User privacy and modern mobile services: Are they on the same path?

D. Damopoulos; G. Kambourakis; M. Anagnostopoulos; S. Gritzalis; J. H. Park

doi:10.1007/s00779-012-0579-1

User privacy and modern mobile services: Are they on the same path?

D. Damopoulos, G. Kambourakis, M. Anagnostopoulos, S. Gritzalis, J. H. Park

Dept. of Computer Science and Engineering

University of the Aegean

Research output: Contribution to journal › Article › peer-review

21 Scopus citations

Abstract

Perhaps, the most important parameter for any mobile application or service is the way it is delivered and experienced by the end-users, who usually, in due course, decide to keep it on their software portfolio or not. Most would agree that security and privacy have both a crucial role to play toward this goal. In this context, the current paper revolves around a key question: Do modern mobile applications respect the privacy of the end-user? The focus is on the iPhone platform security and especially on user's data privacy. By the implementation of a DNS poisoning malware and two real attack scenarios on the popular Siri and Tethering services, we demonstrate that the privacy of the end-user is at stake.

Original language	English
Pages (from-to)	1437-1448
Number of pages	12
Journal	Personal and Ubiquitous Computing
Volume	17
Issue number	7
DOIs	https://doi.org/10.1007/s00779-012-0579-1
State	Published - Oct 2013

Keywords

IOS
IPhone
Malware
MDNS
Siri
Tethering

Access to Document

10.1007/s00779-012-0579-1

Cite this

@article{4367fe03c8754ba780ce25251b7d5a9a,

title = "User privacy and modern mobile services: Are they on the same path?",

abstract = "Perhaps, the most important parameter for any mobile application or service is the way it is delivered and experienced by the end-users, who usually, in due course, decide to keep it on their software portfolio or not. Most would agree that security and privacy have both a crucial role to play toward this goal. In this context, the current paper revolves around a key question: Do modern mobile applications respect the privacy of the end-user? The focus is on the iPhone platform security and especially on user's data privacy. By the implementation of a DNS poisoning malware and two real attack scenarios on the popular Siri and Tethering services, we demonstrate that the privacy of the end-user is at stake.",

keywords = "IOS, IPhone, Malware, MDNS, Siri, Tethering",

author = "D. Damopoulos and G. Kambourakis and M. Anagnostopoulos and S. Gritzalis and Park, \{J. H.\}",

year = "2013",

month = oct,

doi = "10.1007/s00779-012-0579-1",

language = "English",

volume = "17",

pages = "1437--1448",

journal = "Personal and Ubiquitous Computing",

issn = "1617-4909",

number = "7",

}

TY - JOUR

T1 - User privacy and modern mobile services

T2 - Are they on the same path?

AU - Damopoulos, D.

AU - Kambourakis, G.

AU - Anagnostopoulos, M.

AU - Gritzalis, S.

AU - Park, J. H.

PY - 2013/10

Y1 - 2013/10

N2 - Perhaps, the most important parameter for any mobile application or service is the way it is delivered and experienced by the end-users, who usually, in due course, decide to keep it on their software portfolio or not. Most would agree that security and privacy have both a crucial role to play toward this goal. In this context, the current paper revolves around a key question: Do modern mobile applications respect the privacy of the end-user? The focus is on the iPhone platform security and especially on user's data privacy. By the implementation of a DNS poisoning malware and two real attack scenarios on the popular Siri and Tethering services, we demonstrate that the privacy of the end-user is at stake.

AB - Perhaps, the most important parameter for any mobile application or service is the way it is delivered and experienced by the end-users, who usually, in due course, decide to keep it on their software portfolio or not. Most would agree that security and privacy have both a crucial role to play toward this goal. In this context, the current paper revolves around a key question: Do modern mobile applications respect the privacy of the end-user? The focus is on the iPhone platform security and especially on user's data privacy. By the implementation of a DNS poisoning malware and two real attack scenarios on the popular Siri and Tethering services, we demonstrate that the privacy of the end-user is at stake.

KW - IOS

KW - IPhone

KW - Malware

KW - MDNS

KW - Siri

KW - Tethering

UR - http://www.scopus.com/inward/record.url?scp=84885843189&partnerID=8YFLogxK

U2 - 10.1007/s00779-012-0579-1

DO - 10.1007/s00779-012-0579-1

M3 - Article

AN - SCOPUS:84885843189

SN - 1617-4909

VL - 17

SP - 1437

EP - 1448

JO - Personal and Ubiquitous Computing

JF - Personal and Ubiquitous Computing

IS - 7

ER -

User privacy and modern mobile services: Are they on the same path?

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this