Author(s)

Mohammed Al Jutail^1,2, Mousa Al-Akhras^1,3, Abdulaziz Albesher¹

¹College of Computing and Informatics, Saudi Electronic University, Riyadh, KSA.
²E-Government Program, Riyadh, KSA.
³King Abdullah II School of Information Technology, The University of Jordan, Amman, Jordan.

Mobile applications affect user’s privacy based on the granted application’s permissions as attackers exploit mobile application permissions in Android and other mobile operating systems. This research divides permissions based on Google’s classification of dangerous permissions into three groups. The first group contains the permissions that can access user’s private data such as reading call log. The second group contains the permissions that can modify user’s data such as modifying the numbers in contacts. The third group contains the remaining permissions which can track the location, and use the microphone and other sensitive issues that can spy on the user. This research is supported by a study that was conducted on 100 participants in Saudi Arabia to show the level of users’ awareness of associated risks in mobile applications permissions. Associations among the collected data are also analyzed. This research fills the gap in user’s awareness by providing best practices in addition to developing a new mobile application to help users decide whether an application is safe to be installed and used or not. This application is called “Sparrow” and is available in Google Play Store.

Mobile Permission, Android, Privacy, Attack, Security, Association, Apriori

Al Jutail, M. , Al-Akhras, M. and Albesher, A. (2019) Associated Risks in Mobile Applications Permissions. Journal of Information Security, 10, 69-90. doi: 10.4236/jis.2019.102004.