{"id":"https://openalex.org/W4292387188","doi":"https://doi.org/10.1109/access.2022.3199882","title":"PermPress: Machine Learning-Based Pipeline to Evaluate Permissions in App Privacy Policies","display_name":"PermPress: Machine Learning-Based Pipeline to Evaluate Permissions in App Privacy Policies","publication_year":2022,"publication_date":"2022-01-01","ids":{"openalex":"https://openalex.org/W4292387188","doi":"https://doi.org/10.1109/access.2022.3199882"},"language":"en","primary_location":{"id":"doi:10.1109/access.2022.3199882","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3199882","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09861610.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09861610.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5015044275","display_name":"Muhammad Sajidur Rahman","orcid":"https://orcid.org/0000-0001-8965-6732"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Muhammad Sajidur Rahman","raw_affiliation_strings":["Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","Information Science &#x0026","Department of Computer &#x0026"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]},{"raw_affiliation_string":"Information Science &#x0026","institution_ids":[]},{"raw_affiliation_string":"Department of Computer &#x0026","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5014627397","display_name":"Pirouz Naghavi","orcid":null},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Pirouz Naghavi","raw_affiliation_strings":["Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","Information Science &#x0026","Department of Computer &#x0026"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]},{"raw_affiliation_string":"Information Science &#x0026","institution_ids":[]},{"raw_affiliation_string":"Department of Computer &#x0026","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5086796828","display_name":"Blas Kojusner","orcid":null},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Blas Kojusner","raw_affiliation_strings":["Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","Information Science &#x0026","Department of Computer &#x0026"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]},{"raw_affiliation_string":"Information Science &#x0026","institution_ids":[]},{"raw_affiliation_string":"Department of Computer &#x0026","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003132155","display_name":"Sadia Afroz","orcid":"https://orcid.org/0000-0002-2485-548X"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Sadia Afroz","raw_affiliation_strings":["Avast Software, Emeryville, CA, USA"],"affiliations":[{"raw_affiliation_string":"Avast Software, Emeryville, CA, USA","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103049275","display_name":"Byron J. Williams","orcid":"https://orcid.org/0000-0002-5570-9733"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Byron Williams","raw_affiliation_strings":["Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","Department of Computer &#x0026","Information Science &#x0026"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]},{"raw_affiliation_string":"Department of Computer &#x0026","institution_ids":[]},{"raw_affiliation_string":"Information Science &#x0026","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085837723","display_name":"Sara Rampazzi","orcid":"https://orcid.org/0000-0002-3630-6269"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sara Rampazzi","raw_affiliation_strings":["Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","Information Science &#x0026","Department of Computer &#x0026"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]},{"raw_affiliation_string":"Information Science &#x0026","institution_ids":[]},{"raw_affiliation_string":"Department of Computer &#x0026","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5014689112","display_name":"Vincent Bindschaedler","orcid":"https://orcid.org/0000-0002-3066-7354"},"institutions":[{"id":"https://openalex.org/I33213144","display_name":"University of Florida","ror":"https://ror.org/02y3ad647","country_code":"US","type":"education","lineage":["https://openalex.org/I33213144"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Vincent Bindschaedler","raw_affiliation_strings":["Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","Department of Computer &#x0026","Information Science &#x0026"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Science and Engineering, University of