A Comprehensive Analysis of Evolving Permission Usage in Android Apps: Trends, Threats, and Ecosystem Insights

Ali Alkinoon; Trung Cuong Dang; Ahod Alghuried; Abdulaziz Alghamdi; Soohyeon Choi; Manar Mohaisen; An Wang; Saeed Salem; David Mohaisen

arXiv:2508.02008·cs.CR·August 5, 2025

A Comprehensive Analysis of Evolving Permission Usage in Android Apps: Trends, Threats, and Ecosystem Insights

Ali Alkinoon, Trung Cuong Dang, Ahod Alghuried, Abdulaziz Alghamdi, Soohyeon Choi, Manar Mohaisen, An Wang, Saeed Salem, David Mohaisen

PDF

Open Access

TL;DR

This paper provides a comprehensive analysis of Android permission trends, revealing evolving developer strategies, permission abuse patterns, and implications for user privacy through data mining and ecosystem insights.

Contribution

It introduces a detailed analysis of permission usage patterns, including association rule mining and semantic grouping, to understand Android app ecosystem dynamics and security threats.

Findings

01

Malicious apps request fewer permissions over time.

02

Benign apps increasingly request more permissions for functionality.

03

Distinct permission co-occurrence patterns across app genres.

Abstract

The proper use of Android app permissions is crucial to the success and security of these apps. Users must agree to permission requests when installing or running their apps. Despite official Android platform documentation on proper permission usage, there are still many cases of permission abuse. This study provides a comprehensive analysis of the Android permission landscape, highlighting trends and patterns in permission requests across various applications from the Google Play Store. By distinguishing between benign and malicious applications, we uncover developers' evolving strategies, with malicious apps increasingly requesting fewer permissions to evade detection, while benign apps request more to enhance functionality. In addition to examining permission trends across years and app features such as advertisements, in-app purchases, content ratings, and app sizes, we leverage…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdvanced Malware Detection Techniques · Software Testing and Debugging Techniques · Digital Rights Management and Security