COVID-19 one year on: Security and privacy review of contact tracing mobile apps
The ongoing COVID-19 pandemic caused 3.8 million deaths since December 2019. At the current vaccination pace, this global pandemic could persist for several years. Throughout the world, contact tracing (CT) apps were developed, which play a significant role in mitigating the spread of COVID-19. This...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2021
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/6437 https://ink.library.smu.edu.sg/context/sis_research/article/7440/viewcontent/PCSI_2021_03_0019_preprint.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-7440 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-74402023-07-19T07:36:28Z COVID-19 one year on: Security and privacy review of contact tracing mobile apps ANG, Wei Yang SHAR, Lwin Khin The ongoing COVID-19 pandemic caused 3.8 million deaths since December 2019. At the current vaccination pace, this global pandemic could persist for several years. Throughout the world, contact tracing (CT) apps were developed, which play a significant role in mitigating the spread of COVID-19. This work examines the current state of security and privacy landscape of mobile CT apps. Our work is the first attempt, to our knowledge, which provides a comprehensive analysis of 70 CT apps used worldwide as of year Q1 2021. Among other findings, we observed that 80% of them may have handled sensitive data without adequate protection, 70% of them uses weak cryptographic algorithms and 35% of them embeds data trackers. We also observed key developments in app privacy protection and security assurance initiatives. Our findings provide useful insights to the design and deployment of more secure and privacy preserving CT apps moving forward. 2021-10-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/6437 info:doi/10.1109/MPRV.2021.3115478 https://ink.library.smu.edu.sg/context/sis_research/article/7440/viewcontent/PCSI_2021_03_0019_preprint.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University mobile software security data security government contact tracing Covid-19 public health vaccination Asian Studies Information Security Public Health Software Engineering |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
mobile software security data security government contact tracing Covid-19 public health vaccination Asian Studies Information Security Public Health Software Engineering |
| spellingShingle |
mobile software security data security government contact tracing Covid-19 public health vaccination Asian Studies Information Security Public Health Software Engineering ANG, Wei Yang SHAR, Lwin Khin COVID-19 one year on: Security and privacy review of contact tracing mobile apps |
| description |
The ongoing COVID-19 pandemic caused 3.8 million deaths since December 2019. At the current vaccination pace, this global pandemic could persist for several years. Throughout the world, contact tracing (CT) apps were developed, which play a significant role in mitigating the spread of COVID-19. This work examines the current state of security and privacy landscape of mobile CT apps. Our work is the first attempt, to our knowledge, which provides a comprehensive analysis of 70 CT apps used worldwide as of year Q1 2021. Among other findings, we observed that 80% of them may have handled sensitive data without adequate protection, 70% of them uses weak cryptographic algorithms and 35% of them embeds data trackers. We also observed key developments in app privacy protection and security assurance initiatives. Our findings provide useful insights to the design and deployment of more secure and privacy preserving CT apps moving forward. |
| format |
text |
| author |
ANG, Wei Yang SHAR, Lwin Khin |
| author_facet |
ANG, Wei Yang SHAR, Lwin Khin |
| author_sort |
ANG, Wei Yang |
| title |
COVID-19 one year on: Security and privacy review of contact tracing mobile apps |
| title_short |
COVID-19 one year on: Security and privacy review of contact tracing mobile apps |
| title_full |
COVID-19 one year on: Security and privacy review of contact tracing mobile apps |
| title_fullStr |
COVID-19 one year on: Security and privacy review of contact tracing mobile apps |
| title_full_unstemmed |
COVID-19 one year on: Security and privacy review of contact tracing mobile apps |
| title_sort |
covid-19 one year on: security and privacy review of contact tracing mobile apps |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2021 |
| url |
https://ink.library.smu.edu.sg/sis_research/6437 https://ink.library.smu.edu.sg/context/sis_research/article/7440/viewcontent/PCSI_2021_03_0019_preprint.pdf |
| _version_ |
1772829245064609792 |