead to a complete violation of user privacy (see [170] and [64] for surveys on mobile phone security and privacy). The fact that users can actively download third-party software onto the devices furthermore opens up the problem of malware [171].…”

Section: No Privacy Without Securitymentioning

confidence: 99%

“…In addition, these devices consist of various components developed by different parties with different goals and incentives, which makes the protection of sensitive user data more difficult. As a result, existing privacy solutions often focus only on a small part of the mobile device ecosystem and thus leave the user vulnerable [64].…”

Section: A Ubiquitous Connectivitymentioning

confidence: 99%

“…Even though both Android and iOS employ permission models to restrict the data that third-party apps can access, apps often request more permissions than necessary, and users often grant permissions that are more far-reaching than expected [199]. We refer the reader to a recent survey by Spensky et al [64] for a more detailed discussion of these issues.…”

Section: A Ubiquitous Connectivitymentioning

confidence: 99%

See 2 more Smart Citations

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Eckhoff

Wagner

2018

IEEE Commun. Surv. Tutorials

229

102

View full text Add to dashboard Cite

Many modern cities strive to integrate information technology into every aspect of city life to create so-called smart cities. Smart cities rely on a large number of application areas and technologies to realize complex interactions between citizens, third parties, and city departments. This overwhelming complexity is one reason why holistic privacy protection only rarely enters the picture. A lack of privacy can result in discrimination and social sorting, creating a fundamentally unequal society. To prevent this, we believe that a better understanding of smart cities and their privacy implications is needed. We therefore systematize the application areas, enabling technologies, privacy types, attackers and data sources for the attacks, giving structure to the fuzzy term "smart city". Based on our taxonomies, we describe existing privacy-enhancing technologies, review the state of the art in real cities around the world, and discuss promising future research directions. Our survey can serve as a reference guide, contributing to the development of privacy-friendly smart cities.

show abstract

Section: No Privacy Without Securitymentioning

confidence: 99%

Section: A Ubiquitous Connectivitymentioning

confidence: 99%

Section: A Ubiquitous Connectivitymentioning

confidence: 99%

See 1 more Smart Citation

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Eckhoff

Wagner

2018

IEEE Commun. Surv. Tutorials

229

102

View full text Add to dashboard Cite

show abstract

“…Such concerns are grounded in concrete vulnerabilities of existing wearables, as shown in an extensive survey of consumer wearables [60] spanning from typical activity trackers to smart textile implants -albeit ignoring pet wearables or indeed any wearable not directly worn by a human. A systematization of knowledge on privacy on mobile devices by Spensky et al [62] found that many privacy related vulnerabilities arise due to the complexity of software ecosystems, as technologies to protect privacy tend to focus on small parts of the ecosystem, abstracting away from its entire complexity. Pu and Grossklags [54] investigated factors that influenced users' privacy concerns towards data of themselves and data of friends (e.g., through Facebook connections).…”

Section: Related Work 21 Pet Wearables and Privacy Concernsmentioning

confidence: 99%

Pets without PETs: on pet owners’ under-estimation of privacy concerns in pet wearables

Linden

Edwards

Hadar

et al. 2020

Proceedings on Privacy Enhancing Technologies

View full text Add to dashboard Cite

We report on a mixed-method, comparative study investigating whether there is a difference between privacy concerns expressed about pet wearables as opposed to human wearables – and more importantly, why. We extracted the privacy concerns found in product reviews (N=8,038) of pet wearables (activity, location, and dual-function trackers), contrasting the (lack of) concerns and misuse to a curated set of reviews for similar human-oriented wearables (N=20,431). Our findings indicate that, while overall very few privacy concerns are expressed in product reviews, for pet wearables they are expressed even less, even though consumers use these devices in a manner which impacts both personal and bystander privacy. An additional survey of pet owners (N=201) eliciting what factors would cause them to not purchase (or stop using) pet wearables indicated comparably few privacy concerns, strengthening the representativeness of our findings. A thematic analysis reveals that the lack of privacy concerns may be explained by, among other factors, emotional drivers to purchase the device, and prioritization of (desired) functionality to support those emotional drivers over privacy requirements. Moreover, we found that pet wearables are used in different ways than originally intended, which raise novel privacy implications to be dealt with. We propose that in order to move towards more privacy-conscious use of pet wearables, a combination of understanding consumer rationale and behavior as well as ensuring data protection legislation is adequate to real-world use is needed.

show abstract

“…In [163], the authors have shown that smart device privacy is complicated since it consists of different layers of hardware, operating system, and apps. Another layer of the sensor data mining process is added over this layered stack.…”

Section: 2mentioning

confidence: 99%

Sensors of Smart Devices in the Internet of Everything (IoE) Era: Big Opportunities and Massive Doubts

et al. 2019

View full text Add to dashboard Cite

Smart device industry allows developers and designers to embed different sensors, processors, and memories in small-size electronic devices. Sensors are added to enhance the usability of these devices and improve the quality of experience through data collection and analysis. However, with the era of big data and machine learning, sensors’ data may be processed by different techniques to infer various hidden information. The extracted information may be beneficial to device users, developers, and designers to enhance the management, operation, and development of these devices. However, the extracted information may be used to compromise the security and the privacy of humans in the era of Internet of Everything (IoE). In this work, we attempt to review the process of inferring meaningful data from smart devices’ sensors, especially, smartphones. In addition, different useful machine learning applications based on smartphones’ sensors data are shown. Moreover, different side channel attacks utilizing the same sensors and the same machine learning algorithms are overviewed.

show abstract

SoK: Privacy on Mobile Devices – It’s Complicated

Cited by 37 publications

References 79 publications

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Privacy in the Smart City—Applications, Technologies, Challenges, and Solutions

Pets without PETs: on pet owners’ under-estimation of privacy concerns in pet wearables

Sensors of Smart Devices in the Internet of Everything (IoE) Era: Big Opportunities and Massive Doubts

Contact Info

Product

Resources

About