Study Finds iOS Apps Just As Intrusive As Android Apps

← Back to Stories (view on slashdot.org)

Study Finds iOS Apps Just As Intrusive As Android Apps

Posted by samzenpus on Thursday July 18, 2013 @08:01PM from the more-of-the-same dept.

wiredmikey writes "Despite fevered arguments that iOS is more secure than Android, and that Android offers developers more options than iOS, a study has found that both platforms are equally as invasive and curious when it comes to collecting user data. Security firm BitDefender analyzed more than 522,000 apps over the past year and focused on the 'intrusive behaviors' the app developer may have included in the product, such as tracking location, reading contact lists, and leaking your email address or device ID. According to Catalin Cosi, iOS applications appear to be more focused on harvesting private data than the ones designed for Android. Cosi did acknowledge that Android apps state all the permissions needed at installation time and there is no way to change the settings afterwards, while iOS permissions are requested at run-time, as the specific resource is used, making iOS a little bit more secure in practice."

107 comments

Min score:

Reason:

Sort:

But unlike Android apps by Anonymous Coward · 2013-07-18 20:12 · Score: 1, Insightful

they don't have to ask for permission.
1. Re:But unlike Android apps by kthreadd · 2013-07-18 20:15 · Score: 4, Informative
  
  iOS apps have to ask for permissions.
2. Re:But unlike Android apps by Sockatume · 2013-07-18 20:31 · Score: 5, Informative
  
  Furthermore you can pick and choose what permissions you give, and double check or revoke them later from one convenient "Privacy" pane. I'm switching permissions off and on for my own amusement right now.
  Also the device UDID is no longer available; apps that look for it are rejected and I think the current version of iOS refuses to hand it over.
  
  --
  No kidding!!! What do you say at this point?
3. Re:But unlike Android apps by Anonymous Coward · 2013-07-18 20:43 · Score: 5, Informative
  
  iOS apps don't ask for permission.
  Accessing the framework APIs will prompt the system to ask for permission, on behalf of the application. Basically, most APIs will work irregardless of what the user chooses. What those APIs return is directly related to the users choice- for example, if the user says "no" when the application attempts to determine your location via Core Location, then the CL APIs will still work- they'll just return useless information (basically hardcoded to nothing). The other APIs work in the same way.
  This was done for backwards compatibility (so applications don't break just because the privacy stuff decided you can't get access to XYZ- the APIs for XYZ still work as expected, they just don't return any usable information) and so that applications can't side step the process of asking for permission but attempting to access the APIs anyways.
  It is possible to circumvent all of this by going around the system frameworks, but that is not trivial in the least- and Apple will smack you down hard for even attempting to access the private APIs you need to do so. You either go through their public APIs and get on the app store, or find some other way onto user devices (in which case the user is responsible for whatever stupidity they're going to run as root on their handheld).
4. Re:But unlike Android apps by Anonymous Coward · 2013-07-18 20:47 · Score: 0
  
  I really am puzzled its not a standard feature in android, I got a android version on my N900 and the first thing I installed is LBE guard(you need a routed phone though) so that I would be able to deny/allow anything at will.
5. Re:But unlike Android apps by GeekWithAKnife · 2013-07-18 20:52 · Score: 1
  
  Or even inform you about what permissions they need or what they are actually going to access...
  
  --
  A 'singular oddity' is an event that cannot be explained and only happens when you are alone.
6. Re:But unlike Android apps by ArsenneLupin · 2013-07-18 20:53 · Score: 4, Interesting
  
  Accessing the framework APIs will prompt the system to ask for permission, on behalf of the application. Basically, most APIs will work irregardless of what the user chooses. What those APIs return is directly related to the users choice- for example, if the user says "no" when the application attempts to determine your location via Core Location, then the CL APIs will still work- they'll just return useless information (basically hardcoded to nothing). The other APIs work in the same way.
  This was done for backwards compatibility (so applications don't break just because the privacy stuff decided you can't get access to XYZ- the APIs for XYZ still work as expected, they just don't return any usable information) and so that applications can't side step the process of asking for permission but attempting to access the APIs anyways.
  Very sensible choice. Why can't Android do the same? Or for that matter, Javascript on desktop browsers?
  
  It is possible to circumvent all of this by going around the system frameworks, but that is not trivial in the least- and Apple will smack you down hard for even attempting to access the private APIs you need to do so. You either go through their public APIs and get on the app store, or find some other way onto user devices (in which case the user is responsible for whatever stupidity they're going to run as root on their handheld).
  Now, this is less optimal. The OS or runtime should enforce well behavedness, not the app-store. There might be many reason why a user might bypass the app-store (such as getting apps that compete with Apple's built-in functionality, or are not up to Apple's morality standards), he should not be punished for this choice by having the app bypass system security...
  In java, applets have to respect the sandbox rules no matter where you got it from. There is just no way to use "private APIs" that give extra rights. It's enforced by the run-time (well, unless there are security holes in that runtime, but that is a different discussion...).
7. Re:But unlike Android apps by Sockatume · 2013-07-18 21:40 · Score: 2
  
  I think Android will do the same, it's just an engineering challenge. Apple only got around to it with iOS6 last year.
  
  --
  No kidding!!! What do you say at this point?
8. Re: But unlike Android apps by Anonymous Coward · 2013-07-18 21:51 · Score: 0
  
  I'm switching permissions off and on for my own amusement right now.
  Dude, the first rule about switching permissions is you don't talk about switching permissions - especially while you're doing it.
9. Re:But unlike Android apps by Stormthirst · 2013-07-18 23:26 · Score: 1
  
  Part of the problem here is that clueless users don't understand permissions. They will assume that they have to grant the app all the permissions, or it won't work.
10. Re: But unlike Android apps by AReilly · 2013-07-18 23:37 · Score: 2
  
  Old school apps, the programs we used to run on PCs automatically had access to everything that the user who ran it had access to. And that didn't seem to be a problem. People would report "spyware" and programs that did badness would be shunned.
  It seems that the fine grain permission protections of the mobile platforms have the inverse effect to the seeming intention: permission explicitly granted is exploited ruthlessly. And that seems to still be OK.
  
