"Mobile phones are one of the most insecure devices that were ever available, so they're very easy to trace; they're very easy to tap."
-evgeny morozov
As the Android mobile OS has become popular, malicious applications (apps) have become increasingly common. Users will often grant apps permission to view personal information and change system settings without fully realizing how much damage a malicious app can do by taking advantage of those permissions. We aim to complete and test the Android Application Permission Manager (AAPM) Framework, which will provide users with in-depth information about the security risks posed by their apps. This program will take into account the number of permissions, how dangerous the permissions are, and whether dangerous combinations are present, among other factors. By utilizing AAPM, users will be able to evaluate risk and protect themselves from malicious apps much more easily.
As the Android mobile OS has become popular, malicious applications (apps) have become increasingly common. Users will often grant apps permission to view personal information and change system settings without fully realizing how much damage a malicious app can do by taking advantage of those permissions. We aim to complete and test the Android Application Permission Manager (AAPM) Framework, which will provide users with in-depth information about the security risks posed by their apps. This program will take into account the number of permissions, how dangerous the permissions are, and whether dangerous combinations are present, among other factors. By utilizing AAPM, users will be able to evaluate risk and protect themselves from malicious apps much more easily.
This research work was conducted at Oakland University in the UnCoRe program - REU site supported by the National Science Foundation under Grant No. CNS-1460897. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the National Science Foundation.