{"id":"https://openalex.org/W3214522776","doi":"https://doi.org/10.1145/3460120.3484536","title":"Consistency Analysis of Data-Usage Purposes in Mobile Apps","display_name":"Consistency Analysis of Data-Usage Purposes in Mobile Apps","publication_year":2021,"publication_date":"2021-11-12","ids":{"openalex":"https://openalex.org/W3214522776","doi":"https://doi.org/10.1145/3460120.3484536","mag":"3214522776"},"language":"en","primary_location":{"id":"doi:10.1145/3460120.3484536","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484536","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484536","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484536","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5071378212","display_name":"Duc Hoang Bui","orcid":null},"institutions":[{"id":"https://openalex.org/I27837315","display_name":"University of Michigan\u2013Ann Arbor","ror":"https://ror.org/00jmfr291","country_code":"US","type":"education","lineage":["https://openalex.org/I27837315"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Duc Bui","raw_affiliation_strings":["University of Michigan, Ann Arbor, MI, USA"],"affiliations":[{"raw_affiliation_string":"University of Michigan, Ann Arbor, MI, USA","institution_ids":["https://openalex.org/I27837315"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024900735","display_name":"Yuan Yao","orcid":"https://orcid.org/0000-0003-0033-971X"},"institutions":[{"id":"https://openalex.org/I27837315","display_name":"University of Michigan\u2013Ann Arbor","ror":"https://ror.org/00jmfr291","country_code":"US","type":"education","lineage":["https://openalex.org/I27837315"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yuan Yao","raw_affiliation_strings":["University of Michigan, Ann Arbor, MI, USA"],"affiliations":[{"raw_affiliation_string":"University of Michigan, Ann Arbor, MI, USA","institution_ids":["https://openalex.org/I27837315"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053541912","display_name":"Kang G. Shin","orcid":"https://orcid.org/0000-0003-0086-8777"},"institutions":[{"id":"https://openalex.org/I27837315","display_name":"University of Michigan\u2013Ann Arbor","ror":"https://ror.org/00jmfr291","country_code":"US","type":"education","lineage":["https://openalex.org/I27837315"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Kang G. Shin","raw_affiliation_strings":["University of Michigan, Ann Arbor, MI, USA"],"affiliations":[{"raw_affiliation_string":"University of Michigan, Ann Arbor, MI, USA","institution_ids":["https://openalex.org/I27837315"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017324736","display_name":"Jongmin Choi","orcid":"https://orcid.org/0000-0003-4030-6867"},"institutions":[{"id":"https://openalex.org/I2250650973","display_name":"Samsung (South Korea)","ror":"https://ror.org/04w3jy968","country_code":"KR","type":"company","lineage":["https://openalex.org/I2250650973"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Jong-Min Choi","raw_affiliation_strings":["Samsung Research, Seoul, Republic of Korea"],"affiliations":[{"raw_affiliation_string":"Samsung Research, Seoul, Republic of Korea","institution_ids":["https://openalex.org/I2250650973"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5090468303","display_name":"Junbum Shin","orcid":"https://orcid.org/0009-0005-7985-6163"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Junbum Shin","raw_affiliation_strings":["CryptoLab, Seoul, Republic of Korea"],"affiliations":[{"raw_affiliation_string":"CryptoLab, Seoul, Republic of Korea","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5071378212"],"corresponding_institution_ids":["https://openalex.org/I27837315"],"apc_list":null,"apc_paid":null,"fwci":2.5406,"has_fulltext":true,"cited_by_count":41,"citation_normalized_percentile":{"value":0.89942251,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"2824","last_page":"2843"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12238","display_name":"Green IT and Sustainability","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12238","display_name":"Green IT and Sustainability","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.994700014591217,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.987500011920929,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8339505791664124},{"id":"https://openalex.org/keywords/privacy-policy","display_name":"Privacy