Skip to page navigation menu Skip entire header
Brown University
Brown Digital Repository
Skip 13 subheader links
  1. Top
  2. ...
  3. Theses and Dissertations
  4. bdr:733483

On a (Per)Mission: Leveraging User Ratings of App Permissions to Help Users Manage Privacy

Full Metadata

Overview

Year:
2017
Contributor:
Quay-de la Vallee, Hannah (creator)
Krishnamurthi, Shriram (Advisor)
Littman, Michael (Reader)
Huang, Jeff (Reader)
Brown University. Department of Computer Science (sponsor)
Genre:
theses
Subject:
human-computer interaction
Privacy
Smartphones
Extent:
vii, 40 p.
DOI
https://doi.org/10.7301/Z0PV6HT4

Files

Description

Abstract:
Apps provide valuable utility and customizability to a range of user devices, but installation of third-party apps also presents significant security risks. Many app systems use permissions to mitigate this risk. It then falls to users to decide which apps to install and how to manage their permissions, but unfortunately, many users lack the expertise to do this in a meaningful way. In this thesis, I determine that users face two distinct privacy decisions when using apps: which apps to install, and how to manage apps' permissions once they are installed. In both cases, users are not given meaningful guidance to help them make these choices. For decisions about which apps to install, users would benefit from privacy information in the app marketplace, since that is how most users choose apps. Once users install an app, they are confronted with the second type of decision: how to manage the app's permissions. In this case, users would benefit from an assistant that helps them see which permissions might present privacy concerns. I therefore present two tools: a privacy-conscious app marketplace and a permission management assistant. Both of these tools rely on privacy information, in the form of ratings of apps' permissions. I discuss gathering this rating information from both human and automated sources and how it is used in the two tools. I also explore how the brand of an app could affect how users rate its permissions. Additionally, because my goal is to convey privacy information to users, I design and evaluate several interfaces for displaying permission ratings. I discuss surprising misconceptions generated by some of these interfaces, and present an interface that effectively communicates permission ratings.
Notes:
Thesis (Ph. D.)--Brown University, 2017

Content

Access Conditions

Rights
In Copyright
Restrictions on Use
Collection is open for research.

Citation

Quay-de la Vallee, Hannah, "On a (Per)Mission: Leveraging User Ratings of App Permissions to Help Users Manage Privacy" (2017). Computer Science Theses and Dissertations. Brown Digital Repository. Brown University Library. https://doi.org/10.7301/Z0PV6HT4

Relations

Collection: