FraudDroid: Automated Ad Fraud Detection for Android Apps

Although mobile ad frauds have been widespread, state-of-the-art approaches in the literature have mainly focused on detecting the so-called static placement frauds, where only a single UI state is involved and can be identified based on static information such as the size or location of ad views. Other types of fraud exist that involve multiple UI states and are performed dynamically while users interact with the app. Such dynamic interaction frauds, although now widely spread in apps, have not yet been explored nor addressed in the literature. In this work, we investigate a wide range of mobile ad frauds to provide a comprehensive taxonomy to the research community. We then propose, FraudDroid, a novel hybrid approach to detect ad frauds in mobile Android apps. FraudDroid analyses apps dynamically to build UI state transition graphs and collects their associated runtime network traffics, which are then leveraged to check against a set of heuristic-based rules for identifying ad fraudulent behaviours. We show empirically that FraudDroid detects ad frauds with a high precision (93%) and recall (92%). Experimental results further show that FraudDroid is capable of detecting ad frauds across the spectrum of fraud types. By analysing 12,000 ad-supported Android apps, FraudDroid identified 335 cases of fraud associated with 20 ad networks that are further confirmed to be true positive results and are shared with our fellow researchers to promote advanced ad fraud detectionComment: 12 pages, 10 figure

Effects of user experience on user resistance to change to the voice user interface of an in‑vehicle infotainment system: Implications for platform and standards competition

This study examines the effects of user experience on user resistance to change—particularly, on the relationship between user resistance to change and its antecedents (i.e. switching costs and perceived value) in the context of the voice user interface of an in-vehicle infotainment (IVI) system. This research offers several salient findings. First, it shows that user experience positively moderates the relationship between uncertainty costs (one type of switching cost) and user resistance. It also negatively moderates the association between perceived value and user resistance. Second, the research test results demonstrate that users with a high degree of prior experience with the voice user interface of other smart devices exhibit low user resistance to change to the voice user interface in an IVI system. Third, we show that three types of switching costs (transition costs, in particular) may directly influence users to resist a change to the voice user interface. Fourth, our test results empirically demonstrate that both switching costs and perceived value affect user resistance to change in the context of an IVI system, which differs from the traditional IS research setting (i.e. enterprise systems). These findings may guide not only platform leaders in designing user interfaces, user experiences, and marketing strategies, but also firms that want to defend themselves from platform envelopment while devising defensive strategies in platform and standards competition

Prototyping of Ubiquitous Music Ecosystems

This paper focuses the prototyping stage of the design cycle of ubiquitous music (ubimus) ecosystems. We present three case studies of prototype deployments for creative musical activities. The first case exemplifies a ubimus system for synchronous musical interaction using a hybrid Java-JavaScript development platform, mow3s-ecolab. The second case study makes use of the HTML5 Web Audio library to implement a loop-based sequencer. The third prototype - an HTML-controlled sine-wave oscillator - provides an example of using the Chromium open-source sand-boxing technology Portable Native Client (PNaCl) platform for audio programming on the web. This new approach involved porting the Csound language and audio engine to the PNaCl web technology. The Csound PNaCl environment provides programming tools for ubiquitous audio applications that go beyond the HTML5 Web Audio framework. The limitations and advantages of the three approaches proposed - the hybrid Java/- JavaScript environment, the HTML5 audio library and the Csound PNaCl infrastructure - are discussed in the context of rapid prototyping of ubimus ecosystems

Self-Control in Cyberspace: Applying Dual Systems Theory to a Review of Digital Self-Control Tools

Many people struggle to control their use of digital devices. However, our understanding of the design mechanisms that support user self-control remains limited. In this paper, we make two contributions to HCI research in this space: first, we analyse 367 apps and browser extensions from the Google Play, Chrome Web, and Apple App stores to identify common core design features and intervention strategies afforded by current tools for digital self-control. Second, we adapt and apply an integrative dual systems model of self-regulation as a framework for organising and evaluating the design features found. Our analysis aims to help the design of better tools in two ways: (i) by identifying how, through a well-established model of self-regulation, current tools overlap and differ in how they support self-control; and (ii) by using the model to reveal underexplored cognitive mechanisms that could aid the design of new tools.Comment: 11.5 pages (excl. references), 6 figures, 1 tabl

Exploratory Study of the Privacy Extension for System Theoretic Process Analysis (STPA-Priv) to elicit Privacy Risks in eHealth

Context: System Theoretic Process Analysis for Privacy (STPA-Priv) is a novel privacy risk elicitation method using a top down approach. It has not gotten very much attention but may offer a convenient structured approach and generation of additional artifacts compared to other methods. Aim: The aim of this exploratory study is to find out what benefits the privacy risk elicitation method STPA-Priv has and to explain how the method can be used. Method: Therefore we apply STPA-Priv to a real world health scenario that involves a smart glucose measurement device used by children. Different kinds of data from the smart device including location data should be shared with the parents, physicians, and urban planners. This makes it a sociotechnical system that offers adequate and complex privacy risks to be found. Results: We find out that STPA-Priv is a structured method for privacy analysis and finds complex privacy risks. The method is supported by a tool called XSTAMPP which makes the analysis and its results more profound. Additionally, we learn that an iterative application of the steps might be necessary to find more privacy risks when more information about the system is available later. Conclusions: STPA-Priv helps to identify complex privacy risks that are derived from sociotechnical interactions in a system. It also outputs privacy constraints that are to be enforced by the system to ensure privacy.Comment: author's post-prin

Measuring mobile search tasks on Android platform

See english abstract for detailsThe presented work concerns the topic of complex search tasks and exploratory search. Search algorithms require statistical data to be improved and have to consider the effects of the user platform. Today the mobility of the world is quickly growing and more and more search queries are made from mobile devices. As mobile platforms have some specific differences from the desktops, it is an interesting field to research and compare mobile search with desktop based search. The Search Experiment application for Android developed in this work allows to compare the behavior of different users carrying out the same search tasks. The application provides the possibility to log sequences of actions users made during their searches and provides a data store engine for logs. The work gives small overview of related work and implementations on similar and describes the details of implementation of the Search Experiment application for the Android platform. It also gives a short summary on collected statistics and the usability of the program