利用自动化推进安卓隐私评估

arXiv - CS - Cryptography and Security Pub Date : 2024-09-10 DOI:arxiv-2409.06564

Mugdha Khedkar, Michael Schlichtig, Eric Bodden

{"title":"利用自动化推进安卓隐私评估","authors":"Mugdha Khedkar, Michael Schlichtig, Eric Bodden","doi":"arxiv-2409.06564","DOIUrl":null,"url":null,"abstract":"Android apps collecting data from users must comply with legal frameworks to\nensure data protection. This requirement has become even more important since\nthe implementation of the General Data Protection Regulation (GDPR) by the\nEuropean Union in 2018. Moreover, with the proposed Cyber Resilience Act on the\nhorizon, stakeholders will soon need to assess software against even more\nstringent security and privacy standards. Effective privacy assessments require\ncollaboration among groups with diverse expertise to function effectively as a\ncohesive unit. This paper motivates the need for an automated approach that enhances\nunderstanding of data protection in Android apps and improves communication\nbetween the various parties involved in privacy assessments. We propose the\nAssessor View, a tool designed to bridge the knowledge gap between these\nparties, facilitating more effective privacy assessments of Android\napplications.","PeriodicalId":501332,"journal":{"name":"arXiv - CS - Cryptography and Security","volume":"19 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-09-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Advancing Android Privacy Assessments with Automation\",\"authors\":\"Mugdha Khedkar, Michael Schlichtig, Eric Bodden\",\"doi\":\"arxiv-2409.06564\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Android apps collecting data from users must comply with legal frameworks to\\nensure data protection. This requirement has become even more important since\\nthe implementation of the General Data Protection Regulation (GDPR) by the\\nEuropean Union in 2018. Moreover, with the proposed Cyber Resilience Act on the\\nhorizon, stakeholders will soon need to assess software against even more\\nstringent security and privacy standards. Effective privacy assessments require\\ncollaboration among groups with diverse expertise to function effectively as a\\ncohesive unit. This paper motivates the need for an automated approach that enhances\\nunderstanding of data protection in Android apps and improves communication\\nbetween the various parties involved in privacy assessments. We propose the\\nAssessor View, a tool designed to bridge the knowledge gap between these\\nparties, facilitating more effective privacy assessments of Android\\napplications.\",\"PeriodicalId\":501332,\"journal\":{\"name\":\"arXiv - CS - Cryptography and Security\",\"volume\":\"19 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-09-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"arXiv - CS - Cryptography and Security\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/arxiv-2409.06564\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Cryptography and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.06564","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

收集用户数据的安卓应用程序必须遵守确保数据保护的法律框架。由于 2018 年欧盟实施了《通用数据保护条例》（GDPR），这一要求变得更加重要。此外，随着拟议的《网络复原力法案》即将出台，利益相关者很快就需要根据更加严格的安全和隐私标准来评估软件。有效的隐私评估需要具有不同专业知识的团体之间的合作，才能作为一个整体有效发挥作用。本文提出了对自动化方法的需求，这种方法可以增强对 Android 应用程序中数据保护的理解，并改善隐私评估所涉及的各方之间的沟通。我们提出了 "评估者视图"（Assessor View）这一工具，旨在弥合各方之间的知识鸿沟，促进对安卓应用程序进行更有效的隐私评估。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Advancing Android Privacy Assessments with Automation

Android apps collecting data from users must comply with legal frameworks to ensure data protection. This requirement has become even more important since the implementation of the General Data Protection Regulation (GDPR) by the European Union in 2018. Moreover, with the proposed Cyber Resilience Act on the horizon, stakeholders will soon need to assess software against even more stringent security and privacy standards. Effective privacy assessments require collaboration among groups with diverse expertise to function effectively as a cohesive unit. This paper motivates the need for an automated approach that enhances understanding of data protection in Android apps and improves communication between the various parties involved in privacy assessments. We propose the Assessor View, a tool designed to bridge the knowledge gap between these parties, facilitating more effective privacy assessments of Android applications.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

arXiv - CS - Cryptography and Security

自引率

0.00%

发文量