Honeysuckle
Open Access
- 9 September 2021
- journal article
- research article
- Published by Association for Computing Machinery (ACM) in Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies
- Vol. 5 (3), 1-27
- https://doi.org/10.1145/3478097
Abstract
In-app privacy notices can help smartphone users make informed privacy decisions. However, they are rarely used in real-world apps, since developers often lack the knowledge, time, and resources to design and implement them well. We present Honeysuckle, a programming tool that helps Android developers build in-app privacy notices using an annotation-based code generation approach facilitated by an IDE plugin, a build system plugin, and a library. We conducted a within-subjects study with 12 Android developers to evaluate Honeysuckle. Each participant was asked to implement privacy notices for two popular open-source apps using the Honeysuckle library as a baseline as well as the annotation-based approach. Our results show that the annotation-based approach helps developers accomplish the task faster with significantly lower cognitive load. Developers preferred the annotation-based approach over the library approach because it was much easier to learn and use and allowed developers to achieve various types of privacy notices using a unified code format, which can enhance code readability and benefit team collaboration.Keywords
Funding Information
- Air Force Research Laboratory (FA8750-15-2-0281)
- National Science Foundation (CNS-1801472)
This publication has 32 references indexed in Scilit:
- Your Location has been Shared 5,398 Times!Published by Association for Computing Machinery (ACM) ,2015
- Checking More and Alerting Less: Detecting Privacy Leakages via Enhanced Data-flow Analysis and Peer VotingPublished by Internet Society ,2015
- Improving App Privacy: Nudging App Developers to Protect User PrivacyIEEE Security & Privacy, 2014
- FlowDroidACM SIGPLAN Notices, 2014
- Using personal examples to improve risk communication for security & privacy decisionsPublished by Association for Computing Machinery (ACM) ,2014
- A Machine-learning Approach for Classifying and Categorizing Android Sources and SinksPublished by Internet Society ,2014
- PScoutPublished by Association for Computing Machinery (ACM) ,2012
- Using thematic analysis in psychologyQualitative Research in Psychology, 2006
- Model-based user interfacesPublished by Association for Computing Machinery (ACM) ,1994
- Perceived Usefulness, Perceived Ease of Use, and User Acceptance of Information TechnologyMIS Quarterly, 1989