Mostrar el registro sencillo del ítem

dc.contributor.authorGamba, Julien 
dc.contributor.authorRashed, Mohammed
dc.contributor.authorRazaghpanah, Abbas
dc.contributor.authorTapiador, Juan
dc.contributor.authorVallina-Rodriguez, Narseo 
dc.date.accessioned2021-07-13T09:37:28Z
dc.date.available2021-07-13T09:37:28Z
dc.date.issued2020-05-18
dc.identifier.urihttp://hdl.handle.net/20.500.12761/684
dc.description.abstractThe open-source nature of the Android OS makes it possible for manufacturers to ship custom versions of the OS along with a set of pre-installed apps, often for product differentiation. Some device vendors have recently come under scrutiny for potentially invasive private data collection practices and other potentially harmful or unwanted behavior of the preinstalled apps on their devices. Yet, the landscape of preinstalled software in Android has largely remained unexplored, particularly in terms of the security and privacy implications of such customizations. In this paper, we present the first largescale study of pre-installed software on Android devices from more than 200 vendors. Our work relies on a large dataset of real-world Android firmware acquired worldwide using crowd-sourcing methods. This allows us to answer questions related to the stakeholders involved in the supply chain, from device manufacturers and mobile network operators to thirdparty organizations like advertising and tracking services, and social network platforms. Our study allows us to also uncover relationships between these actors, which seem to revolve primarily around advertising and data-driven services. Overall, the supply chain around Android’s open source model lacks transparency and has facilitated potentially harmful behaviors and backdoored access to sensitive data and services without user consent or awareness. We conclude the paper with recommendations to improve transparency, attribution, and accountability in the Android ecosystem.
dc.language.isoeng
dc.titleAn Analysis of Pre-installed Android Softwareen
dc.typeconference object
dc.conference.date18-20 May 2020
dc.conference.placeSan Fransisco, CA, USA
dc.conference.titleThe 41st IEEE Symposium on Security and Privacy (IEEE S&P 2020)*
dc.event.typeconference
dc.pres.typepaper
dc.type.hasVersionVoR
dc.rights.accessRightsopen access
dc.description.refereedTRUE
dc.description.statuspub
dc.eprint.idhttp://eprints.networks.imdea.org/id/eprint/1959


Ficheros en el ítem

Este ítem aparece en la(s) siguiente(s) colección(ones)

Mostrar el registro sencillo del ítem