Privacy as part of the app decision-making process

Authors:
Patrick Gage Kelley;Lorrie Faith Cranor;Norman Sadeh
Affiliations:
University of New Mexico, Albuquerque, New Mexico, USA;Carnegie Mellon University, Pittsburgh, Pennsylvania, USA;Carnegie Mellon University, Pittsburgh, Pennsylvania, USA
Venue:
Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Year:
2013

Citing 16
Cited 1

Stopping spyware at the gate: a user study of privacy, notice and spyware

SOUPS '05 Proceedings of the 2005 symposium on Usable privacy and security
Timing is everything?: the effects of timing and placement of online privacy indicators

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
A "nutrition label" for privacy

Proceedings of the 5th Symposium on Usable Privacy and Security
How users use access control

Proceedings of the 5th Symposium on Usable Privacy and Security
Computer-supported access control

ACM Transactions on Computer-Human Interaction (TOCHI)
A methodology for empirical analysis of permission-based security models and its application to android

Proceedings of the 17th ACM conference on Computer and communications security
TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
Short paper: a look at smartphone permission models

Proceedings of the 1st ACM workshop on Security and privacy in smartphones and mobile devices
Android permissions demystified

Proceedings of the 18th ACM conference on Computer and communications security
Android permissions: user attention, comprehension, and behavior

Proceedings of the Eighth Symposium on Usable Privacy and Security
Are privacy concerns a turn-off?: engagement and privacy in social networks

Proceedings of the Eighth Symposium on Usable Privacy and Security
Expectation and purpose: understanding users' mental models of mobile app privacy through crowdsourcing

Proceedings of the 2012 ACM Conference on Ubiquitous Computing
How to ask for permission

HotSec'12 Proceedings of the 7th USENIX conference on Hot Topics in Security
I've got 99 problems, but vibration ain't one: a survey of smartphone users' concerns

Proceedings of the second ACM workshop on Security and privacy in smartphones and mobile devices
Understanding and improving app installation security mechanisms through empirical analysis of android

Proceedings of the second ACM workshop on Security and privacy in smartphones and mobile devices
A conundrum of permissions: installing applications on an android smartphone

FC'12 Proceedings of the 16th international conference on Financial Cryptography and Data Security

"Little brothers watching you": raising awareness of data leaks on smartphones

Proceedings of the Ninth Symposium on Usable Privacy and Security

Quantified Score

Hi-index	0.01

Visualization

Abstract

Smartphones have unprecedented access to sensitive personal information. While users report having privacy concerns, they may not actively consider privacy while downloading apps from smartphone application marketplaces. Currently, Android users have only the Android permissions display, which appears after they have selected an app to download, to help them understand how applications access their information. We investigate how permissions and privacy could play a more active role in app-selection decisions. We designed a short "Privacy Facts' display, which we tested in a 20-participant lab study and a 366-participant online experiment. We found that by bringing privacy information to the user when they were making the decision and by presenting it in a clearer fashion, we could assist users in choosing applications that request fewer permissions.