  --
  -- Andrew
11. Re:But unlike Android apps by Bogtha · 2013-07-18 23:40 · Score: 2
  
  What those APIs return is directly related to the users choice- for example, if the user says "no" when the application attempts to determine your location via Core Location, then the CL APIs will still work- they'll just return useless information (basically hardcoded to nothing). The other APIs work in the same way.
  
  No, that's not true. iOS tells the application when something is unauthorised. For example, you can call [CLLocationManager authorizationStatus] at any point, and if you ask for the user's location and get denied, it sends your delegate a locationManager:didFailWithError: message saying that the user denied the request. The same is true for other APIs. You don't get fed bad data.
  
  --
  Bogtha Bogtha Bogtha
12. Re:But unlike Android apps by geminidomino · 2013-07-18 23:57 · Score: 2
  
  Very sensible choice. Why can't Android do the same?
  It can, and has been able to do so for awhile. Modifications for it to do so were refused by the CyanogenMod devs, on the grounds of "Not wanting to piss off google and/or devs." I presume they're not in the main system rather than a 3rd party mod for the same reason.
  I've been using Android devices for a few years, and whether or not I can get PDroid on them is one of my suitability criteria now. If iOS really has that function baked-in, then it's an example of something Apple did right that Google whiffed.
13. Re:But unlike Android apps by PopeRatzo · 2013-07-19 00:11 · Score: 1
  
  Part of the problem here is that clueless users don't understand permissions. They will assume that they have to grant the app all the permissions, or it won't work.
  The fact that you can't just pick and choose permissions when installing the app is also a problem.
  On android, for example, when installing an app, it basically tells me which permissions that app is taking for itself. There's no reason why those permissions couldn't be selectable right at that point, instead of having to dig for a setting later. Except of course, that the intrusion is exactly what the developers intended.
  
  --
  You are welcome on my lawn.
14. Re:But unlike Android apps by Anonymous Coward · 2013-07-19 00:33 · Score: 0
  
  So, we're back to "You have disabled access to tracking your position. You need to enable this to continue playing".
  The advantage of replying with bogus data is that the app cannot pester the user until he gets fed up and enables access.
15. Re:But unlike Android apps by Bogtha · 2013-07-19 00:48 · Score: 1
  
  So, we're back to "You have disabled access to tracking your position. You need to enable this to continue playing".
  
  Apple reject applications that do things like that.
  
  --
  Bogtha Bogtha Bogtha
16. Re:But unlike Android apps by Bogtha · 2013-07-19 00:50 · Score: 1
  
  The advantage of replying with bogus data is that the app cannot pester the user until he gets fed up and enables access.
  
  Also, applications cannot pester the user in this way. After two rejections, the requests for user location data is automatically denied.
  
  --
  Bogtha Bogtha Bogtha
17. Re:But unlike Android apps by Anonymous Coward · 2013-07-19 01:35 · Score: 0
  
  Very sensible choice. Why can't Android do the same?
  Because Android (just like iOS) was deliberately designed to "leak" personal information. Personal information and targeted advertising is the new gold rush.
  Google's motto: "Don't be evil (unless we can make a buck)".
  Apple's motto: "Exploit people differently."
18. Re:But unlike Android apps by N0Man74 · 2013-07-19 01:38 · Score: 1
  
  On android, for example, when installing an app, it basically tells me which permissions that app is taking for itself.
  Unfortunately, it's not always clear what exactly these permissions mean.
19. Re:But unlike Android apps by jkflying · 2013-07-19 01:42 · Score: 2
  
  The thing is, ad-supported apps need network access, and if you could disable the network access permission then you'd essentially be pirating the app. Of course, nothing stops you from using DroidWall to block it manually, but that requires you to root the device, which means that Google isn't *enabling* it, and as such they don't have to endure the wrath of angry app-developers.
  Which is why Google doesn't allow you to pick and choose at install, even if they *do* tell you what permissions are needed.
  
  --
  Help I am stuck in a signature factory!
20. Re:But unlike Android apps by Krojack · 2013-07-19 02:42 · Score: 1
  
  I'm confused. I don't see this and never have on my iPad. Is it only in iOS versions > 5.1.1? I have the first gen iPad so I got one of those "fragmented" versions of the iOS.
21. Re:But unlike Android apps by Sockatume · 2013-07-19 02:50 · Score: 1
  
  iOS 6 I'm afraid. You get location permissions and that's it.
  
  --
  No kidding!!! What do you say at this point?
22. Re:But unlike Android apps by Sockatume · 2013-07-19 03:01 · Score: 1
  
  What if it's an app with a legitimate function the user simply declines to use? I don't want my Twitter posts geotagged with my position, but I don't want them all geotagged with randomly chosen locations in central Borneo either.
  
  --
  No kidding!!! What do you say at this point?
23. Re: But unlike Android apps by IndustrialComplex · 2013-07-19 03:06 · Score: 1
  
  Old school apps, the programs we used to run on PCs automatically had access to everything that the user who ran it had access to. And that didn't seem to be a problem. People would report "spyware" and programs that did badness would be shunned.
  My old school PC did not have an always-on internet connection, it did not have a GPS chip installed in it, it did not have all of my contacts packaged behind a convenient API (my contacts were handwritten in a little book) When I didn't want a program to have access to the internet, I didn't grant it access to the internet via the firewall, or I didn't even run it while the modem was connected.
  
