INVESTIGATING PRIVACY LEAKS IN IOS APPLICATIONS

Authors

  • Adriana-Meda UDROIU

DOI:

https://doi.org/10.53477/2668-2028-21-35

Keywords:

Keywords: data protection; privacy; Apple iOS.

Abstract

Abstract: The concern for protecting personal data has been raised many years ago and has been kept on sight ever since. People have to trust their devices and the applications they use so smartphone company survive on the market. Apple treats the security side very seriously and tries to reduce any malicious behaviour as early as possible. This is the main reason they introduced the vetting process to filter out the applications that seem suspicious and only publish legit applications on the App Store. Although the theory looks just fine, there have been multiple applications removed from the App Store because of malicious behaviours that couldn’t be found during the vetting process. In this paper we focus on finding personal data leaks through already published applications in the App Store.

Author Biography

Adriana-Meda UDROIU

Date of birth, City/Country: 24.04.1971, Bacau, Romania

Higher education (undergraduate and graduate studies):

  • Bachelor degree in (field of study), awarded by (University), class of (year), Computer &Automated Systems, Politechnica University Bucharest, 1994
  • Master degree in (field of study), awarded by (University), class of (year): Computer &Automated Systems, Politechnica University Bucharest, 1998
  • Doctorate degree in (field of study), awarded by (University), class of (year): Automated Sistems, University Politechnica Bucharest, 2003

Relevant training courses: CIPM, CCNA

Relevant certifications: DPO, CISO

Current position and affiliation: Associate professor at Faculty of Automatic Control and Computers, University Politehnica of Bucharest, at Faculty of Command and Staff, National Defence University ,,Carol I” and at the Faculty of Military Electronic and Information Systems, Military Technical Academy ,,Ferdinand I”; Chief Information Security Officer (CISO), National Institute for Research and Development in Informatics

Research interests: Critical Infrastructure, Information security, Cybersecurity and Cyber intelligence. Digitalization, Information systems

Relevant scientific achievements: 10 volumes in ICT field, 11 ICT research projects, over 50 article indexed in ISI or BDI.

References

1. Mitmproxy
2. I. Reyes, P. Wiesekera, A. Razaghpanah, J. Reardon, N. Vallina-Rodriguez, and S. Egelman, Won’t somebody think of the children? examining coppa compliance at scale, 2018.
3. I. Reyes, P. Wiesekera, A. Razaghpanah, J. Reardon, N. Vallina-Rodriguez, S. Egelman, and C. Kreibich, Is our children’s apps learning?” automatically detecting coppa violations, 2017.

Downloads

Published

2021-07-22

Issue

Vol. 17 No. 1 (2021)

Section

Articles