Full Paper

Know Your Enemy: The Risk of Unauthorized Access in Smartphones by Insiders

Ildar Muslukhov, University of British Columbia, Canada

Yazan Boshmaf, University of British Columbia, Canada

Cynthia Kuo, Vibrado Technologies, USA

Jonathan Lester, Nokia Research, USA

Konstantin Beznosov, University of British Columbia, Canada

Time: Thu 11:48 - 12:12 | Session: Security and Privacy | Location: D 209

Smartphones store large amounts of sensitive data, such as SMS messages, photos, or email. In this paper, we report the results of a study investigating users' concerns about unauthorized data access on their smartphones (22 interviewed and 724 surveyed subjects). We found that users are generally concerned about insiders (e.g., friends) accessing their data on smartphones. Furthermore, we present the first evidence that the insider threat is a real problem impacting smartphone users. In particular, 12% of subjects reported a negative experience with unauthorized access. We also found that younger users are at higher risk of experiencing unauthorized access. Based on our results, we propose a stronger adversarial model that incorporates the insider threat. To better reflect users' concerns and risks, a stronger adversarial model must be considered during the design and evaluation of data protection systems and authentication methods for smartphones.

MobileHCI 2013 Proceedings in the ACM Digital Library.

Important Dates

February 15, 2013: Full and Short Papers
February 22, 2013: Tutorial Proposals
February 24, 2013: Workshop Proposals
April 12, 2013: Doctoral Consortium
April 12, 2013: Panels
April 17, 2013: Industrial Case Studies
April 26, 2013: Full and Short Papers Notification
May 1, 2013: End of SV Application
May 8, 2013: Posters
May 8, 2013: Demos and Experiences
May 15, 2013: Design Competition
May 31, 2013: Papers Camera Ready
July 12, 2013: Early Bird Registration
July 15, 2013: Hackfest Application
August 27-30, 2013: Conference in Munich

Full Paper

Important Dates

Donors