  --
  Out of modpoints but really liked a post? 1BDkF6TtmmeZ3yqXbz9yhdYVqRYnwFoXDj
24. Re:But unlike Android apps by BasilBrush · 2013-07-19 03:40 · Score: 1
  
  There is an API to know whether the app has a permission or not. If a twitter app is saying you posted from central Borneo when you didn't, that would be the apps fault. But it probably wouldn't get past an app store review anyway.
25. Re:But unlike Android apps by Knuckles · 2013-07-19 06:08 · Score: 1
  
  Exactly. If app x has the option to let me send something to users in my address book (and which app hasn't), I understand that it will need access to the address book. That still does not tell me whether it will use that access to send all my contacts to its server.
  
  --
  "When I first heard Daydream Nation it quite frankly scared the living shit out of me." -- Matthew Stearns
26. Re:But unlike Android apps by skids · 2013-07-19 06:25 · Score: 1
  
  It takes less time to write an app that assumes it has a set of permissions, rather than an app that checks to see whether it has a certain set of permissions, and if not, does something sensible.
  What really needs to happen is the App stores need to start allowing the customers to filter their searches on which permissions apps require.
  
  --
  Someone had to do it.
27. Re:But unlike Android apps by atlasdropperofworlds · 2013-07-19 07:16 · Score: 1
  
  Now they do but it wasn't always this way. The damage has been done.
28. Re:But unlike Android apps by Anonymous Coward · 2013-07-19 08:17 · Score: 0
  
  You've been able to do exactly that for years on Android. You just need something like Gemini App Manager.
29. Re:But unlike Android apps by Anonymous Coward · 2013-07-19 12:30 · Score: 0
  
  I (and everyone I know) does this with Android. Once you're rooted you can install an app that will force remove permissions from apps. Of course, many apps will refuse to work without their unnecessary permissions, but then you have an easy way to filter the wheat from the chaff. This is not possible on iOS.
30. Re:But unlike Android apps by Anonymous Coward · 2013-07-19 22:27 · Score: 0
  
  It surely doesn't take much more work if you build that checking of available permissions in at the start. I see retrofitting that as potentially painful though.
31. Re:But unlike Android apps by Anonymous Coward · 2013-07-22 09:43 · Score: 0
  
  Basically, most APIs will work irregardless [sic] of what the user chooses. What those APIs return is directly related to the users choice- for example, if the user says "no" when the application attempts to determine your location via Core Location, then the CL APIs will still work- they'll just return useless information (basically hardcoded to nothing). The other APIs work in the same way.
  This was done for backwards compatibility (so applications don't break just because the privacy stuff decided you can't get access to XYZ- the APIs for XYZ still work as expected, they just don't return any usable information) and so that applications can't side step the process of asking for permission but attempting to access the APIs anyways.
  Not always. The privacy control for the AddressBook framework, in particular, was very poorly implemented. Rather than returning a valid pointer to an empty AB database, in iOS 6 it began returning a null pointer if the user refused permission. And unfortunately the AddressBook framework is not implemented in Objective-C, where nil (null) pointers behave sanely; it's plain C, and accessing that null pointer of course crashes the program.
  I never understood why those idiots at Apple didn't just return a valid empty database in that case. Wouldn't have forced any developers to update their code.
32. Re:But unlike Android apps by Plumpaquatsch · 2013-07-23 00:50 · Score: 1
  
  they don't have to ask for permission.
  Now let's assume for a moment that's true - what does the fact tell us that despite what your claim implies "iOS apps are just as invasive and curious about user data as Android apps are" and not more?
  
  --
  Of course news about a fake are Fake News.
33. Re:But unlike Android apps by Sockatume · 2013-07-30 21:31 · Score: 1
  
  How?
  
  --
  No kidding!!! What do you say at this point?
More secure? Hardly. by Anonymous Coward · 2013-07-18 20:34 · Score: 0

I believe that iOS apps are generally more secure for various reasons, but not for the one mentioned in the article. When the user installs an app he will be looking at the requested permissions and have a bit time to think about them (at least that's what I do) and you can see all at once. When people are asked at runtime while actually using the app, they will just grant the permission. (BTW, what happens if the permission is not given at RT? The app just quits?)
1. Re:More secure? Hardly. by Sockatume · 2013-07-18 20:48 · Score: 2
  
  If you don't give permission, a good app will pop up a message explaining why it wanted to use that feature, while a bad one will usually just die or act upon null data (e.g. show your contacts as empty).
  FWIW I find that I only give apps permissions they actually need with the runtime system. If I never use a feature in an app, it never gets permission to use it, so I know exactly what it can access from the moment I install it. If it makes an unreasonable request, it's rejected and I get on with what I actually want the app to do. Facebook can see my photos because I use it to post photos, but it doesn't know about my location or my contacts.
  
  --
  No kidding!!! What do you say at this point?
2. Re: More secure? Hardly. by Anonymous Coward · 2013-07-18 21:59 · Score: 0
  
  Lol, we're talking about the same users who responded to Windows' "omg, ur about to be pwned" warnings with "yes" always?
3. Re:More secure? Hardly. by DKlineburg · 2013-07-19 00:08 · Score: 1
  
  Can you do this with Android? I can't seem to find a way. It looks like I have to accept everything or nothing. Maybe I'm just not trained.
  
  --
  Memory is deceptive because it is colored by today's events. - Albert Einstein
4. Re:More secure? Hardly. by the_B0fh · 2013-07-19 00:23 · Score: 1
  
  Cannot. Unless you root it and install 3rd party stuff.
  No idea why Android users think the ability to revoke a permission is not important.
5. Re:More secure? Hardly. by jkflying · 2013-07-19 01:43 · Score: 1
  
  No, but you can see before you install what permissions it is going to need.
  
  --
  Help I am stuck in a signature factory!
6. Re:More secure? Hardly. by Anonymous Coward · 2013-07-19 03:03 · Score: 0
  
  Most people who defend Android's design decisions are engineers who think that reading the list of requested permissions at install time is adequate protection. The assumption is that if you don't want the app to do something you'll choose not to install it.
  Most people who are not engineers don't know what the frack those permissions even mean and need the context of "what was I doing when this app asked for permission" in order to know if they want their app to be able to make calls/share photos/etc.
7. Re:More secure? Hardly. by CanHasDIY · 2013-07-19 04:10 · Score: 1
  
  No idea why Android users think the ability to revoke a permission is not important.
  Really? You pretty much call it right there - they're users, not devs, so their knowledge of the technology is limited. Nobody's told them why it's important, so they don't know or care.
  Which is completely understandable, and not a reason to be jerks to them or treat them like idiots (not saying that's what you've done, but you have to admit it's a common behavior among the technologically experienced). After all, no one expects you to be an expert on hydraulics and internal combustion just because you use a car, do they?
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
8. Re:More secure? Hardly. by scot4875 · 2013-07-19 04:56 · Score: 1
  
  It's amusing to me that for the longest time, Apple fanbois mocked Android users for having the permissions list which "nobody reads anyway," while having *no* information or control over what iOS apps used.
  Apple finally gets something that is clearly superior to what Android has out-of-the-box (though it would still be nice to know an app's permissions list before downloading) and suddenly they have no idea why Android doesn't also do it this way. In another 6-12 months when this feature is rolled into stock Android, the Apple fanbois will then claim that Google stole the idea and that iOS has *always* had better handling of app permissions (while also ignoring the fact that this feature has been available for years to pretty much any Android user who wanted it enough to get it).
  --Jeremy
  
  --
  Jesus was a liberal
9. Re:More secure? Hardly. by the_B0fh · 2013-07-19 06:45 · Score: 1
  
  Man. What a way to twist what I wrote around. You do realize that it my stance, right? Read what AC said.
10. Re:More secure? Hardly. by the_B0fh · 2013-07-19 06:47 · Score: 1
  
  Apple did this as a result of Path and the various state AGs telling them they need to do a better job. So Apple came up with a pretty damned decent way of doing it.
  The same issues and state AGs were involved with Android too. Since Android already had a model to start with, why didn't they improve on it, instead of sitting on their ass for so damned long?
  *THAT* is the question.
11. Re:More secure? Hardly. by CanHasDIY · 2013-07-19 07:30 · Score: 1
  
  You do realize that it my stance, right?
  What your stance? Mongo not understand poorly formatted sentence structure.
  Lol, sorry, can't help but bust your balls.
  
  Read what AC said.
  Did - your response doesn't seem to have anything to do with their comment. Are you sure you didn't mean the parent (DKlineburg's) post? Or can you expound a bit and give some context?
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
The basic problem by ArsenneLupin · 2013-07-18 20:38 · Score: 5, Interesting

... is that if apps are denied permission, they may refuse to work (even though the permission requested might not actually needed for the app's official purpose).
So, what we would need is a change in how permission refusal is communicated (or not communicated) to the app. The OS should always tell the app "yes you got permission", but then just fake the action (return plausible but fake location data, plausible but fake adresses, etc.). Or fail with a code not linked to permission (pretend that there is no cellular network available if user refused permission to use it)
That way, it will be much more difficult to pressure users into granting apps each and every right they ask for...
1. Re:The basic problem by Sockatume · 2013-07-18 20:54 · Score: 2
  
  An app which refuses to acknowledge the possibility that it might be denied permission, is an app you should not use. It's really trivial to handle, especially for a non-critical app feature.
  
  --
  No kidding!!! What do you say at this point?
2. Re:The basic problem by ArsenneLupin · 2013-07-18 20:55 · Score: 1
  
  Just learned from another post that this is actually what iOS is doing. Kudo's for Apple if this is the case, for once they are doing something right!
3. Re:The basic problem by ArsenneLupin · 2013-07-18 21:02 · Score: 2
  
  An app which refuses to acknowledge the possibility that it might be denied permission, is an app you should not use.
  The problem is, most users cave for such pressure.
  Which means that suddenly you might be in a situation where all apps for a given purpose might do this. Then even the reasonable users have to either cave in or just accept that they have to do without any kind of app to fulfil this purpose.
  I was in such a situation recently, when needing a replacement filter basket for my espresso machine... and had to notice that all online shops selling such spare parts would force me to accept their intrusive javascript. Eventually I caved...
  
  It's really trivial to handle, especially for a non-critical app feature.
  Problem is, if rather than just disabling a single feature, the app stops to work altogether...
4. Re:The basic problem by Sockatume · 2013-07-18 21:21 · Score: 1
  
  I mean it's trivial for the programmer to handle. iOS 6 returns "null"; if you get that instead of the contact database, handle it right.
  
  --
  No kidding!!! What do you say at this point?
5. Re:The basic problem by ArsenneLupin · 2013-07-18 21:34 · Score: 4, Insightful
  
  We want the app programmer not to know.... The problem are not innocently bug apps, but deliberately intrusive apps. If they get back "null", they may refuse to work until the user finally caves in and grants them access (to contact database, location data, ...), that's the whole point.
6. Re:The basic problem by Sockatume · 2013-07-18 21:43 · Score: 2
  
  Does it matter whether a bad app uses crashing or uses nagging to force its users to acquiesce? It's a bad app trying to strong-arm the user. The benefit is that good apps have an opportunity to behave reliably when the user wants privacy.
  
  --
  No kidding!!! What do you say at this point?
7. Re:The basic problem by ArsenneLupin · 2013-07-18 22:01 · Score: 1
  
  Does it matter whether a bad app uses crashing or uses nagging to force its users to acquiesce?
  Both would be bad, especially if the crashing is done deliberately (nagging is always deliberate, I presume...). But nobody advocates either of them (well, except malware authors...)...
  
  It's a bad app trying to strong-arm the user.
  Exactly my point...
  
  The benefit is that good apps have an opportunity to behave reliably when the user wants privacy.
  True enough, pretending to grant permission may lead to a less reliable operation, but that may be the price to pay in an ecosystem where most apps couldn't be trusted to respect the user's privacy otherwise. It's a sad world, and those that "stand by watching" (while they still have a choice) are as guilty here as the actual perpetuators.
  It's a critical mass thing. If 80% of the users don't object to the 10% of bad apps that don't respect privacy, then those 10% grow into 99.99% for lack of incentive, and the other 20% of users are now deprived of making that choice.
8. Re:The basic problem by Bogtha · 2013-07-18 22:14 · Score: 1
  
  ... is that if apps are denied permission, they may refuse to work (even though the permission requested might not actually needed for the app's official purpose).
  
  It's unlikely Apple would approve an application that did that.
  
  So, what we would need is a change in how permission refusal is communicated (or not communicated) to the app. The OS should always tell the app "yes you got permission", but then just fake the action (return plausible but fake location data, plausible but fake adresses, etc.). Or fail with a code not linked to permission (pretend that there is no cellular network available if user refused permission to use it)
  
  That sounds like a recipe for an incredibly confusing user experience.
  The way iOS works at the moment is that if an application tries to access something like your contacts, a system prompt pops up asking the user whether to allow it or not. If they don't allow it, the application is told this and has to handle it as well as it can. If it fails to do this well, it won't be approved by Apple. Once the user has allowed an app to access something twice or refused it twice, this preference is remembered and the user isn't prompted again.
  
  --
  Bogtha Bogtha Bogtha
9. Re:The basic problem by gnasher719 · 2013-07-18 23:23 · Score: 4, Insightful
  
  An app which refuses to acknowledge the possibility that it might be denied permission, is an app you should not use. It's really trivial to handle, especially for a non-critical app feature.
  For example, an app that wants to read my address book must expect and handle the case that my address book is absolutely empty. Or an app wanting my location must handle the case that the iPhone doesn't know its location, because WiFi is turned off and GPS has no reception.
  
  On the other hand, as a developer I should be told the reason why there is no data. I might want display an error message if the phone can't give me its location because the GPS doesn't work, but no error message if the user refused to allow me access to the location.
10. Re:The basic problem by dc29A · 2013-07-18 23:49 · Score: 1
  
  ... is that if apps are denied permission, they may refuse to work (even though the permission requested might not actually needed for the app's official purpose).
  Custom ROM users on Android no longer have those issues. They can pry CM 10.1 and Privacy Guard out of my cold dead hands.
11. Re:The basic problem by MachineShedFred · 2013-07-18 23:51 · Score: 1
  
  That is basically what iOS does. If you don't grant it permission, it still returns the expected types of data, but the data is essentially empty.
  
  --
  Slashdot still doesnâ(TM)t support Unicode after it was added to the HTML standard in 1997.
12. Re:The basic problem by robmv · 2013-07-18 23:59 · Score: 2
  
  CyamogenMod Privacy Guard>/a>, it gives the applications you configure that way empty data for your contacts and other privacy important data. It works like Incognito/private mode on browsers
13. Re:The basic problem by Beorytis · 2013-07-19 01:53 · Score: 1
  
  (return plausible but fake location data, plausible but fake adresses, etc.).
  Then there will be a record (admissible as evidence) connecting you with other users whose devices used the same plausible but fake information.
14. Re:The basic problem by ArsenneLupin · 2013-07-19 02:08 · Score: 1
  
  The OS would only needs to fool some malware application, not to mislead a court... or what is actually your point? There are other malware out there than the Bundestrojaner...
15. Re:The basic problem by Sockatume · 2013-07-19 02:52 · Score: 1
  
  Indeed. I think the current version of iOS returns "null" if there's no permission, and a valid but empty dataset if no data is available.
  
  --
  No kidding!!! What do you say at this point?
16. Re:The basic problem by Anonymous Coward · 2013-07-19 03:07 · Score: 0
  
  Apple rejects those apps in their review process, negating the need for the OS to misrepresent the reason for the rejection.
17. Re:The basic problem by BasilBrush · 2013-07-19 03:48 · Score: 1
  
  Such a tactic won't work on iOS. Firstly once it gets told no twice, the user doesn't even get the option again, the app will always receive a no from the OS.
  Secondly, any unreasonable demands such as you outline would probably result in a rejection by the app reviewers. iOS apps are expected to continue to be able to do things that can reasonably be done without the requested permission.
18. Re:The basic problem by Beorytis · 2013-07-19 06:08 · Score: 1
  
  My point is that governments can use this evidence to prove that you were in the "same location" as someone else also using the same faked data.
19. Re:The basic problem by Anonymous Coward · 2013-07-19 08:16 · Score: 0
  
  The issue here is - and to the point of the parent -
  1. Programmers should be held to a higher standard in terms of the gracefulness of handling errors (and security) of their creations.
  2. If you are exposed to an app that doesn't hold those standards, don't use it!
  Your argument about the app programmer not knowing is a nonsequitor - as it all depends on what the application is built to do; hence the programmer has to be involved. An example would be an application designed to display stock market ticker information. It would have to have access to the network to do that. Now, let's say we use your model -- and the OS blocks the network due to user turning it off or denying access. The correct response is to have the application either die/fail to load, or to present a message to the effect that it is inoperative for its purpose. That can't be done by the OS.
20. Re:The basic problem by Anonymous Coward · 2013-07-19 09:48 · Score: 0
  
  Jailbroken iOS devices can do just this...Protect My Privacy from the Cydia store will let you pick a fake location from a map, and you can then choose to Allow, Deny, or Fake a location on a per-app basis.
  This is my #1 reason for NEEDING my iPhone jailbroken. Added bonus: it's fun giving Facebook checkins from Guantanamo Bay and Area 51.
21. Re:The basic problem by Anonymous Coward · 2013-07-19 22:48 · Score: 0
  
  I don't mind the apps knowing. There are plenty of apps I use where I can see why they requested certain permissions, but I'd still rather block them because I'm not interested in the features that require those permissions. If the devs don't handle it gracefully then I simply won't use that app and I might bitch to the devs about their shitty attitude. I don't want to use apps by devs that take a shitty attitude to their users, and seeing if they handle permissions being blocked gracefully is one way of assessing an apps quality. For me it is a rare enough case where I might want to deceive the app that I'm not really bothered about that option.
It's an issue of trust by magic+maverick+ · 2013-07-18 20:43 · Score: 4, Interesting

I like Ubuntu and Debian. They have "app stores" (apt-get install freeciv), and they work well. (I don't use the Ubuntu software center, mainly 'cause I don't want to see ads.) And, the stuff I can install from the main repositories is trustworthy. It's Free Software, and the source is available if I want to look at it. I also trust the organizations behind Debian and Ubuntu to pull software that is found to be unworthy of trust.
But, Apple? Google? I don't trust them. Not only don't I trust them, I don't trust their app stores. I don't trust the software in them. There isn't sufficient review to prevent malicious software getting in. Not only that, the software isn't Free, and so even if I want to look at the code, I can't.
And studies like this show that my lack of trust is probably a good thing. Because the software available is potentially malicious and intrusive (and I get to define what is malicious for me, and invading my privacy is malicious).

--
HELP MY ACCOUNT HAS BEEN HACKED BY AN ILLIBERAL ART STUDENT SET TO DESTROY THE INTERWEBZ!
1. Re:It's an issue of trust by RogueyWon · 2013-07-18 21:06 · Score: 1
  
  I do get the impression that the tide's starting to turn a bit of late and that people are starting to realise the drawbacks of the Apple/Android app-store model.
  Yes, the applications might be cheap or free, but when they're coming from obscure and opaque closed-source developers with no public track record, there's generally a price to be paid somewhere along the line, either in the form of IAPs or privacy/security problems (or both).
  About 2 years ago, I replaced my laptop with an iPad, as it seemed to be just as good for the tasks I need when "on the move" (and I do keep a proper desktop at home). I'm seriously considering moving back to a laptop PC now, because it's increasingly clear that the cheap and dirty "apps" model is no substitute for a proper combination of trusted open-source software and high quality (if more expensive) closed-source products from reputable developers.
2. Re: It's an issue of trust by Anonymous Coward · 2013-07-18 21:24 · Score: 0
  
  I am sorry but you seem to contradict yourself. the only truth to your comment is that a closed source free or paid app has to come from a reputable developer.
3. Re:It's an issue of trust by JaredOfEuropa · 2013-07-18 22:11 · Score: 3, Insightful
  
  Open source is not trustworthy by default. If you download and use a somewhat obscure bit of FOSS, do you really check the code yourself for bad behaviour, or do you assume that others have? That's a dangerous assumption. In contrast, Apple and Google add a layer of trust to closed software. They're saying "If you trust us, then you can trust that the apps you download do not mess around with private APIs and therefore cannot steal your contact list or other private data without your consent.". They take care of checking code for you (on a basic level). I don't trust Apple in every matter, but I do trust that they perform decent checks on the software in the App store, and I trust their OS enough to not worry about apps bypassing privacy controls using trivial exploits.
  
  That works for developers as well: by passing Apple's QA, I gain a modicum of trust with potential customers while keeping the source code to myself. The App store model allows honest small time developers to make some money off their work.
  
  --
  If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
4. Re:It's an issue of trust by RogueyWon · 2013-07-19 00:17 · Score: 1
  
  Not trustworthy by default - absolutely. I think I failed to make that point clear.
  But there are certainly projects and products that have become trustworthy over time - both open and closed source.
  By contrast, the trend on the Apple/Android app store seems to be towards studios that pop up out of nowhere, based in obscure parts of the world, with no kind of track record and no means of recourse when things go wrong.
5. Re:It's an issue of trust by Princeofcups · 2013-07-19 03:16 · Score: 1
  
  Open source is not trustworthy by default. If you download and use a somewhat obscure bit of FOSS, do you really check the code yourself for bad behaviour, or do you assume that others have?
  And if you are using a binary, then checking the source code is mute. Unless you compile it yourself, who's to say what you are using. Of course, can you trust your compiler... :-)
  
  --
  The only thing worse than a Democrat is a Republican.
6. Re:It's an issue of trust by Anonymous Coward · 2013-07-19 03:18 · Score: 0
  
  Apple at least adds a layer of trust because anything on the iTunes store has been approved by Apple (if you trust Apple which you must if you bought a device that runs their OS).
  Additionally the iTunes app store has user ratings and allows you to see all the other apps (and their ratings) developed by a particular developer. This ads much more transparency that just finding a website which only shows the latest couple products (and hides the several that are now infamous as trojans).
  And on top of that you still have the ability to choose to only download apps that come from developers that have been vetted by whatever third party method you consider reliable for desktop apps.
  So the iTunes app store adds two additional levels of security and still lets you do what you would have done anyway when vetting applications. It's by definition more secure.
7. Re:It's an issue of trust by tlhIngan · 2013-07-19 03:48 · Score: 1
  
  By contrast, the trend on the Apple/Android app store seems to be towards studios that pop up out of nowhere, based in obscure parts of the world, with no kind of track record and no means of recourse when things go wrong.
  Is this a good thing or bad thing? I mean, if you're a software developer in Russia, Romania, or other "obscure part of the world", how do you earn a living? Move?
  Or how about a small time developer in middle of nowhere USA? Last time we deal with them, we usually called them "indie developers". It's just the App Stores make it so easy for indie devs to set up shop (selling software isn't easy - between setting up the necessary infrastructure to handle payments and all that) that we're seeing more and more of them pop up.
  Of course, the fact that they're gathered all in one place also helps. And 90% of stuff is pretty much crap - just instead of dying in obscurity, they die on the app store shelf. (Yes, you may say "everything indie is good! Indie music rocks! indie games rock!" etc., but the real truth is you're only seeing the cream of the crop - the rest out there really is crap).
8. Re: It's an issue of trust by Anonymous Coward · 2013-07-19 04:12 · Score: 0
  
  OMG, I can't hear the source code!
9. Re:It's an issue of trust by John+Bokma · 2013-07-19 08:59 · Score: 1
  Not only that, the software isn't Free, and so even if I want to look at the code, I can't.
  VLC for iOS can play all your movies and shows in most formats directly without conversion.
  : :
  You can find the source code for the last release here:
  
  VLC for iOS 2.0.1 source code
  
  MediaLibraryKit 2.0.0 source code
  
  MobileVLCKit 2.1.0-pre1 source code
  Additionally, the latest code is always available on our git repositories.
  source: VLC for iOS 2.0
  --
  
  Perl Programmer for hire
10. Re:It's an issue of trust by John+Bokma · 2013-07-19 09:01 · Score: 1
  
  And there's more: http://en.wikipedia.org/wiki/List_of_free_and_open-source_iOS_applications Instead of whining start porting, eh?
  
  --
  
  Perl Programmer for hire
11. Re: It's an issue of trust by Anonymous Coward · 2013-07-26 15:47 · Score: 0
  
  F-droid and Debian check and compile the source code for me. I will trust Debian Devs and universe packagers from Ubuntu any day.
Did someone get a FUD dictionary for X-mas? by Anonymous Coward · 2013-07-18 20:55 · Score: 0

Intrusive, fevered, invasive, curious, leaking, harvesting... Wow... That post was like a "post"er child for FUD.
Is a way to change permissions on the android by Trax3001BBS · 2013-07-18 21:32 · Score: 4, Interesting

But you have to be rooted.
After it became illegal to root a device, Google store remove anything that interfered
with another programs ability to do what it does, firewalls, adblockers, HOSTS files, permission changers...
From the AdAway site:
AdAway is not available on Google Play! It was removed by Google due to Violation of section 4.4 of the Developer Distribution Agreement.
Please install it from F-Droid. https://code.google.com/p/ad-away/
My XOOM tablet is rooted (jailbroken / mine) I have the old "permissions" from Google play
that does change permissions of a program, as well as having a firewall and a HOSTS file installed.
Can't vouch for it as it's a very quick search but http://code.google.com/p/android-permissions/ claims to be able to do this as well.
To see what information an Android program can send, goto www.Rovio.com and read the Tos and Privacy Policy
it's a fav site of mine showing what's collected. Rovio.com is Angry Birds for one, ASTRO file manager reads
the same way both very popular programs.
1. Re:Is a way to change permissions on the android by Sockatume · 2013-07-18 21:46 · Score: 1
  
  If there's no consistent way of handling an app's permissions, then those permissions-fudging apps make other developers' lives very difficult. I can imagine that's why Google wouldn't want them on the store.
  
  --
  No kidding!!! What do you say at this point?
2. Re:Is a way to change permissions on the android by alex67500 · 2013-07-18 21:51 · Score: 1
  
  But you have to be rooted.
  After it became illegal to root a device in the United States of America,(...)
  FTFY
3. Re:Is a way to change permissions on the android by Anonymous Coward · 2013-07-18 23:03 · Score: 0
  
  What, you mean there aren't actually other countries out there? Everyone knows only murricans have internet.
4. Re:Is a way to change permissions on the android by Anonymous Coward · 2013-07-18 23:15 · Score: 1
  
  On Android you can use the XPrivacy module for the Xposed framework to spoof permissions to apps - i.e. fake location data, fake phone number, fake contacts, etc.
5. Re:Is a way to change permissions on the android by knarf · 2013-07-19 18:41 · Score: 1
  
  After it became illegal to root a device,
  
  Where did that happen? It is perfectly legal for me to gain root on any device I own, never mind what any EULA might state.
  
  --
  --frank[at]unternet.org
6. Re:Is a way to change permissions on the android by Trax3001BBS · 2013-07-20 00:54 · Score: 1
  
  On Android you can use the XPrivacy module for the Xposed framework to spoof permissions to apps - i.e. fake location data, fake phone number, fake contacts, etc.
  Very nice program.
  XPrivacy Android 4.0+
  http://forum.xda-developers.com/showthread.php?t=2320783
  https://play.google.com/store/apps/details?id=biz.bokhorst.xprivacy
  Requires Xposed to be installed first.
  http://forum.xda-developers.com/showthread.php?t=1574401
  I'll see (how / if) this works on my U.S. Motorola Xoom
7. Re:Is a way to change permissions on the android by Trax3001BBS · 2013-07-21 09:06 · Score: 1
  
  After it became illegal to root a device,
  Where did that happen? It is perfectly legal for me to gain root on any device I own, never mind what any EULA might state.
  Looks like Jan 26th 2013 - http://yro.slashdot.org/story/13/01/25/144204/unlocking-new-mobile-phones-becomes-illegal-in-the-us-tomorrow The /. article summery says "While this doesn't apply to phones purchased before the window closes, this means that after 1/26/13, for any new mobile phone you purchase, you'll have to fulfill your contract, or break the law to unlock it."
  I feel the same way you do, if and when I get a new phone I'll be rooting it, it's a security thing. One of the sites I use is still going strong http://wiki.cyanogenmod.org./ You just can't get say a firewall for you phone from Google Play store anymore.
8. Re:Is a way to change permissions on the android by alex67500 · 2013-07-21 20:56 · Score: 1
  
  There are, but it isn't illegal to root a device here in Europe. Once you own it, it's yours, you do whatever the f*** you want with it.
Android permissions by jez9999 · 2013-07-18 21:36 · Score: 1

I've never understood why, when you get an Android app update and the permissions are changed, it goes ahead and lists ALL the app's permissions again rather than just the new ones. And they are so vague as well, like "access to the network" or something. In practice, I just ignore the permission requirements, rendering the system totally worthless.

--
== Jez ==
Do you miss Firefox? Try Pale Moon.
1. Re:Android permissions by Anonymous Coward · 2013-07-18 21:54 · Score: 0
  
  It does say which ones have changed.
2. Re:Android permissions by AvitarX · 2013-07-18 22:30 · Score: 1
  
  unfortunately most free apps require access to networks too, as they are ad supported. If it has an invite mechanism it needs access to your contacts too, basically meaning every app could very well be a spam harvester and that the system is useless.
  
  --
  Wow, sent an e-mail as suggested when clicking on "use classic" banner, and got a fast response that addressed my msg
3. Re:Android permissions by k_187 · 2013-07-18 23:08 · Score: 2
  
  I think its just a feature of 4.1+ but it does tell you what the new/changed permissions are when you install.
  
  --
  11 was a racehorse
  12 was 12
  1111 Race
  12112
4. Re:Android permissions by Anonymous Coward · 2013-07-19 02:14 · Score: 0
  
  Most paid apps do as well I suspect. Case in point realcalc+ a not too shabby calculator app. If you buy the paid app with extra functionality, the extra functionality will stop working if the device can no longer connect to the Google app store.
Analyzed 1500 apps per day? by Anonymous Coward · 2013-07-18 22:47 · Score: 0

I'm sure they did a fine job.
1. Re:Analyzed 1500 apps per day? by Anonymous Coward · 2013-07-18 23:47 · Score: 0
  
  I'm sure they did a fine job.
  They had an app do it ... or a bunch of monkeys.
It is more secure. by Anonymous Coward · 2013-07-18 22:59 · Score: 0

Apple devices are more secure for certain threat scenarios. Fore full disk encryption iOS uses a PBKDF and a hsm to generate the key. That means that you can't really brute force the key except on the device. Android uses the pin to generate the key directly, which is much weaker.
That said, I have public key cryptography for email, and textsecure for SMS on the android device I'm typing this with. I wish Google, or just a hardware company would step up their game, because this is where it's needed.
Duh. by Anonymous Coward · 2013-07-19 00:45 · Score: 0

Only the brainwashed believe otherwise.
Wait, this was something people believed? by intermodal · 2013-07-19 01:14 · Score: 1

Anyone who believed at any point that this was not the case is a fool.

--
In SOVIET RUSSIA... erm...NSA AMERICA, the Internet logs onto YOU!
Turning bits off should not stop app by EmperorOfCanada · 2013-07-19 01:44 · Score: 1

I want two bits of functionality. One is the ability to turn off fine grained access to my phone. With mac there is a great program Little Snitch. I can install an application and tell it that it can access the internet except I don't want it phoning home to stats.application.com. Or I can say no net access at all. I want the same thing for all my applications. Generally if the application (say a game) doesn't need net access I would like to cut it off. But at the same time some applications need some net access to be useful but I don't want them calling anyone I don't trust.

Then there are bits that I really don't want applications accessing such as my contacts, messages, photos, etc. And lastly there are bits that I don't want some applications wasting energy with such as a colorwheel application accessing my GPS.

The key functionality is that I don't want an application to be able to not run when I cut it off from non core functionality. It is obvious that my video camera app should give up if I cut off from the camera but it shouldn't be approved if it won't run without net access or GPS. This access restriction would also apply to applications built into the phone itself. No exceptions for google or apple.

A great example of this would be the large number of Facebook logins that want access to my friends. I can't turn that off so I don't use them. I know the second that I say yes they will spam all my friends.

But I am fairly sure that I can hold my breath before either Apple or Google allow this because it would cut off access to the sleazier aspects of both companies.
1. Re:Turning bits off should not stop app by Sockatume · 2013-07-19 02:53 · Score: 1
  
  iOS does exactly what you want, except for web access (I think iOS7 adds a toggle for that).
  
  --
  No kidding!!! What do you say at this point?
Legit offline use by tepples · 2013-07-19 02:07 · Score: 1

So am I pirating when I scoot out of range of the WLAN signal?
1. Re:Legit offline use by Sockatume · 2013-07-19 03:02 · Score: 1
  
  If it's got ads you were only ever renting it in the first place. If the dev lets you keep playing without ads, or shuts down the app automatically, is their perogative.
  
  --
  No kidding!!! What do you say at this point?
2. Re:Legit offline use by CanHasDIY · 2013-07-19 04:06 · Score: 1
  
  Or turn on airplane mode.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
Is a way to change countries more easily by tepples · 2013-07-19 02:15 · Score: 1

For one thing, Dice is headquartered in the United States. For another, most people born in the United States lack an opportunity to choose a country other than the United States.
Free application repositories lack a few things by tepples · 2013-07-19 02:32 · Score: 1

One general problem with app stores that carry only free software is that not everything can be free. Repositories like F-Droid and Ubuntu main/universe don't have players for rented videos because the movie studios require compliance and robustness rules that are fundamentally incompatible with free software licensing. And their selection of things like video games is anemic because creating games requires a lot of skills other than programming for which there isn't much of a counterpart to the free software movement. Without video games, users end up driven to consoles, whose policies tend to be even worse for free software.