Using text mining to infer the purpose of permission use in mobile apps

Haoyu Wang, Jason Hong, Yao Guo
2015 Proceedings of the 2015 ACM International Joint Conference on Pervasive and Ubiquitous Computing - UbiComp '15  
Understanding the purpose of why sensitive data is used could help improve privacy as well as enable new kinds of access control. In this paper, we introduce a new technique for inferring the purpose of sensitive data usage in the context of Android smartphone apps. We extract multiple kinds of features from decompiled code, focusing on app-specific features and text-based features. These features are then used to train a machine learning classifier. We have evaluated our approach in the
more » ... of two sensitive permissions, namely ACCESS FINE LOCATION and READ CONTACT LIST, and achieved an accuracy of about 85% and 94% respectively in inferring purposes. We have also found that text-based features alone are highly effective in inferring purposes.
doi:10.1145/2750858.2805833 dblp:conf/huc/WangHG15 fatcat:2tggr42drrdznmywbmbmxtg6nu