policy","score":0.6913986206054688},{"id":"https://openalex.org/keywords/android","display_name":"Android (operating system)","score":0.6037306189537048},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.5522918701171875},{"id":"https://openalex.org/keywords/data-collection","display_name":"Data collection","score":0.5240559577941895},{"id":"https://openalex.org/keywords/consistency","display_name":"Consistency (knowledge bases)","score":0.4432685673236847},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.43521901965141296},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.32638275623321533},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.14872530102729797}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8339505791664124},{"id":"https://openalex.org/C102938260","wikidata":"https://www.wikidata.org/wiki/Q1999831","display_name":"Privacy policy","level":3,"score":0.6913986206054688},{"id":"https://openalex.org/C557433098","wikidata":"https://www.wikidata.org/wiki/Q94","display_name":"Android (operating system)","level":2,"score":0.6037306189537048},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.5522918701171875},{"id":"https://openalex.org/C133462117","wikidata":"https://www.wikidata.org/wiki/Q4929239","display_name":"Data collection","level":2,"score":0.5240559577941895},{"id":"https://openalex.org/C2776436953","wikidata":"https://www.wikidata.org/wiki/Q5163215","display_name":"Consistency (knowledge bases)","level":2,"score":0.4432685673236847},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.43521901965141296},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.32638275623321533},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.14872530102729797},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3460120.3484536","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484536","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484536","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3460120.3484536","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3460120.3484536","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3460120.3484536","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.7599999904632568}],"awards":[{"id":"https://openalex.org/G1126887312","display_name":"CPS: Breakthrough: Secure Interactions with Internet of Things","funder_award_id":"1646130","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G1432373144","display_name":null,"funder_award_id":"W911NF-21-1-","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"},{"id":"https://openalex.org/G2359181616","display_name":null,"funder_award_id":"CNS-1646130","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7452299184","display_name":null,"funder_award_id":"W911NF","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"},{"id":"https://openalex.org/G8924971918","display_name":null,"funder_award_id":"W911NF-21-1-0057","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"},{"id":"https://openalex.org/G8998121839","display_name":null,"funder_award_id":"911NF","funder_id":"https://openalex.org/F4320338281","funder_display_name":"Army Research Office"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320332195","display_name":"Samsung","ror":"https://ror.org/04w3jy968"},{"id":"https://openalex.org/F4320338281","display_name":"Army Research Office","ror":"https://ror.org/05epdh915"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3214522776.pdf","grobid_xml":"https://content.openalex.org/works/W3214522776.grobid-xml"},"referenced_works_count":58,"referenced_works":["https://openalex.org/W40976687","https://openalex.org/W72496981","https://openalex.org/W79696261","https://openalex.org/W1502406167","https://openalex.org/W1532325895","https://openalex.org/W1968548280","https://openalex.org/W1983750266","https://openalex.org/W2008513384","https://openalex.org/W2019798206","https://openalex.org/W2035055162","https://openalex.org/W2045812729","https://openalex.org/W2046368282","https://openalex.org/W2062781463","https://openalex.org/W2103076621","https://openalex.org/W2120476011","https://openalex.org/W2136649349","https://openalex.org/W2155069789","https://openalex.org/W2168649891","https://openalex.org/W2187089797","https://openalex.org/W2307374598","https://openalex.org/W2376050373