Refine
H-BRS Bibliography
- yes (4)
Departments, institutes and facilities
Document Type
- Conference Object (3)
- Article (1)
Language
- English (4)
Keywords
- Crossmedia (1)
- Crossmedia Storytelling (1)
- FCM (1)
- Generative AI (1)
- Hypermedia Edutainment (1)
- Information Security (1)
- Personalization (1)
- Push notifications (1)
- Vulnerable Groups (1)
- android (1)
Push notifications are widely used in Android apps to show users timely and potentially sensitive information outside the apps’ regular user interface. Google’s default service for sending push notifications, Firebase Cloud Messaging (FCM), provides only transport layer security and does not offer app developers message protection schemes to prevent access or detect modifications by the push notification service provider or other intermediate systems.We present and discuss an in-depth mixed-methods study of push notification message security and privacy in Android apps. We statically analyze a representative set of 100,000 up-to-date and popular Android apps from Google Play to get an overview of push notification usage in the wild. In an in-depth follow-up analysis of 60 apps, we gain detailed insights into the leaked content and what some developers do to protect the messages. We find that (a) about half of the analyzed apps use push notifications, (b) about half of the in-depth analyzed messaging apps do not protect their push notifications, allowing access to sensitive data that jeopardizes users’ security and privacy and (c) the means of protection lack a standardized approach, manifesting in various developer-defined encryption schemes, custom protocols, or out-of-band communication methods. Our research highlights gaps in developer-centric security regarding appropriate technologies and supporting measures that researchers and platform providers should address.
Generative AI can considerably speed up the process of producing narrative content including different media. This may be particularly helpful for the generation of modular variations on narrative themes in hypermedia, crossmedia, or transmedia contexts, thereby enabling personalized access to the content by heterogenous target groups. We present an example where GenAI has been applied for image creation and translation of a text to multiple languages for a crossmedia edutainment project transferring IT security knowledge to vulnerable groups. GenAI still seems inadequate to produce interesting narrative text integrating dedicated educational content. AI-generated illustrations often require manual rework. However, LLM support in multilingual translations displays more intelligent solutions than expected, including the implementation of a password generation process from a narrated description.