Florida, Gainesville, FL, USA","institution_ids":["https://openalex.org/I33213144"]},{"raw_affiliation_string":"Department of Computer &#x0026","institution_ids":[]},{"raw_affiliation_string":"Information Science &#x0026","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5015044275"],"corresponding_institution_ids":["https://openalex.org/I33213144"],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":2.3845,"has_fulltext":true,"cited_by_count":19,"citation_normalized_percentile":{"value":0.8886665,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":100},"biblio":{"volume":"10","issue":null,"first_page":"89248","last_page":"89269"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9975000023841858,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9958000183105469,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.8887801170349121},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7734348773956299},{"id":"https://openalex.org/keywords/privacy-policy","display_name":"Privacy policy","score":0.7037175297737122},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.5375798344612122},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.4972894489765167},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.49571502208709717},{"id":"https://openalex.org/keywords/mobile-apps","display_name":"Mobile apps","score":0.464114248752594},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4494749903678894},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.33056363463401794},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3225770592689514}],"concepts":[{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.8887801170349121},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7734348773956299},{"id":"https://openalex.org/C102938260","wikidata":"https://www.wikidata.org/wiki/Q1999831","display_name":"Privacy policy","level":3,"score":0.7037175297737122},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.5375798344612122},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.4972894489765167},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.49571502208709717},{"id":"https://openalex.org/C2988145974","wikidata":"https://www.wikidata.org/wiki/Q620615","display_name":"Mobile apps","level":2,"score":0.464114248752594},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4494749903678894},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.33056363463401794},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3225770592689514},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2022.3199882","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3199882","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09861610.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:8f8a6805ad594de5bc5fbd42034adcbb","is_oa":true,"landing_page_url":"https://doaj.org/article/8f8a6805ad594de5bc5fbd42034adcbb","pdf_url":null,"source":{"id":"https://openalex.org/S112646816","display_name":"SHILAP Revista de lepidopterolog\u00eda","issn_l":"0300-5267","issn":["0300-5267","2340-4078"],"is_oa":true,"is_in_doaj":true,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 10, Pp 89248-89269 (2022)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2022.3199882","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2022.3199882","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/09861610.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.7200000286102295,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4292387188.pdf","grobid_xml":"https://content.openalex.org/works/W4292387188.grobid-xml"},"referenced_works_count":60,"referenced_works":["https://openalex.org/W72228273","https://openalex.org/W79696261","https://openalex.org/W1481354592","https://openalex.org/W1881708081","https://openalex.org/W2101234009","https://openalex.org/W2102197271","https://openalex.org/W2114275288","https://openalex.org/W2140095007","https://openalex.org/W2168649891","https://openalex.org/W2376050373","https://openalex.org/W2516809705","https://openalex.org/W2517394750","https://openalex.org/W2550306025","https://openalex.org/W2605035112","https://openalex.org/W2610180132","https://openalex.org/W2612622960","https://openalex.org/W2617505966","https://openalex.org/W2735060748","https://openalex.org/W2736629875","https://openalex.org/W2737578512","https://openalex.org/W2744999500","https://openalex.org/W2782729947","https://openalex.org/W2794864670","https://openalex.org/W2887916146","https://openalex.org/W2896457183","https://openalex.org/W2903400086","https://openalex.org/W2904429768","https://