Mostrar el registro sencillo del ítem

dc.contributor.authorReyes, Irwin
dc.contributor.authorWijesekera, Primal
dc.contributor.authorReardon, Joel
dc.contributor.authorElazari Bar On, Amit
dc.contributor.authorRazaghpanah, Abbas
dc.contributor.authorVallina-Rodriguez, Narseo 
dc.contributor.authorEgelman, Serge
dc.description.abstractWe present a scalable dynamic analysis framework that allows for the automatic evaluation of the privacy behaviors of Android apps. We use our system to analyze mobile apps' compliance with the Children's Online Privacy Protection Act (COPPA), one of the few stringent privacy laws in the U.S. Based on our automated analysis of 5,855 of the most popular free children's apps, we found that a majority are potentially in violation of COPPA, mainly due to their use of third-party SDKs. While many of these SDKs offer configuration options to respect COPPA by disabling tracking and behavioral advertising, our data suggest that a majority of apps either do not make use of these options or incorrectly propagate them across mediation SDKs. Worse, we observed that 19% of children's apps collect identifiers or other personally identifiable information (PII) via SDKs whose terms of service outright prohibit their use in child-directed apps. Finally, we show that efforts by Google to limit tracking through the use of a resettable advertising ID have had little success: of the 3,454 apps that share the resettable ID with advertisers, 66% transmit other, non-resettable, persistent identifiers as well, negating any intended privacy-preserving properties of the advertising ID.
dc.titleExamining COPPA Compliance at Scale
dc.typeconference object
dc.conference.date12-14 August 2018
dc.conference.placeBaltimore, Maryland, USA
dc.conference.titleThe 14th Symposium on Usable Privacy and Security (SOUPS 2018)*

Ficheros en el ítem


No hay ficheros asociados a este ítem.

Este ítem aparece en la(s) siguiente(s) colección(ones)

Mostrar el registro sencillo del ítem