Skip to Main content Skip to Navigation
Conference papers

On the Privacy, Security and Safety of Blood Pressure and Diabetes Apps

Abstract : Mobile health (mHealth) apps are an ideal tool for monitoring and tracking long-term health conditions. In this paper, we examine whether mHealth apps succeed in ensuring the privacy, security, and safety of the health data entrusted to them. We investigate 154 apps from Android app stores using both automatic code and metadata analysis and a manual analysis of functionality and data leakage. Our study focuses on hypertension and diabetes, two common health conditions that require careful tracking of personal health data.We find that many apps do not provide privacy policies or safe communications, are implemented in an insecure fashion, fail basic input validation tests and often have overall low code quality which suggests additional security and safety risks. We conclude with recommendations for App Stores, App developers, and end users.
Document type :
Conference papers
Complete list of metadatas

Cited literature [21 references]  Display  Hide  Download

https://hal.inria.fr/hal-01345147
Contributor : Hal Ifip <>
Submitted on : Wednesday, July 13, 2016 - 11:16:00 AM
Last modification on : Thursday, October 26, 2017 - 4:34:02 PM

File

337885_1_En_38_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Konstantin Knorr, David Aspinall, Maria Wolters. On the Privacy, Security and Safety of Blood Pressure and Diabetes Apps. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. pp.571-584, ⟨10.1007/978-3-319-18467-8_38⟩. ⟨hal-01345147⟩

Share

Metrics

Record views

196

Files downloads

229