Keywords: Role based access control, Android, access control, administration
Prior works propose new models for role based access control (RBAC) in Android; this paper adds on
to that body of research. Despite RBAC’s inherent administrative ease, managing roles for Android
applications is tedious for the device user, owing to their lack of knowledge in access control. To
realize the full potential of RBAC and to equip the user with ability to effectively manage Android
permissions, we introduce three new models for administration of RBAC in Android. These models
are based on an in-depth analysis of applications in Android, and support the principle of least privilege
to reduce unwanted permission exposure.