摘要
为了解移动阅读APP用户个人信息安全风险及其产生原因,以10款移动阅读APP为研究对象进行深度体验,分析其隐私保护政策文本,考察其设备权限获取和调用情况,并借助360网络安全实验室平台对各APP安装包进行检测分析。研究发现:移动阅读APP用户个人信息安全状况堪忧,在信息收集、信息使用环节以及APP平台本身风险点频出。社会规范的缺失与局限性、数据价值属性凸显与权属不清以及企业违法违规成本过低和相关部门监管不力是导致上述现象产生的重要原因。
This study aimed to identify the security risks of mobile readers'personal information and their causes.Based on 10 mobile reading apps,this study analyzes the privacy protection policies,examines the acquisition and invocation of its device permissions,and detects these app installation packages with the platform of the“360 network security lab”.The results found that the security status of mobile reading app users'personal information is worrying,and there are so many risks in the procedure of collecting and exploiting the information,especially the app platform itself.While the lack of social norms and limitations,the value of data and unclear ownership,and the low cost of corporate violations and the poor supervision of relevant departments are the important reasons for the above-mentioned phenomena.
出处
《图书馆学研究》
CSSCI
北大核心
2019年第21期48-56,共9页
Research on Library Science
基金
国家自然科学基金重点项目“非传统安全问题风险识别与防范机制——以智慧城市治理中的信息共享与使用为例”(项目编号:71734002)
华中科技大学学术前沿青年团队项目(项目编号:5001450036)的研究成果之一
关键词
移动阅读APP
用户
个人信息
信息安全
mobile reading app
users
personal information
information security