openalex.org/W2919545980","https://openalex.org/W2921740467","https://openalex.org/W2945015800","https://openalex.org/W2953461273","https://openalex.org/W2963070937","https://openalex.org/W2963204406","https://openalex.org/W2963626623","https://openalex.org/W2969327092","https://openalex.org/W2969437536","https://openalex.org/W2977027580","https://openalex.org/W2979826702","https://openalex.org/W2980708516","https://openalex.org/W2984951742","https://openalex.org/W2986191653","https://openalex.org/W2996560929","https://openalex.org/W3000750784","https://openalex.org/W3006463555","https://openalex.org/W3012939329","https://openalex.org/W3031434561","https://openalex.org/W3081819535","https://openalex.org/W3089915031","https://openalex.org/W3090522550","https://openalex.org/W3105777810","https://openalex.org/W3135757195","https://openalex.org/W3196442232","https://openalex.org/W4245267204","https://openalex.org/W4294214983","https://openalex.org/W6628346335","https://openalex.org/W6675354045","https://openalex.org/W6682691769","https://openalex.org/W6721237251","https://openalex.org/W6764197484","https://openalex.org/W7018197807"],"related_works":["https://openalex.org/W2806758597","https://openalex.org/W4210242455","https://openalex.org/W163381563","https://openalex.org/W331205302","https://openalex.org/W4320057835","https://openalex.org/W2092697020","https://openalex.org/W4292814257","https://openalex.org/W1481354592","https://openalex.org/W3094356170","https://openalex.org/W1520171739"],"abstract_inverted_index":{"Privacy":[0],"laws":[1],"and":[2,21,32,57,70,154,228,238],"app":[3,113,225,234],"stores":[4],"(e.g.,":[5],"Google":[6],"Play":[7],"Store)":[8],"require":[9],"mobile":[10,36],"apps":[11,37,141,178,185,203],"to":[12,17,84,110,205,232],"have":[13],"transparent":[14],"privacy":[15,58,68,93,108,147,198,215,226,235],"policies":[16,59,109,114,227],"disclose":[18,41,142,188,206],"sensitive":[19,43,48],"actions":[20],"data":[22,44,212],"collection,":[23],"such":[24],"as":[25],"accessing":[26],"the":[27,61,151,167,221,230],"phonebook,":[28],"camera,":[29],"storage,":[30],"GPS,":[31],"microphone.":[33],"However,":[34],"many":[35],"do":[38,186],"not":[39,187],"accurately":[40],"their":[42,193],"access":[45],"that":[46,137],"requires":[47],"(&#x2019;dangerous&#x2019;)":[49],"permissions.":[50,98],"Thus,":[51],"analyzing":[52],"discrepancies":[53],"between":[54],"apps&#x2019;":[55],"permissions":[56,145,196],"facilitates":[60],"identification":[62],"of":[63,107,131,140,163,169,174,184,192,202,224],"compliance":[64,237],"issues":[65],"upon":[66],"which":[67],"regulators":[69],"marketplace":[71],"operators":[72],"can":[73],"act.":[74],"This":[75,134,217],"paper":[76],"proposes":[77],"<i>PermPress</i>":[78,99,118,158],"&#x2013;":[79],"an":[80,86,121,160],"automated":[81],"machine-learning":[82],"system":[83],"evaluate":[85],"Android":[87,177],"app&#x2019;s":[88],"permission-completeness,":[89],"i.e.,":[90],"whether":[91,112],"its":[92,96],"policy":[94,123],"matches":[95],"dangerous":[97,144,195,210],"combines":[100],"machine":[101,155],"learning":[102,156],"techniques":[103],"with":[104],"human":[105],"annotation":[106],"establish":[111],"contain":[115],"permission-relevant":[116],"information.":[117],"leverages":[119],"MPP-270,":[120],"annotated":[122,152],"corpus,":[124],"for":[125],"establishing":[126],"a":[127],"gold":[128],"standard":[129],"dataset":[130,153],"permission":[132],"completeness.":[133],"corpus":[135],"shows":[136,179],"only":[138],"31%":[139],"all":[143],"in":[146,165,197,214],"policies.":[148,216],"By":[149],"leveraging":[150],"techniques,":[157],"achieves":[159],"AUC":[161],"score":[162],"0.92":[164],"predicting":[166],"permission-completeness":[168],"apps.":[170],"A":[171],"large-scale":[172],"evaluation":[173],"164,":[175],"156":[176],"that,":[180],"on":[181],"average,":[182],"7%":[183],"more":[189],"than":[190],"half":[191],"declared":[194],"policies,":[199],"whereas":[200],"60%":[201],"omit":[204],"at":[207],"least":[208],"one":[209],"permission-related":[211],"collection":[213],"paper&#x2019;s":[218],"investigation":[219],"uncovers":[220],"non-transparent":[222],"state":[223],"highlights":[229],"need":[231],"standardize":[233],"policies&#x2019;":[236],"completeness":[239],"checking":[240],"process.":[241]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":5},{"year":2023,"cited_by_count":5},{"year":2022,"cited_by_count":1}],"updated_date":"2026-04-02T15:55:50.835912","created_date":"2025-10-10T00:00:00"}