Utilizing sentence embedding for dangerous permissions detection in android apps' privacy policies

Baalous, R. S. A. and Poet, R. (2021) Utilizing sentence embedding for dangerous permissions detection in android apps' privacy policies. International Journal of Information Security and Privacy, 15(1), pp. 173-189. (doi: 10.4018/IJISP.2021010109)

[img] Text
235947.pdf - Published Version

692kB

Abstract

Privacy policies analysis relies on understanding sentences meaning in order to identify sentences of interest to privacy related applications. In this paper, the authors investigate the strengths and limitations of sentence embeddings to detect dangerous permissions in Android apps privacy policies. Sent2Vec sentence embedding model was utilized and trained on 130,000 Android apps privacy policies. The terminology extracted by the sentence embedding model was then compared with the gold standard on a dataset of 564 privacy policies. This work seeks to provide answers to researchers and developers interested in extracting privacy related information from privacy policies using sentence embedding models. In addition, it may help regulators interested in deploying sentence embedding models to check for privacy policies' compliance with the government regulations and to identify points of inconsistencies or violations.

Item Type:Articles
Status:Published
Refereed:Yes
Glasgow Author(s) Enlighten ID:Poet, Dr Ron and Baalous, Rawan Sulaiman A
Authors: Baalous, R. S. A., and Poet, R.
College/School:College of Science and Engineering > School of Computing Science
Journal Name:International Journal of Information Security and Privacy
Publisher:IGI Global
ISSN:1930-1650
ISSN (Online):1930-1669
Copyright Holders:Copyright © 2021 IGI Global
First Published:First published in International Journal of Information Security and Privacy 15(1):173-189
Publisher Policy:Reproduced with the permission of the publisher

University Staff: Request a correction | Enlighten Editors: Update this record