Stuck in the Permissions With You: Developer & End-User Perspectives on App Permissions & Their Privacy Ramifications

要旨

While the literature on permissions from the end-user perspective is rich, there is a lack of empirical research on why developers request permissions, their conceptualization of permissions, and how their perspectives compare with end-users' perspectives. Our study aims to address these gaps using a mixed-methods approach. Through interviews with 19 app developers and a survey of 309 Android and iOS end-users, we found that both groups shared similar concerns about unnecessary permissions breaking trust, damaging the app's reputation, and potentially allowing access to sensitive data. We also found that developer participants sometimes requested multiple permissions due to confusion about the scope of certain permissions or third-party library requirements. Additionally, most end-user participants believed they were responsible for granting a permission request, and it was their choice to do so, a belief shared by many developer participants. Our findings have implications for improving the permission ecosystem for both developers and end-users.

著者
Mohammad Tahaei
University of Bristol, Bristol, United Kingdom
Ruba Abu-Salma
King's College London, London, United Kingdom
Awais Rashid
University of Bristol, Bristol, United Kingdom
論文URL

https://doi.org/10.1145/3544548.3581060

動画

会議: CHI 2023

The ACM CHI Conference on Human Factors in Computing Systems (https://chi2023.acm.org/)

セッション: Data practices, permissions, and consent

Room Y01+Y02
6 件の発表
2023-04-25 20:10:00
2023-04-25 21:35:00