Computing

Want to Track People? There's an App for That

(Page 2 of 2)

  • Tuesday, January 25, 2011
  • By Robert Lemos

Egele and his colleagues defined a violation of privacy as an incident where a program reads sensitive data— addresses, phone numbers, e-mail account information—from the device and sends that data over the Internet without asking permission. The researchers had no way to discover if the user was tricked into giving consent.

"The description of privacy that we came up with is that we did not want sensitive data from the mobile device extracted without the user knowing," Egele says. "But we cannot tell if it is malicious or not."

The researchers developed software to test each program's functionality and to determine if it collected and transmitted sensitive information without informing the user. They also had to decipher how certain apps function with only limited information.

An interesting insight from the research: apps from the App Store were more likely to surreptitiously access user data than apps from the unpoliced Cydia repository, says Egele.

Miller says Apple should improve its process for vetting applications. "There is not an easy solution to the problem, but having a central clearinghouse (like Apple) is the best way to do it," he says. "But right now, Apple's probably not doing it right."

Print

Related Articles

The iPad: Like an iPhone, Only Bigger

Apple reveals its much-awaited "magical and revolutionary" new product.

iPhone Hackers Get a Break

The difficulty of running nonapproved code on the iPhone has turned off security researchers--until now.

Electronic Health Records: Lessons from the iPhone

Open programs to third-party developers, say two tech-savvy physicians.

powered by
Advertisement

MAGAZINE

Foundation Medicine: Personalizing Cancer Drugs

Foundation Medicine is offering a test that helps oncologists choose drugs targeted to the genetic profile of a patient's tumor cells. Has personalized cancer treatment finally arrived?

Sponsored Content

Technologies from National Instruments

Using Counters and Digital I/O
Use built-in counters and digital I/O on multifunction DAQ devices

> Click here for more National Instruments Videos <
Whitepaper

Temperature Measurements with Thermocouples: How-To Guide

This document is part of the “How-To Guide for Most Common Measurements” centralized resource portal. This tutorial provides a detailed guide for measurement and device considerations to take temperature measurements using thermocouples. Get an introduction to thermocouples, which are inexpensive sensing devices widely used with PC-based data acquisition systems. Also review some specific thermocouple examples and learn how thermocouples work and ways to integrate them into a data acquisition measurement system.

View full PDF > Listen to story >
Find us on Youtube

Videos

A Robot Recruit that Can Do It All

More

Newsletters

Click here to subscribe to Technology Review newsletters

Computing feed

Advertisement

Technology Review Lists

TR50

Our list of the 50 most innovative companies, including the following:

First Solar

Athenahealth

Siluria

Integrated Diagnostics

More

Advertisement

Facebook

Advertisement