ESORICS 2016 Technical Papers Program

Abstract

In current Android architecture, users have to decide whether an app is safe to use or not. Technical-savvy users can make correct decisions to avoid unnecessary privacy breach. However, most users may have difficulty to make correct decisions. DroidNet is an Android permission recommendation framework based on crowdsourcing. In this framework, DroidNet runs new apps under probation mode without granting their permission requests up-front. It provides recommendations on whether to accept or reject the permission requests based on decisions from peer expert users. To seek expert users, we propose an expertise rating algorithm using transitional Bayesian inference model. The recommendation is based on the aggregated expert responses and its confidence level. Our evaluation results demonstrate that given sufficient number of experts in the network, DroidNet can provide accurate recommendations and cover majority of app requests given a small coverage from a small set of initial experts.

People

Papers and Resources

  1. Bahman Rashidi, Carol Fung, XDroid: An Android Permission Control Using Hidden Markov Chain and Online Learning, IEEE CNS 2016.PDF | BibTeX

  2. Bahman Rashidi, Carol Fung, Anh Nguyen, Tam Vu, Android Permission Recommendation using Transitive Bayesian Inference Model, ESORICS 2016.

  3. Bahman Rashidi, Carol Fung, Tam Vu, Android Fine-grained Permission Control System with Real-Time Expert Recommendations, Pervasive and Mobile Computing 2016. BibTeX

  4. Bahman Rashidi, Carol Fung, BotTracer: Bot User Detection Using Clustering Method in RecDroid, IEEE/IFIP NOMS 2016. PDF | BibTeX | PPT

  5. Bahman Rashidi, Carol Fung, Disincentivizing Malicious Users in RecDroid Using Bayesian Game Model, JISIS, Vol. 5, No. 2, May 2015. PDF | BibTeX

  6. Bahman Rashidi, Carol Fung, Gerrit Bond, Steven Jackson, Marcus Pare, Tam Vu, Demo: RecDroid- An Android Resource Access Permission Recommendation System, ACM MobiHoc 2015. PDF | BibTeX

  7. Bahman Rashidi, Carol Fung, A Game-Theoretic Model for Defending Against Malicious Users in RecDroid, IEEE/IFIP DISSECT 2015. PDF | BibTeX | PPT

  8. Bahman Rashidi, Carol Fung, Tam Vu, Dude, Ask The Experts: Android Resource Access Permission Recommendation with RecDroid, IFIP/IEEE IM 2015. PDF | BibTeX | Video

  9. Bahman Rashidi, Carol Fung, Tam Vu, RecDroid: A Resource Access Permission Control Portal and Recommendation Service for Smartphone Users, ACM MobiCom (SPME14). PDF | BibTeX | PPT | Video

DroidAid Video:


Other Resources:

 

DroidCat: A real human-interaction Android Application Logs Dataset