Improve User's Security Literacy by Experiencing Behavior of Pseudo Android Malware

Abstract

Recent years, Android malware which execute malicious attacks within the scope of permissions which was approved by user is increasing. Generally it is installed by user. Therefore user can avoid being infected with obvious malware by checking permissions which application requires. However many users install applications without checking permissions and get infected. Such Android malware have various kinds of threats, so user need to protect his assets by himself. In this paper we propose an educational method to improve user's security literacy by having experience of pseudo malware's behavior and recognize threats, risks, assets and relations between permissions and adverse actions.