ACE Seminar: How smart is our addiction? Some experimental analyses of Security and Privacy in the mobile apps ecosystem

Speaker: Dr Dali Kaafar

Date/Time: 01-Jan-1970, 00:00 UTC

Venue:

Details

Abstract

This talk will take you through a guided tour over the mobile apps ecosystem focusing on the privacy angle and spots where security risks meet privacy concerns. We will explore the capabilities of scanners in mobile networks, with a highlight of some new privacy and security risks raised by the use of embedded mobile analytics services. We will also take a look at tracking systems in Paid mobile apps. Finally, we will focus on those "little spammy apps" that do populate Mobile App markets, which reduces the users’ quality of experience and increases the workload of app market operators. The latter resort to remove those apps, upon user complaints or to deny the developers’ publication approval requests by relying on continuous human efforts to check the app compliance with anti-spam policies. Apps can be “spammy” in multiple ways including not having a specific functionality, unrelated app description or unrelated keywords and publishing similar apps several times and across diverse categories. Through a systematic crawl of a popular app market and by identifying a set of removed apps, we will present a method to detect spam apps solely using apps’ metadata available at the time of publication. We First propose a methodology to manually label a sample of removed apps, according to a set of checkpoint heuristics to reveal the reasons behind apps removal. This analysis suggests that approximately 35% of the apps being removed are very likely to be spam apps. We then map the identified heuristics to several quantifiable features and show how distinguishing these features are for spam apps. Finally, we build an Adaptive Boost classier for early identification of spam apps using only the metadata of the apps. By applying the classier on a set of apps present at the app market at the time of our crawl, we estimate that at least 2.7% of the App Market is constituted of spam apps.

 

Bio

Dr. Mohamed Ali (Dali) Kaafar is a research leader at the Mobile Systems Research group at NICTA, Australia’s largest ICT research organisation. He contributes to research and development in Security, CyberCrime prevention and Online Privacy with a focus on mobile devices and wearables security and privacy. His research Interests also include Internet Measurement and system performance modelling. He is also a visiting professor of the Chinese Academy of Science, ICT Beijing. Previously, he hold the position of senior researcher at the Privatics team at INRIA Grenoble in France, and a researcher in university of Liege. He obtained his Ph.D. from INRIA Sophia Antipolis in 2007 where he pioneered research efforts on the security of Internet Coordinate Systems. He is the main investigator and Responsible of several European and Asia-Pacific Research projects. For further information, please visit www.nicta.com.au/category/research/mobile-systems/people/mkaafar/.

This page was last modified on 27 Mar 2014.