","https://openalex.org/W2517394750","https://openalex.org/W2528826491","https://openalex.org/W2566811487","https://openalex.org/W2597857713","https://openalex.org/W2612622960","https://openalex.org/W2621123093","https://openalex.org/W2740765036","https://openalex.org/W2751998548","https://openalex.org/W2758130709","https://openalex.org/W2787106847","https://openalex.org/W2794864670","https://openalex.org/W2796498984","https://openalex.org/W2803691889","https://openalex.org/W2888971993","https://openalex.org/W2892181857","https://openalex.org/W2896457183","https://openalex.org/W2908464012","https://openalex.org/W2936215830","https://openalex.org/W2945542863","https://openalex.org/W2962803243","https://openalex.org/W2970641574","https://openalex.org/W2975429091","https://openalex.org/W2990164998","https://openalex.org/W2996831414","https://openalex.org/W2999907851","https://openalex.org/W3015693366","https://openalex.org/W3032297757","https://openalex.org/W3048993947","https://openalex.org/W3081017056","https://openalex.org/W3124333016","https://openalex.org/W3135764500","https://openalex.org/W4213009331","https://openalex.org/W4235676610","https://openalex.org/W4235975350","https://openalex.org/W4236306709","https://openalex.org/W4250650717","https://openalex.org/W6602972026"],"related_works":["https://openalex.org/W2116878667","https://openalex.org/W3042284153","https://openalex.org/W4241527182","https://openalex.org/W2476957992","https://openalex.org/W1493227450","https://openalex.org/W2900699882","https://openalex.org/W4250923762","https://openalex.org/W576625533","https://openalex.org/W2025792237","https://openalex.org/W857570378"],"abstract_inverted_index":{"While":[0],"privacy":[1,45,55,98,158,169,179,226],"laws":[2],"and":[3,7,57,73,100,119,149,160,171,178,199,228],"regulations":[4],"require":[5],"apps":[6,215],"services":[8],"to":[9,17,52,147,163,191,197,203,206,220],"disclose":[10],"the":[11,18,27,40,65,68,87,90,103,113,121,151,156,236],"purposes":[12,41,66,92,154],"of":[13,67,102,107,116,128,132,184,212,225,233,238,240],"their":[14,58],"data":[15,28,70,129,134,140,152,161,176,241],"collection":[16],"users":[19],"(i.e.,":[20],"why":[21],"do":[22],"they":[23,62],"collect":[24],"my":[25],"data?),":[26],"usage":[29,135,153],"in":[30,43,94,155,167,223,231,243],"an":[31,82,108],"app's":[32],"actual":[33,104,133],"behavior":[34,106],"does":[35],"not":[36],"always":[37],"comply":[38],"with":[39],"stated":[42,93],"its":[44],"policy.":[46],"Automated":[47],"techniques":[48],"have":[49,188],"been":[50],"proposed":[51],"analyze":[53],"apps'":[54,69],"policies":[56,227],"execution":[59,105],"behavior,":[60],"but":[61],"often":[63],"overlooked":[64],"collection,":[71],"use":[72],"sharing.":[74],"To":[75],"mitigate":[76],"this":[77],"oversight,":[78],"we":[79],"propose":[80,143],"PurPliance,":[81],"automated":[83],"system":[84],"that":[85],"detects":[86],"inconsistencies":[88,173,230,239],"between":[89,174],"data-usage":[91],"a":[95,126,144,168,207],"natural":[96],"language":[97],"policy":[99,117,165,170],"those":[101],"Android":[109,214],"app.":[110],"PurPliance":[111,190,219],"analyzes":[112],"predicate-argument":[114],"structure":[115],"sentences":[118],"classifies":[120],"extracted":[122,157],"purpose":[123],"clauses":[124],"into":[125],"taxonomy":[127],"purposes.":[130],"Purposes":[131],"are":[136],"inferred":[137],"from":[138,195,201],"network":[139,175],"traffic.":[141],"We":[142],"formal":[145],"model":[146],"represent":[148],"verify":[150],"statements":[159],"flows":[162,177],"detect":[164,221],"contradictions":[166,222],"flow-to-policy":[172,229],"statements.":[180],"Our":[181,210],"evaluation":[182],"results":[183],"end-to-end":[185],"contradiction":[186],"detection":[187,193],"shown":[189,218],"improve":[192],"precision":[194],"19%":[196],"95%":[198],"recall":[200],"10%":[202],"50%":[204],"compared":[205],"state-of-the-art":[208],"method.":[209],"analysis":[211],"23.1k":[213],"has":[216],"also":[217],"18.14%":[224],"69.66%":[232],"apps,":[234],"indicating":[235],"prevalence":[237],"practices":[242],"mobile":[244],"apps.":[245]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":15},{"year":2024,"cited_by_count":12},{"year":2023,"cited_by_count":11},{"year":2022,"cited_by_count":2}],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2025-10-10T00:00:00"}