Google application permissions grouping, the “trap” users are willing to jump?


Android application in the process of downloading, excessive authority certification annoyed user, they are concerned that the application will collect personal information or exposed the defects of the equipment. Now, Google Play unveiled a new policy aims to simplify application certification process. Instead, simple makes it all the situation is more worse.

the policy loophole was a man named iamtubeman Redditor found users, and by Chris Hoffman in the how-to Geek in detail.

these households found that the policy of primary job is to pass on the Play Store to create, publish and update the application. Specifically, the new policy to integrate App permissions classification and related groups, it is good. But Redditor user said, “if you agree to an authority, means that you agree with the group all packaged other permissions.”

Google in its policy updates for their explains many: “once you agree with the App access to a group, then the App can use other personal rights in the group. So that you no longer need to manually to allow those that you have accepted the permissions set the automatic update permissions.”

Google translation for “you will not be able to manually approve individual permissions update”.

however, there are some users do not want to like this.

Hoffman explained that they also want to know whether other permissions will be granted to automatically update the application, but the problem is that they don’t even know how to update or redundant permissions.

for recalcitrant users, Google promises: if users want to fully control permissions to add process, you can check at any time, or consider turning off the automatic update feature. Any rights do not belong to the group permissions, including those that do not have permission to display in the main screen, will be displayed in the “other” group.

that sounds is very convenient, but is actually a “trap”.

Google created twelve specific permissions set, and a covering all aspects of the “other”, including “program to buy”, “equipment and App history”, the “cellular data set” and “identity”.

“identity”, for example. According to the new Google policy, if you allow the “identity” in the list of the first option – to allow found on the equipment account, is equivalent to allow the other “identity” of the function, such as “view their business card”, “change their business card”, “add and remove account”.

or, in the “contact/calendar”, agree to “view your contacts” users, will be agreed to in unwittingly “modify your contacts”, “view calendar events and confidential information” and “add or remove calendar events and sends an E-mail to the customer” permissions and other functions.

I bet, so that is not your mobile phone!

in December last year, the third party developers SnoopWall launched an App, it can make the Android users to the application access control is more detailed. It is very useful for me, but I’m not sure if it really can detect and alert users to access the application updates.

all in all, the future Android users want to get away from the passive situation is very difficult.

Source: