Have a personal or library account? Click to login
Detecting the Inconsistency between Android Apps’ Data Collection and Google Play’s Data Safety Using Static Analysis Cover

Detecting the Inconsistency between Android Apps’ Data Collection and Google Play’s Data Safety Using Static Analysis

Cybernetics and Information Technologies
Volume 25 (2025): Issue 1 (March 2025)
By:
Open Access
|Mar 2025

References

  1. Bilal, A., H. T. Mirza, I. Hussain, A. Ahmad. Investigating Influence of Google-Play. Application Titles on Success. – ACM Digital Library, Vol. <bold>36</bold>, 2024, No C, p. 302.
    Search in Google ScholarBack to article
  2. Google Play Developer Help Community. Managing and Reporting Police Violations. Google Play. Online. Accessed 14-May-2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://support.google.com/googleplay/androiddeveloper/answer/9899142?hl=en">https://support.google.com/googleplay/androiddeveloper/answer/9899142?hl=en</ext-link></bold>
    Search in Google ScholarBack to article
  3. Google Play. Provide Information for Google Play’s Data Safety Section. Google Play, 14 December 2021. Online. Accessed 14-May-2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://support.google.com/googleplay/androiddeveloper/answer/10787469?hl=en">https://support.google.com/googleplay/androiddeveloper/answer/10787469?hl=en</ext-link></bold>
    Search in Google ScholarBack to article
  4. Mozilla. Mozilla Study: Data Privacy Labels for Most Top Apps in Google Play Store are False or Misleading. Mozilla, 23 February 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://foundation.mozilla.org/en/blog/mozilla-study-data-privacy-labels-for-most-top-apps-in-google-play-store-are-false-or-misleading/">https://foundation.mozilla.org/en/blog/mozilla-study-data-privacy-labels-for-most-top-apps-in-google-play-store-are-false-or-misleading/</ext-link></bold>
    Search in Google ScholarBack to article
  5. Rahman, M., P. Naghavi, B. Kojusner, S. Afroz, B. Williams, S. Ram-pazzi, V. Bindschaedler. Permpress: Machine Learning-Based Pipeline to Evaluate Permissions in App Privacy Policies. IEEE, 2022, p. 22.
    Search in Google ScholarBack to article
  6. Android Developers. App Manifest Overview. Online. Accessed 27-April-2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://developer.android.com/guide/topics/manifest/manifest-intro">https://developer.android.com/guide/topics/manifest/manifest-intro</ext-link></bold>
    Search in Google ScholarBack to article
  7. Yang, X., X. Zhang. A Study of User Privacy in Android Mobile AR Apps. – In: Proc. of 37th IEEE/ACM International Conference on Automated Software Engineering, 2022.
    Search in Google ScholarBack to article
  8. Almomani, I. M., A. A. Khayer. A Comprehensive Analysis of the Android Permissions System. – IEEE Access, Vol. <bold>8</bold>, 2020, pp. 216671-216688. DOI:<a href="https://doi.org/10.1109/access.2020.3041432." target="_blank" rel="noopener noreferrer" class="text-signal-blue hover:underline">10.1109/access.2020.3041432.</a>
    Search in Google ScholarBack to article
  9. Android Developers. Permissions on Android. Online. Accessed 19 May 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://developer.android.com/guide/topics/permissions/overview">https://developer.android.com/guide/topics/permissions/overview</ext-link></bold>
    Search in Google ScholarBack to article
  10. Khatoon, A., P. Corcoran. Android Permission System and User Privacy – A Review of Concept and Approaches. – In: 7th IEEE International Conference on Consumer Electronics – Berlin (ICCE-Berlin’17), 2017. DOI:<a href="https://doi.org/10.1109/icce-berlin.2017.8210616." target="_blank" rel="noopener noreferrer" class="text-signal-blue hover:underline">10.1109/icce-berlin.2017.8210616.</a>
    Search in Google ScholarBack to article
  11. Android Developer. Manifest.permission. Online. Accessed 29 May 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://developer.android.com/reference/android/Manifest.permission">https://developer.android.com/reference/android/Manifest.permission</ext-link></bold>
    Search in Google ScholarBack to article
  12. Gillis, A. S. What Is an APK File (Android Package Kit File Format)?: Definition from TechTarget. WhatIs.com. Online. Accessed May 19, 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://www.techtarget.com/whatis/definition/APK-file-Android-Package-Kit-file-format">https://www.techtarget.com/whatis/definition/APK-file-Android-Package-Kit-file-format</ext-link></bold>
    Search in Google ScholarBack to article
  13. Nwasra, N., M. Daoud, Z. H. Qaisar. ANFIS-AMAL: Android Malware Threat Assessment Using Ensemble of ANFIS and GWO. – Cybernetics and Information Technologies, Vol. <bold>24</bold>, 2024, No 3, pp. 39-58.
    Search in Google ScholarBack to article
  14. Zimmeck, S., Z. Wang, L. Zou, R. Iyengar, B. Liu, F. Schaub, J. Reidenberg. Automated Analysis of Privacy Requirements for Mobile Apps. – In: 2016 AAAI Fall Symposium Series, 2016.
    Search in Google ScholarBack to article
  15. Slavin, R., X. Wang, M. B. Hosseini, J. Hester, R. Krishnan, J. Bhatia, T. Breaux, J. Niu. Toward a Framework for Detecting Privacy Policy. – In: Proc. of 38th International Conference on Software Engineering, 2016, pp. 25-36.
    Search in Google ScholarBack to article
  16. Wang, X., X. Qin, M. Hosseini, R. Slavin, T. Breaux, J. Niu. GUILeak: Tracing Privacy Policy Claims on User Input Data for Android Applications. – In: Proc. of 40th International Conference on Software Engineering, 2018, pp. 37-47.
    Search in Google ScholarBack to article
  17. Tan, Z., W. Song. PTPDroid: Detecting Violated User Privacy. – In: Proc. of 45th International Conference on Software Engeneering (ICSE), IEEE, 2023, pp. 473-485. DOI: <a href="https://doi.org/10.1109/ICSE48619.2023.00050." target="_blank" rel="noopener noreferrer" class="text-signal-blue hover:underline">10.1109/ICSE48619.2023.00050.</a>
    Search in Google ScholarBack to article
  18. Feng, Y., L. Chen, A. Zheng, C. Gao, Z. Zheng. AC-Net: Assessing the Consistency of Description and Permission in Android Apps. – IEEE Access, Vol. <bold>7</bold>, 2019, pp. 57829-57842.
    Search in Google ScholarBack to article
  19. Feichtner, J., S. Gruber. Understanding Privacy Awareness in Android App Descriptions Using Deep Learning. – In: Proc. of 10th ACM Conf. Data Appl. Secur. Priv. (CODASPY’20), 2020, pp. 203-214. DOI: <a href="https://doi.org/10.1145/3374664.3375730." target="_blank" rel="noopener noreferrer" class="text-signal-blue hover:underline">10.1145/3374664.3375730.</a>
    Search in Google ScholarBack to article
  20. Wu, Z., X. Chen, S. U. J. Lee. FCDP: Fidelity Calculation for Description-to-Permissions in Android Apps. – IEEE Access, Vol. <bold>9</bold>, 2021, pp. 1062-1075. DOI: <a href="https://doi.org/10.1109/ACCESS.2020.3047019." target="_blank" rel="noopener noreferrer" class="text-signal-blue hover:underline">10.1109/ACCESS.2020.3047019.</a>
    Search in Google ScholarBack to article
  21. Khandelwal, R., A. Nayak, P. Chung, K. Fawaz. Unpacking Privacy Labels: A Measurement and Developer Perspective on Google’s Data Safety Section. – arXiv Preprint arXiv:2306.08111, 2023, p. 25.
    Search in Google ScholarBack to article
  22. Khandelwal, R., A. Nayak, P. Chung, K. U. Fawaz. The Overview of Privacy Labels and Their Compatibility with Privacy Policies. – ArXiv.Org, 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://arxiv.org/abs/2303.08213">https://arxiv.org/abs/2303.08213</ext-link>.</bold>
    Search in Google ScholarBack to article
  23. Olano, F. Facundoolano. – GitHub, 4.2.2019. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://github.com/facundoolano/google-play-scraper">https://github.com/facundoolano/google-play-scraper</ext-link></bold>.
    Search in Google ScholarBack to article
  24. APKPure.com. About Us. Online. Accessed 19 May 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://m.apkpure.com/ar/about.html">https://m.apkpure.com/ar/about.html</ext-link>.</bold>
    Search in Google ScholarBack to article
  25. Apktool. Apktool – A Tool for Reverse Engineering 3rd Party, Closed, Binary Android Apps. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://ibotpeaches.github.io/Apktool/">https://ibotpeaches.github.io/Apktool/</ext-link>.</bold>
    Search in Google ScholarBack to article
  26. Google Play Help. Understand App Privacy Security Practices with Google Play’s Data Safety Section. Online. Accessed 5 Juny 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://support.google.com/googleplay/answer/11416267?sjid=2407870662863064307-EU#data-collection&amp;zippy=%2Cdata-collection">https://support.google.com/googleplay/answer/11416267?sjid=2407870662863064307-EU#data-collection&amp;zippy=%2Cdata-collection</ext-link>.</bold>
    Search in Google ScholarBack to article
  27. Appdome. Structure of an Android App Binary (.apk). 9 Aug 2022. Online. Accessed 4 Juny 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://www.appdome.com/how-to/appsec-release-orchestration/appdome-basics/structure-of-an-android-app-binary-apk/">https://www.appdome.com/how-to/appsec-release-orchestration/appdome-basics/structure-of-an-android-app-binary-apk/</ext-link>.</bold>
    Search in Google ScholarBack to article
  28. Android Developers. Introduction to Activities. Online. Accessed 4 Juny 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://developer.android.com/guide/components/activities/intro-activities">https://developer.android.com/guide/components/activities/intro-activities</ext-link></bold>
    Search in Google ScholarBack to article
  29. Bird, S., E. Loper, E. Klein. Natural Language Processing with Python. O’Reilly Media Inc., 2009.
    Search in Google ScholarBack to article
  30. TensorFlow. Word2Vec. TensorFlow Text Tutorials. Online. Accessed 13 November 2023. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://www.tensorflow.org/text/tutorials/word2vec">https://www.tensorflow.org/text/tutorials/word2vec</ext-link></bold>
    Search in Google ScholarBack to article
  31. Play Console Help. Use of SMS or Call Log Permission Groups. <bold><ext-link ext-link-type="uri" xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="https://support.google.com/googleplay/androiddeveloper/answer/10208820?sjid8311827649165247607-EU">https://support.google.com/googleplay/androiddeveloper/answer/10208820?sjid8311827649165247607-EU</ext-link></bold>
    Search in Google ScholarBack to article
DOI: https://doi.org/10.2478/cait-2025-0007 | Journal eISSN: 1314-4081 | Journal ISSN: 1311-9702
Journal RSS Feed
Language: English
Page range: 110 - 125
Submitted on: Dec 6, 2025
Accepted on: Feb 18, 2025
Published on: Mar 21, 2025
Published by: Bulgarian Academy of Sciences, Institute of Information and Communication Technologies
In partnership with: Paradigm Publishing Services
Publication frequency: 4 times per year
Keywords:
Data Safety,
Android privacy,
Dangerous permissions,
Privacy policies
Related subjects:
Computer sciences,
Information technology

© 2025 Rawan Baalous, Alanoud Althobaiti, Dareen Alyoubi, Rama Alzahrani, Mona Aljohani, published by Bulgarian Academy of Sciences, Institute of Information and Communication Technologies
This work is licensed under the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 License.

Previous articleVolume 25 (2025): Issue 1 (March 2025)Next article