外文翻译--信息物联网工程 （适用于毕业论文外文翻译+中英文对照）

ACONUNDRUMOFPERMISSIONSINSTALLINGAPPLICATIONSONANANDROIDSMARTPHONEBYPATRICKGAGEKELLEYDECEMBER2011EACHTIMEAUSERINSTALLSANAPPLICATIONONTHEIRANDROIDPHONETHEYAREPRESENTEDWITHAFULLSCREENOFINFORMATIONDESCRIBINGWHATACCESSTHEYWILLBEGRANTINGTHATAPPLICATIONTHISINFORMATIONISINTENDEDTOHELPTHEMMAKETWOCHOICESWHETHERORNOTTHEYTRUSTTHATTHEAPPLICATIONWILLNOTDAMAGETHESECURITYOFTHEIRDEVICEANDWHETHERORNOTTHEYAREWILLINGTOSHARETHEIRINFORMATIONWITHTHEAPPLICATION,DEVELOPER,ANDPARTNERSINQUESTIONWEPERFORMEDASERIESOFSEMISTRUCTUREDINTERVIEWSINTWOCITIESTODETERMINEWHETHERPEOPLEREADANDUNDERSTANDTHESEPERMISSIONSSCREENS,ANDTOBETTERUNDERSTANDHOWPEOPLEPERCEIVETHEIMPLICATIONSOFTHESEDECISIONSWEFINDTHATTHEPERMISSIONSDISPLAYSAREGENERALLYVIEWEDANDREAD,BUTNOTUNDERSTOODBYANDROIDUSERSALARMINGLY,WEFINDTHATPEOPLEAREUNAWAREOFTHESECURITYRISKSASSOCIATEDWITHMOBILEAPPSANDBELIEVETHATAPPMARKETPLACESTESTANDREJECTAPPLICATIONSINSUM,USERSARENOTCURRENTLYWELLPREPAREDTOMAKEINFORMEDPRIVACYANDSECURITYDECISIONSAROUNDINSTALLINGAPPLICATIONSKEYWORDSPRIVACY,SECURITY,ANDROID,APPLICATIONS,SMARTPHONE,PERMISSION,INFORMATIONDESIGN1INTRODUCTIONSINCETHELAUNCHOFTHEFIRSTANDROIDPHONEINOCTOBER2008THERISEOFTHEPLATFORMHASBEENMETEORICANDROIDPHONESACCOUNTEDFOROVERHALFOFALLSMARTPHONESALESASOFQ32011WITHEACHSMARTPHONESOLD,MOREUSERSAREDOWNLOADINGAPPLICATIONSFROMTHEANDROIDMARKETASOFMAY20116,GOOGLEREPORTEDTHATOVER200,000APPLICATIONSWEREAVAILABLEINTHEANDROIDMARKETANDTHATTHOSEAPPLICATIONSHADBEENINSTALLED45BILLIONTIMESINTOTAL2APPLICATIONSARENOTPRESCREENEDINSTEADUSERSAREGIVENTHEOPPORTUNITYTODECIDEWHICHSOFTWARETOINSTALLONTHEIRPHONEANDROIDAPPRATINGANDRECOMMENDATIONSITEAPPBRAINREPORTSTHATTHEREARENOW310,000APPLICATIONSINTHEANDROIDMARKETANDTHAT33PERCENTOFTHOSEARERATEDAT“LOWQUALITY“ADDITIONALLY,ACCORDINGTOA2011JUNIPERNETWORKSREPORT,ANDFOLLOWUPPRESSRELEASE,THEYFOUND“A472INCREASEINANDROIDMALWARESAMPLESSINCEJULY2011TONOVEMBER2011”8SIMILARSTUDIESFROMMCAFEE11,KASPERSKYLAB12,ANDSYMANTECAREALLREPORTINGCONTINUEDEXPLOITSJUNIPERATTRIBUTESTHISRISETOTHEEASEOFPOSTINGANDROIDAPPLICATIONSTOTHEMARKET,ASTHEYSTATE“ALLYOUNEEDISADEVELOPERACCOUNTTHATISRELATIVELYEASYTOANONYMIZE,25ANDYOUCANPOSTYOURAPPLICATIONSWITHNOUPFRONTREVIEWPROCESS,NOONEISCHECKINGTOSEETHATYOURAPPLICATIONDOESWHATITSAYS”WHILESOMEBELIEVETHISOPENNESSISHARMFULTOUSERS,GOOGLEHASPROMOTEDITINONEOFGOOGLESMANYTRIBUTESTOOPENNESS,SENIORVICEPRESIDENTOFPRODUCTMANAGEMENT,JONATHANROSENBERGWROTE,“ATGOOGLEWEBELIEVETHATOPENSYSTEMSWINTHEYLEADTOMOREINNOVATION,VALUE,ANDFREEDOMOFCHOICEFORCONSUMMERS,ANDAVIBRANT,PROFITABLE,ANDCOMPETITIVEECOSYSTEMFORBUSINESSES”13ASSUCH,THEREHASBEENNOCERTIFICATIONPROCESSFORANDROIDDEVELOPERSORPREREVIEWOFAPPLICATIONSBEFORETHEYENTERTHEANDROIDMARKET,THOUGHAPPLICATIONSREPORTEDASMALICIOUSHAVEBEENLATERREMOVEDTHEMARKETREQUIRESUSERSTOMAKETWOCHOICESWHENREVIEWINGPOTENTIALAPPLICATIONSFORTHEIRDEVICE1DOIBELIEVETHISAPPLICATIONWILLCOMPROMISETHESECURITYANDFUNCTIONOFMYPHONEIFIINSTALLIT2DOITRUSTTHISDEVELOPERANDTHEIRPARTNERSWITHACCESSTOMYPERSONALINFORMATIONTHISLEAVESUSERSLEFTTOLEVERAGEWORDOFMOUTH,MARKETREVIEWSANDRATINGS,ANDTHEANDROIDPERMISSIONSDISPLAYTOASSISTUSERSINMAKINGDECISIONSTHATPROTECTTHEIRMOBILEPRIVACYANDSECURITYWECONDUCTEDASERIESOF20SEMISTRUCTUREDINTERVIEWSTOBETTERUNDERSTANDHOWUSERSNAVIGATETHEANDROIDMARKET,INSTALLANDUSETHIRDPARTYAPPLICATIONS,ANDCOMPREHENDTHEDECISIONSTHEYMAKEATINSTALLTIMEINTHEREMAINDEROFTHISPAPERWEWILLDETAILRELATEDWORKONUSERSUNDERSTANDINGOFPRIVACYANDACCESSCONTROLCONCEPTSASWELLASTHECURRENTSTATEOFANDROIDSECURITY/PERMISSIONS,OURINTERVIEWMETHODOLOGY,THEDEMOGRAPHICSANDEXPERTISEOFOURPARTICIPANTS,ANDFINALLYACOLLECTIONOFPARTICIPANTRESPONSESTHATQUALITATIVELYDETAILTHEIRABILITYTOMAKEDECISIONSINTHEANDROIDECOSYSTEM2RELATEDWORKWHILEANDROIDHASONLYEXISTEDPUBLICLYSINCE2008,ASIGNIFICANTAMOUNTOFWORKHASBEENCONDUCTEDONSTUDYINGTHEANDROIDPERMISSIONS/SECURITYMODELMUCHOFTHISWORKFOCUSESONCREATINGTHEORETICALFORMALIZATIONSOFHOWANDROIDSECURITYWORKSORPRESENTSIMPROVEMENTSTOTHESYSTEMSECURITY,ANDISLARGELYOUTOFSCOPEEYCKWORKWITHTAINTDROIDHASBRIDGEDTHEGAPBETWEENSYSTEMSECURITYANDUSERFACINGPERMISSIONS,FOCUSINGONANALYZINGWHICHAPPLICATIONSAREREQUESTINGINFORMATIONTHROUGHPERMISSIONSANDTHENSENDINGTHATDATAOFFPHONE4FOLLOWUPWORKBYHORNYACKETALDETAILEDAMETHODFORINTERCEPTINGTHESELEAKEDTRANSMISSIONSANDREPLACINGTHEMWITHNONSENSITIVEINFORMATION7THISFUNCTIONALITYWOULDALLOWUSERSPOSTINSTALLATIONPRIVACYCONTROLINTHEIRINVESTIGATIONTHEYDETAILEDTHECURRENTPERMISSIONREQUESTSOFTHETOP1100APPLICATIONSINTHEANDROIDMARKETASOFNOVEMBER2010HOWEVER,OURWORK,WHICHTESTSUSERSUNDERSTANDINGSOFTHEMOSTCOMMONOFTHESEPERMISSIONS,FINDSUSERSHAVEGREATDIFFICULTYUNDERSTANDINGTHEMEANINGOFTHESETERMSTHUS,GIVINGUSERSTHEABILITYTOLIMITONACASEBYCASEBASISWOULDLIKELYBEINEFFECTIVEWITHOUTASSISTANCEWORKBYVIDAHASALSOSTUDIEDHOWAPPLICATIONSREQUESTPERMISSIONS,FINDINGPREVALENT“PERMISSIONSCREEP,”DUETO“EXISTINGDEVELOPERAPISWHICHMAKEITDIFFICULTFORDEVELOPERSTOALIGNTHEIRPERMISSIONREQUESTSWITHAPPLICATIONFUNCTIONALITY”15FELTINTHEIRANDROIDPERMISSIONSDEMYSTIFIEDWORK,ATTEMPTTOFURTHEREXPLAINPERMISSIONSTODEVELOPERS5HOWEVER,NEITHEROFTHESEPAPERSEXPLORESENDUSERSUNDERSTANDINGOFPERMISSIONSINOUROWNWORKWEFINDUSERSATTEMPTTORATIONALIZEWHYAPPLICATIONSREQUESTSPECIFICPERMISSIONS,TRYINGTOUNDERSTANDTHEDEVELOPERSDECISIONS,EVENIFTHEIRUNDERSTANDINGOFTHESEREQUESTSISFLAWEDOTHERSWHOHAVELOOKEDATANDROIDPERMISSIONSHAVEATTEMPTEDTOCLUSTERAPPLICATIONSTHATREQUIRESIMILARPERMISSIONSTOSIMPLIFYTHECURRENTSCHEME3ORHAVEATTEMPTEDACOMPARISONOFMODERNSMARTPHONEPERMISSIONSYSTEMS1THEIRWORKFINDSTHATANDROIDPERMISSIONSPROVIDETHEMOSTINFORMATIONTOUSERS,HOWEVEROURINTERVIEWSSHOWTHATMUCHOFTHEINFORMATIONPROVIDEDISNOTUNDERSTOODRESEARCHINPRIVACYPOLICIES,FINANCIALPRIVACYNOTICES,ANDACCESSCONTROLHAVEALLSIMILARLYSHOWNTHATPRIVACYRELATEDCONCEPTSANDTERMSAREOFTENNOTWELLUNDERSTOODBYUSERSEXPECTEDTOMAKEPRIVACYDECISIONS9,10,14OUREARLIERWORKSPECIFICALLYINVESTIGATEDHOWTHEINFORMATIONDISPLAYOFPRIVACYPOLICIESCOULDINFLUENCEUNDERSTANDING,FOCUSINGONSTANDARDIZEDFORMATS,TERMS,ANDDEFINITIONSWHILETHEANDROIDECOSYSTEMUSESASTANDARDFORMATANDTERMS,CLEARDEFINITIONSARENOTREADILYAVAILABLETOUSERS3ANDROIDPERMISSIONSANDDISPLAYANDROIDAPPPERMISSIONSAREDISPLAYEDTOUSERSATTHETIMETHEYDECIDETOINSTALLANYTHIRDPARTYAPPTHROUGHTHEANDROIDMARKETONTHEWEBORONTHEPHONEAPPSDOWNLOADEDFROMTHIRDPARTYAPPSTORESDONOTNECESSARILYSHOWFULLPERMISSIONSONTHEIRWEBSITES,HOWEVERUPONINSTALLINGTHEAPPLICATIONPACKAGEAPKTHEUSERISPRESENTEDWITHAPERMISSIONSSCREENVARIANTPERMISSIONSARESHOWNWITHINTHEANDROIDMARKETASDETAILEDINTHEFOLLOWINGDIAGRAM,FIGURE1AUSERBROWSESAPPLICATIONSUSINGTHEVIEWSHOWNINSCREEN1HERETHEREISATRUNCATEDDESCRIPTION,INFORMATIONABOUTRATINGS,REVIEWS,SCREENSHOTS,ETCIFAUSERDECIDESTOINSTALLTHEYCLICKTHEBUTTONLABELEDWITHTHEPRICEOFTHEAPPLICATION,HEREFREETHISBRINGSTHEMTOSCREEN2,FIG1THEFIGUREABOVESHOWSTHEWORKFLOWFORINSTALLINGAPPLICATIONSANDVIEWINGAPPLICATIONPERMISSIONSSCREEN1SHOWSTHEAMAZONKINDLEAPPLICATIONASDISPLAYEDINTHEANDROIDMARKETIFAUSERWERETOCLICK”FREE,”CIRCLEDINRED,THEYARESHOWNSCREEN2,WHICHALLOWSTHEMTOACCEPTPERMISSIONSANDINSTALLTHEAPPLICATION,ORTOCLICKTHE”SHOW”BUTTONWHICHLEADSTHEUSERTOSCREENS3AND4WHERETHEYAREGIVENASHORTLISTOFPERMISSIONSIFUSERSDOUBLETAPTHEFREEBUTTONONSCREEN1,THEYSKIPSCREEN2ANDESSENTIALLYAPPROVETHEPERMISSIONSWITHOUTREADINGTHOUGHSCREEN2SERVESTHESOLEPURPOSEOFANINTERSTITIALPERMISSIONSDISPLAYBETWEENTHEMARKETANDAPURCHASEDECISION,THECOMPLETELISTOFPERMISSIONSISNOTDISPLAYEDTOEXPLORETHEFULLPERMISSIONREQUESTTHEYWOULDCLICKTHEMOREEXPANDER,BRINGINGTHEMTOSCREEN3HERETHEYWOULDSEEAMORECOMPLETELISTOFPERMISSIONSWITHSOMEPERMISSIONSHOWNINREDANDASHOWALLBUTTON,WHICHDISPLAYSTHEENTIRELISTIFTOGGLEDATNOPOINTINTHISPROCESSISTHEREANEXPLICITWAYFORUSERSTOCANCELTHEONLYWAYFORUSERSTONOTINSTALLTHEAPPLICATIONAFTERVIEWINGTHEPERMISSIONSISTOUSETHEPHYSICALBACKORHOMEBUTTONSONTHEIRPHONETHEDEFAULTPERMISSIONSANDGROUPSINTHEANDROIDSDKAREDETAILEDATANDROIDSDEVELOPERSITETHEHUMANREADABLETERMSARENOTINCLUDEDINTHEANDROIDDOCUMENTATION4METHODOLOGYTOREACHADEEPERANDMORENUANCEDUNDERSTANDINGOFHOWPEOPLENAVIGATETHECURRENTANDROIDECOSYSTEM,WECONDUCTEDSEMISTRUCTUREDINTERVIEWSINSUMMER2011WITH20PARTICIPANTSFROMPITTSBURGHANDSEATTLETHEINTERVIEWSWEREEXPLORATORYINNATURE,SEEKINGBROADUNDERSTANDINGOFPARTICIPANTSINTERACTIONSWITHTHEIRSMARTPHONESASWELLASDIVINGDEEPLYINTOISSUESSURROUNDINGTHEDISPLAYOFPERMISSIONS,THESAFETYOFTHEANDROIDMARKET,ANDPOSSIBLEHARMSOFINFORMATIONSHARINGWERECRUITEDPARTICIPANTSTHROUGHFLAYERSAROUNDEACHCITYANDLOCALCRAIGSLISTPOSTINGSEACHCANDIDATEFILLEDOUTASHORTPRESURVEYONLINEBEFORETHEINTERVIEW,WHICHALLOWEDUSTOCONFIRMTHEYDIDUSEANANDROIDENABLEDSMARTPHONETHOSEPARTICIPANTSWHOOPTEDINTOTHESUBSEQUENTINTERVIEWARRIVEDATOURLABSANDCOMPLETEDOURCONSENTFORMALLOWINGUSTOMAKEANAUDIORECORDINGOFTHEIRINTERVIEWFOLLOWINGTHEINTERVIEWPARTICIPANTSWEREGIVENTHEOPPORTUNITYTOOPTINTOSHARETHEIRAPPLICATIONINFORMATIONWITHUS,COLLECTEDTHROUGHASCRIPTRUNNINGONALOCALLAPTOP,WHICHWECONNECTEDTHEIRPHONETOVIAUSBWHILETHEYWATCHEDPARTICIPANTSQUOTESTHROUGHOUTTHEREMAINDEROFTHEPAPERARETAKENFROMTRANSCRIPTIONSMADEFROMTHEAUDIORECORDINGSOFTHEINTERVIEWSPARTICIPANTSWEREPAID20FORSUCCESSFULCOMPLETIONOFTHEINTERVIEW,INTHEFORMOFTHEIRCHOICESOFTARGET,STARBUCKS,ORBARNESITSAWAYTOPROTECTYOURSELFIGUESSCALLMEPARANOID”SOMEPARTICIPANTSSTATEDTHATTHEYWERENOTSUREHOWTRUSTWORTHYTHEPERMISSIONSDISPLAYWASONESAIDOFIT,“ISITAREQUIREMENTTOBEONTHERETHEMARKETTHATTHESOFTWARETELLSYOUWHATITISACCESSINGARETHEYREQUIREDTONOTIFYMEORNOT,IDONTKNOW”UNFORTUNATELY,MOSTPARTICIPANTSDONOTBELIEVETHEYUNDERSTANDTHETERMSUSEDANDHAVENOTGONEOUTOFTHEIRWAYTOLEARNWHATTHEYMEANWESHOWEDALISTOFTENPERMISSIONSWITHTHEPERMISSIONGROUPLABEL,INTHEFASHIONTHEYWOULDBESHOWNINTHEPERMISSIONSDISPLAY,TOEACHUSERANDASKEDTHEMTOEXPLAINTOUSTHEIRUNDERSTANDINGOFEACHTERMPARTICIPANTSREACTEDTOTHISTASKWITHCONSTERNATIONHEREWEPRESENTASELECTIONOFCOMMON,SURPRISING,ANDSTRAINEDRESPONSESTHATWERECEIVEDONSIXOFTHETENTERMSWETESTEDNETWORKCOMMUNICATIONFULLINTERNETACCESSOFTHE1100APPLICATIONSREPORTEDONINHORNYACKSWORK7,FULLINTERNETACCESSISBYFARTHEMOSTREQUESTEDPERMISSION,REQUESTEDBY941OFTHE1100APPLICATIONS,OR855OFTHOSESURVEYEDOURPARTICIPANTSWEREAWAREOFWHATTHEINTERNETISANDUNDERSTOODWHYAPPLICATIONSNEEDEDITHOWEVERHOWAPPLICATIONSHAVEACCESSTOIT,WHYTHEYWOULDNEEDTOSPECIFYIT,ANDHOWAPPLICATIONSWOULDFUNCTIONWITHOUTITWEREOFTENUNCLEARPARTICIPANTSASKEDQUESTIONSTHROUGHOUTABOUTWHYAPPLICATIONSNEEDEDTHEACCESSTHEYREQUESTEDPARTICIPANTSFREQUENTLYASKEDTHEINTERVIEWERFOREXAMPLESOFAPPLICATIONSTHATREQUESTEDTHEPERMISSIONSWELISTED,ASWELLASWHYTHEYWERENEEDEDTHERELATIONSHIPBETWEENTHEAPPLICATIONSANDTHEPERMISSIONSTHEYREQUESTEDSEEMED,WITHOUTASSISTANCE,UNKNOWABLEONEPARTICIPANT,WHENASKEDIFSHETHOUGHTOTHERSUNDERSTOODTHESEPERMISSIONSSAID,“NOIMEANFORMETOHAVETOTHINKASMUCH,ANDIHAVEBEENUSINGTHESETHINGS,ANDHAVEBEENSORTOFATECHGEEKFORYEARSYEAH,THATSCONCERNING”WITHVIDASANDFELTFINDINGTHATDEVELOPERSAREMISUNDERSTANDINGPERMISSIONS,ANDOFTENAPPLYINGTHEMWITHOUTNEED,ANDSELFPROCLAIMED“TECHGEEKS”FINDINGTHETERMSDIFFICULT,COMMONUSERSARELEFTNEARHELPLESSTHESYSTEMANDTERMSASTHEYCURRENTLYSTANDHAVENOTBEENCREATEDOREXPLAINEDFORTHEAVERAGEUSER62APPLICATIONSELECTIONHALFOFOURPARTICIPANTSMENTIONEDTHEEXISTENCEOFTHEPERMISSIONSDISPLAYBEFOREBEINGPROMOTEDWHENAPARTICIPANTDIDMENTIONTHEDISPLAY,WEIMMEDIATELYSHOWEDAPAPEREXAMPLEOFONEWHILEPERMISSIONINFORMATIONISONEVECTORTOASSISTUSERSINSELECTINGWHICHAPPLICATIONSTOINSTALL,MANYOFOURPARTICIPANTSREPORTEDHEAVYRELIANCEONSTARRATINGS,FULLTEXTREVIEWS,ANDWORDOFMOUTHTHESEOTHERSOURCESOFINFORMATIONWEREBETTERUNDERSTOODANDMORETRUSTEDWHILEREADINGTHROUGHTHEREVIEWSWASSEENASTIMECONSUMING,WORDOFMOUTHWASATRUSTEDWAYTOFINDHIGHQUALITYAPPLICATIONSONEPARTICIPANTRECOUNTEDHISFRUSTRATIONSWITHSIMPLYSEARCHINGTHESTOREANDWHYHETRUSTEDOTHERSOPINIONS“IFEELITISVERYMUCHATRIALANDERROREXERCISEANDTHAT,IDONTKNOWWHETHERTHATAPPISAPIECEOFCRAPORWHETHERITWORKSSOWHENIKNOWSOMEBODYTHATTELLSMETHATTHISAPPISGOOD,THATREALLYMEANSALOTTOME”PARTICIPANTSALSOREPORTEDHEARINGABOUTAPPS,LARGELYOFSERVICESANDPRODUCTSTHEYALREADYUSED,THROUGHADVERTISEMENTSONEPARTICIPANTDESCRIBEDHISEXPERIENCEWITHSEEINGANDROIDAPPADS,“IHAVESEENMAGAZINESANDBILLBOARDSFORINSTANCETIMEMAGAZINE,THEYHAVEWRITTENYOUCANALSODOWNLOADTHEAPPLICATION”WHILEMOSTOFOURPARTICIPANTSSAIDTHEYDONOTPURCHASEAPPSATALL,OTHERSSAIDINCERTAINCASESTHEYWOULDP6SAID,“ITRYTOLOOKFORTHEFREEONESFIRST,ANDIFICANTFINDANYFREEONESIWILLGOAHEADANDBUYIT”63CONCERNOVERMALICIOUSAPPLICATIONSWEASKEDPARTICIPANTSIFTHEYHADHEARDANYTHINGABOUTANDROIDPHONESORANDROIDAPPLICATIONSINTHENEWS,MEDIA,ORONTHEINTERNETPARTICIPANTSTOLDUSABOUTANDROIDSINCREASINGMARKETSHARE,COMPARISONSBETWEENIOSANDANDROID,ANDABOUTAFEWWELLADVERTISEDAPPSWHENASKEDAFOLLOWUP,TOSPECIFICALLYINQUIREONTHEIRAWARENESSOFMALICIOUSAPPLICATIONSINTHEANDROIDMARKET,OURPARTICIPANTSWERELARGELYUNAWAREOFANYSUCHACTIVITYWHILESOMESAIDTHEYHADMEANTTO,ORWEREINTENDINGTOINSTALLANTIVIRUSAPPLICATIONSONTHEIRPHONES,MOSTWEREUNCONCERNEDABOUTTHETHREATOFMALWAREWEATTRIBUTETHISLACKOFCONCERNTOTWOSTRANDSWEPICKEDUPTHROUGHOUTTHEINTERVIEWSTHEFIRSTISANEXPECTEDCOPINGMECHANISMTHATMANYPARTICIPANTSADMITTEDTO,ALACKOFTRUSTINNEWTECHNOLOGYFOREXAMPLE,PARTICIPANTSREPORTEDANUNWILLINGNESSTODOBANKINGFROMTHEIRPHONEONEPARTICIPANTSAID“IDONTDOBANKINGONLINETHROUGHMYPHONEBECAUSETHATDOESNTSEEMPARTICULARLYSAFETOMEIPREFERANACTUALDESKTOPFORTHATBECAUSEIAMPARANOID”THESECONDPARTOFTHISLACKOFCONCERNTOWARDSMALICIOUSAPPSSHOWSADEEPERMISUNDERSTANDINGOFTHEANDROIDECOSYSTEMALLOFOURPARTICIPANTS,WITHOUTEXCEPTION,BELIEVEDORHOPEDTHATANDROID,THEENTITY,WASPRESCREENINGAPPLICATIONSBEFOREENTRANCEINTOTHEMARKETPARTICIPANTSELABORATELYDESCRIBEDTHEREVIEWSTHATTHEYTHOUGHTWERETAKINGPLACE,SCREENINGNOTJUSTFORVIRUSESORMALWARE,BUTRUNNINGUSABILITYTESTSONUSERS,BLOCKINGAPPLICATIONSTHATWERETOOREPETITIVE,OREVENSCREENINGOUTAPPLICATIONSNOTENOUGHPEOPLEWOULDWANTTHEYBELIEVEDANDROIDWASCHECKINGFORCOPYRIGHTORPATENTVIOLATIONS,ANDOVERALLEXPECTEDANDROIDTOBEPROTECTINGTHEIRBRANDADDITIONALLY,PEOPLEWEREUNAWAREOFWHOWASACTUALLYRUNNINGANDROIDTHEYSAWITASAVAGUEENTITYTHATTHEYCOULDNOTATTRIBUTETOANYSPECIFICPARENTCOMPANYSOMEKNEWANDSOMEGUESSEDITWASGOOGLE,OTHERSREALIZEDTHEYHADNEVERSTOPPEDTOTHINKABOUTTHATBEFOREANDWERESIMPLYUNABLETOATTRIBUTETHEOSTOANYOTHERCOMPANY7CONCLUSIONUSERSDONOTUNDERSTANDANDROIDPERMISSIONSSPECIFICALLY,THEHUMANREADABLETERMSDISPLAYEDBEFOREINSTALLINGANAPPLICATIONAREATBESTVAGUE,ANDATWORSTCONFUSING,MISLEADING,JARGONFILLED,ANDPOORLYGROUPEDTHISLACKOFUNDERSTANDINGMAKESITDIFFICULTFORPEOPLE,FROMDEVELOPERSTONONTECHNICALUSERS,TOMAKEINFORMEDDECISIONSWHENINSTALLINGNEWSOFTWAREONTHEIRPHONESLARGELY,THEPERMISSIONSAREIGNORED,WITHPARTICIPANTSINSTEADTRUSTINGWORDOFMOUTH,RATINGS,ANDANDROIDMARKETREVIEWSUSERSALSOARELARGELYUNINFORMEDABOUTTHEEXISTENCEOFMALWAREORMALICIOUSAPPLICATIONSTHATCOULDBEINTHEANDROIDMARKETTHEYHAVEDIFFICULTYDESCRIBINGTHEPOSSIBLEHARMTHATCOULDBECAUSEDBYAPPLICATIONSCOLLECTINGANDSHARINGTHEIRPERSONALINFORMATIONWHILEPARTICIPANTSSTATEDTHEYTRYTOFINDGOODAPPLICATIONSINTHEMARKET,THEYBELIEVETHEYAREPROTECTEDBYOVERSIGHTPROCESSESWHICHDONOTEXISTOVERALL,USERSARENOTCURRENTLYWELLPREPAREDTOMAKEINFORMEDPRIVACYANDSECURITYDECISIONSAROUNDINSTALLINGAPPLICATIONSFROMTHEANDROIDMARKET一个权限的难题ANDROID智能手机上安装应用程序的权限作者PATRICKGAGEKELLEY2011年12月每当用户在自己的ANDROID手机上安装一个应用程序的时候，都会跳出一个提示安装的消息框，提示用户是否接受安装。弹出消息提示框的目的是为了帮助ANDROID用户做出两个选择第一，判断ANDROID用户是否信任或者同意安装该软件到自己的ANDROID手机上；第二，如果ANDROID用户同意并安装该软件到自己的ANDROID手机上，那么在使用的过程中出现的问题话，ANDROID手机用户同意并发送消息给目标主机，以便开发人员更好的修补漏洞。我们在两个城市之间进行了一系列半结构化面试，目的是为了调查人们在安装ANDROID应用程序之前弹出权限消息提示框是否被人们所理解。经过我们的调查发现，大部分ANDROID手机用户在安装应用程序的时候弹出的消息对话框，并没有太大的注意，而是选择跳过并直接安装应用程序。令人担忧的是，我们发现ANDROID手机用户并没有意识到应用程序的安全性问题，在很多情况下，安装的应用程序往往有时候可能携带病毒软件。总之，ANDROID用户并没有真正意识到在安装应用程序的时候弹出消息提示框的重要性和安全性。关键词隐私，安全，安卓，应用软件，智能手机，权限，信息设计1引言自2008年10月谷歌推出第一款ANDROID智能手机的时候，在第三季度智能手机销量排行榜中，ANDROID手机强占了一半以上的市场销售份额。随着ANDROID智能手机销量的不断增多，使得越来越多的用户从ANDROIDMARKET市场上下载应用程序到自己的ANDROID手机上。截至2011年5月，据谷歌报道，总共有20万的应用程序从ANDROID市场上被用户下载下来，并且总共被安装了45亿次。ANDROID市场并没有预先筛选应用程序，而是提供给用户选择安装应用程序的自由。通过对ANDROID应用程序总部的调查报告显示，虽然在ANDROID市场上存在三十一万的ANDROID应用程序，但是其中有百分之三十三的ANDROID应用程序是低质量的。总而言之，根据2011年的网络数据报告可得，从MCAFEE、KASPERSKYLAB、SYMANTEC的数据可知自2011年的七月开始，我们发现恶意软件的增长速度是以百分之47倍的速度在增长。所有想要在ANDROID市场上拍卖自己的应用程序软件，就必须花费25的手续费来开通自己的个人账号，通过上传自己的应用程序软件，并从中获取利润。当然，ANDROID市场是不会去检查你的应用程序到底包含哪些基本信息。然而，这对ANDROID用户是非常不利的。对此谷歌来完成这项保护ANDROID手机用户的任务。通过调查我们提供给ANDROID用户两种安装选择。1你是否愿意安装此软件到你的手机上2你是否信任开发商去访问你的个人信息通过我们的走访调查可知，大部分的ANDROID手机用户都希望应用程序提供详细的权限安装问题，并表示这是对于手机安全性的一个必不可少的环节。ANDROID用户还提出应该由用户自己选择什么时候弹出权限消息提示框，这样做的目的是为了减少给客户到来不必要的麻烦。2相关工作虽然ANDROID手机仅仅只是在2008年发布后的不久诞生的，但是有一个重要的工作需要我们去完成的，那就是学习ANDROID手机的权限安全性问题。提出这个重要的理论依是根据对ANDROID手机运行的安全性或者提高系统的安全性能出发的。EYCK的相关的工作主要是研究ANDROID系统的安全性和面向用户权限之间的差异化，重点分析在ANDROID用户关闭手机的时候，通过权限请求消息与手机之间建立通信功能。VIDA的主要工作是研究如何让ANDROID应用程序接受请求权限，通过研究后来发现，权限存在一个“权限危机”的现象。由于ANDROID提供的API文档接口与用户实际接受的应用程序请求消息无法建立连接，所以这就是开发人员现在面临的一个主要难题。FELT主要工作是揭秘ANDROID权限的工作原理，试图进一步解释权限的开发商为什么要怎么开发。然而，无论是最终用户探讨这些应用程序权限的理解。在我们的工作调查中发现虽然ANDROID手机用户明明知道安装一个应用程序可能存在风险或者病毒，但是还是有很多ANDROID用户试图为自己找借口忽略这些安装权限消息提示框，常常抱怨为什么安装一个应用程序软件要怎么多麻烦的权限消息提示框。另一些人看待ANDROID应用程序权限问题的态度是试图去简化应用程序权限的安装过程或者跟其他智能手机对比安装权限的过程。通过ANDROID用户的反馈信息我们可以得出一个结论ANDROID应用程序权限安装的过程中提供了全面的安装信息给ANDROID手机用户，然而ANDROID用户对这些提供的信息往往是不怎么在意或者忽略。3ANDROID权限和显示ANDROID用户通过从ANDROID市场上下载第三方应用软件并安装在自己的手机上，当ANDROID应用程序在安装的过程中根据ANDROID用户的选择性自己选择是否弹出权限消息提示框来帮助ANDROID用户更好的安装ANDROID应用程序软件。来自ANDROID市场的第三方应用程序没有必要显示所有权限信息，然而以上的应用程序包（APK）安装时，都会出现弹出一个权限的消息对话框。图1上图显示安装应用程序的工作流程和查看应用程序软件的权限。屏幕1显示了在ANDROID市场上发布亚马逊应用程序软件。当用户想要安装该软件的时候，点击红色圆圈按钮“免费”来进入屏幕2的操作界面，或者也可以点击红色圆圈的“显示所示”来查看应用程序权限，如图屏幕3和屏幕4图1显示了安装应用程序的工作流程。屏幕1显示了亚马逊的KINDLE应用程序。如果用户点击红色圆圈按钮“免费”进入显示屏幕2，这使得他们接受应用程序的权限并获得安装应用程序的权限，也可以通过点击红色圆圈按钮来“显示所有信息”并查看相关的权限，如图屏幕3和4。用户可以通过点击更多按钮，来查看更多完整的权限要求。如图屏幕2的红色圆圈按钮。切换至屏幕3时，用户可以点击红色圆圈按钮的“显示所有”来查看整个应用程序的完整信息。在这一个过程中如果用户想要取消应用程序的安装，可以通过点击ANDROID手机上的返回按钮或者ANDROID手机上的主页按钮来取消当前应用程序的安装。详细的应用程序权限或者组请参照ANDROIDSDK的官方网站，也可以通过查看ANDROID文档来获取应用程序权限的详细信息。4方法论我们通过在当地招募ANDROID用户参与我们的采访调查。每名ANDROID用户都必须填写一份ANDROID问卷调查报告，才能参见下一轮的面试。随后工作人员安排每一位ANDROID用户进入特定的实验室，填写ANDROID用户调查同意书，主要是为了配合工作人员更好的调查ANDROID用户的情况，在调查的过程中采取录音的方式。采访结束后每一位ANDROID用户都可以共享出自己ANDROID手机上的应用软件，通过USB与工作人员笔记本电脑的连接，来更好的统计ANDROID应用程序的数量。ANDROID用户通过在同意书上签字并表示自己同意录音，以便工作人员更好的统计ANDROID应用程序的数量。每位参与完整个过程的ANDROID用户都将获得二十元美金来作为回报，并有机会获得星巴克、巴尼斯的高贵礼品卡一张。5人口统计和对问卷调查答复总共有七十七名ANDROID用户参与了此次调查，其中有二十名ANDROID用户接受面谈。本文的其余部分都将只是讨论这20名ANDROID用户。其中有六名是来自西雅图，十三名师来自匹兹堡，有十名ANDROID用户是男性，有十名ANDROID用户是女性。这二十名ANDROID用户的年龄在十九到四十八岁之间，据统计他们的平均年龄在二十九岁。据调查有十四名ANDROID用户使用ANDROID智能手机不到一年就