Intent-aware Permission Architecture: A Model for Rethinking Informed Consent for Android Apps

Md Rahman; Elizabeth Miller; Moinul Hossain; Aisha Ali-Gombe

doi:10.5220/0010882900003120

Intent-aware Permission Architecture: A Model for Rethinking Informed Consent for Android Apps

Md Rahman, Elizabeth Miller, Moinul Hossain, Aisha Ali-Gombe

2022

Abstract

As data privacy continues to be a crucial human-right concern as recognized by the UN, regulatory agencies have demanded developers obtain user permission before accessing user-sensitive data. Mainly through the use of privacy policies statements, developers fulfill their legal requirements to keep users abreast of the requests for their data. In addition, platforms such as Android enforces explicit permission request using the permission model. Nonetheless, recent research has shown that service providers hardly make full disclosure when requesting data in these statements. Neither is the current permission model designed to provide adequate informed consent. Often users have no clear understanding of the reason and scope of usage of the data request. This paper proposes an unambiguous, informed consent process that provides developers with a standardized method for declaring Intent. Our proposed Intent-aware permission architecture extends the current Android permission model with a precise mechanism for full disclosure of purpose and scope limitation. The design of which is based on an ontology study of data requests purposes. The overarching objective of this model is to ensure end-users are adequately informed before making decisions on their data. Additionally, this model has the potential to improve trust between end-users and developers.

Download

Paper Citation

in Harvard Style

Rahman M., Miller E., Hossain M. and Ali-Gombe A. (2022). Intent-aware Permission Architecture: A Model for Rethinking Informed Consent for Android Apps. In Proceedings of the 8th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-553-1, pages 154-164. DOI: 10.5220/0010882900003120

in Bibtex Style

@conference{icissp22,
author={Md Rahman and Elizabeth Miller and Moinul Hossain and Aisha Ali-Gombe},
title={Intent-aware Permission Architecture: A Model for Rethinking Informed Consent for Android Apps},
booktitle={Proceedings of the 8th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2022},
pages={154-164},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0010882900003120},
isbn={978-989-758-553-1},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 8th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Intent-aware Permission Architecture: A Model for Rethinking Informed Consent for Android Apps
SN - 978-989-758-553-1
AU - Rahman M.
AU - Miller E.
AU - Hossain M.
AU - Ali-Gombe A.
PY - 2022
SP - 154
EP - 164
DO - 10.5220/0010882900003120