Privacy revelations for web and mobile apps

Authors:
D. Wetherall;D. Choffnes;B. Greenstein;S. Han;P. Hornyack;J. Jung;S. Schechter;X. Wang
Affiliations:
University of Washington;University of Washington;Intel Labs;University of Washington;University of Washington;Intel Labs;Microsoft Research;University of Washington
Venue:
HotOS'13 Proceedings of the 13th USENIX conference on Hot topics in operating systems
Year:
2011

Citing 9
Cited 2

k-anonymity: a model for protecting privacy

International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems
Adverse selection in online "trust" certifications

Proceedings of the 11th International Conference on Electronic Commerce
The Wi-Fi privacy ticker: improving awareness & control of personal information exposure on Wi-Fi

Proceedings of the 12th ACM international conference on Ubiquitous computing
An empirical study of privacy-violating information flows in JavaScript web applications

Proceedings of the 17th ACM conference on Computer and communications security
TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
Searching the searchers with searchaudit

USENIX Security'10 Proceedings of the 19th USENIX conference on Security
Privad: practical privacy in online advertising

Proceedings of the 8th USENIX conference on Networked systems design and implementation
Differential privacy

ICALP'06 Proceedings of the 33rd international conference on Automata, Languages and Programming - Volume Part II
MockDroid: trading privacy for application functionality on smartphones

Proceedings of the 12th Workshop on Mobile Computing Systems and Applications

Measuring and predicting web login safety

Proceedings of the first ACM SIGCOMM workshop on Measurements up the stack
A conundrum of permissions: installing applications on an android smartphone

FC'12 Proceedings of the 16th international conference on Financial Cryptography and Data Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Users of Web and mobile apps must often decide whether to give the apps access to personal information without knowing what they will do with it. We argue that users could better manage their privacy and privacy standards would rise if the operating system simply revealed to users how their apps spread personal information. However, for this strategy to be effective, the research community must go well beyond today's low-level monitoring techniques to develop predictive, user-facing descriptions of information exposure that are grounded in measurement and analysis.