Skip to content

Keeping-Privacy-Labels-Honest/Main

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Main

This repository is the main repository for our artifact release for Keeping Privacy Labels Honest a publication in the Proceedings on Privacy Enhancing Technologies Symposium 2022. In this repository you will find our bibtex, our acknowledgements, and further guidance on the structure of this github org containing the relevant artifacts. If you have any questions, feel free to open a ticket or simply email us.

Please be aware that most of the work was done in 2021 and leveraged API endpoints might have gone dead by now or slightly changed in how to access them.

Contents

This artifact release contains our raw data set of all Privacy Labels we evaluated as well as the source code for actually downloading privacy labels, analyzing privacy labels, automating traffic collection on an iPhone, as well as analyzing the collected traffic.

Screenshots

This is our raw data set containing our screenshots made of the analyzed apps.

Privacy Labels

This is our raw data set containing all analyzed privacy labels.

Privacy Label Downloader

This is the tool to use the 3u API to get a list of app ids that can then be used to download privacy labels from the Apple store.

iPhone automation

This is our script for automating the install, run, and stop of different apps on the iPhone. You require an jailbroken iPhone as well as a set of IPA files linked to the account on that iPhone.

Analyzing Privacy Labels and Traffic

This is our main tool. It will analyze a given set of privacy label and generate pretty graphs, as well as analyze the traffic collected when running apps on the iPhone.

Acknowledgements

  • This project was conceived and executed at the Institute for Application Security (Technische Universität Braunschweig)

  • This project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 101019206.

  • This project has received funding by the Deutsche Forschungsgemeinschaft (DFG, German Research Foundation) under Germany’s Excellence Strategy - EXC 2092 CASA - 390781972.

  • Datenanfragen.de e. V. is a non profit organisation co-founded by one of our authors (Benjamin Altpeter), they will further use the technology developed during this project to fight for our privacy rights.

Docker

Both the privacy label downloader and our main tool have a corresponding dockerfile to build the projects. Please build the privacy label downloader first as our main tool docker file depends on it.

You can then use the -v flag of docker run to mount required input our output folder and -it --entrypoint /bin/bash to start the container with a bash open. You may then use the running docker image as if it was your regular computer and can use our tools as described in the corresponding repository READMEs.

BibTex

@inproceedings{PETS:Koch:2022,
 author = {Simon Koch and Malte Wessels and Benjamin Altpeter and Madita Olvermann and Martin Johns},
 title  = {Keeping Privacy Labels Honest},
 booktitle = {Proceedings on Privacy Enhancing Technologies Symposium (PoPETS 2022)},
 year = {2022}
}

About

The main repository containing links and further information to get started.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors