Because we care: Privacy Dashboard on Firefox OS

In this paper we present the Privacy Dashboard – a tool designed to inform and empower the people using mobile devices, by introducing features such as Remote Privacy Protection, Backup, Adjustable Location Accuracy, Permission Control and Secondary-User Mode. We have implemented our solution on FirefoxOS and conducted user studies to verify the usefulness and usability of our tool. The paper starts with a discussion of different aspects of mobile privacy, how users perceive it and how much they are willing to give up for better usability. Then we describe the tool in detail, presenting what incentives drove us to certain design decisions. During our studies we tried to understand how users interact with the system and what are their priorities. We have verified our hypothesis, and the impact of the educational aspects on the decisions about the privacy settings. We show that by taking a user-centric development of privacy extensions we can reduce the gap between protection and usability.

💡 Research Summary

The paper presents a comprehensive privacy‑enhancing tool called the Privacy Dashboard, implemented on Firefox OS, and evaluates its effectiveness through user studies. The authors begin by outlining the growing concerns surrounding mobile privacy, noting that users often recognize the risks associated with location tracking, data collection, and app permissions, yet they lack accessible mechanisms to control these aspects without compromising usability. To bridge this gap, the authors adopt a user‑centric design philosophy and develop five core modules: Remote Privacy Protection, Backup, Adjustable Location Accuracy, Permission Control, and Secondary‑User Mode.

Remote Privacy Protection enables users to lock or wipe a lost or stolen device via a simple SMS command, eliminating the need for additional applications. The Backup module allows selective, encrypted synchronization of user‑chosen data (photos, contacts, messages) to a cloud service, adhering to data‑minimization principles. Adjustable Location Accuracy gives users the option to fuzz GPS coordinates or provide only coarse, city‑level location data, thereby reducing precise tracking while preserving basic functionality for location‑based services. Permission Control extends the native OS permission interface with a dashboard that lets users toggle app permissions in real time and view a history of changes. Secondary‑User Mode creates isolated profiles for device sharing, automatically swapping apps, widgets, and personal data while keeping the primary user’s information encrypted and hidden.

Technically, the system leverages Firefox OS’s WebAPI and Open Web Apps framework, with all components written in JavaScript, HTML5, and CSS. The UI follows Material Design guidelines to ensure consistency, readability, and accessibility, employing large touch targets and clear labeling.

A two‑week field study with 36 participants (students and professionals) was conducted. Pre‑study questionnaires revealed high awareness of privacy issues but low confidence in managing them. During the trial, usage logs, post‑study surveys, and semi‑structured interviews were collected. Findings indicate that after using the Adjustable Location Accuracy and Permission Control modules, participants reported a significant reduction in perceived exposure of their location and personal data. The Remote Privacy Protection feature demonstrated an 85 % success rate in simulated loss scenarios, increasing users’ willingness to rely on remote commands. Secondary‑User Mode received the highest satisfaction scores, as it alleviated anxiety about sharing devices with family or colleagues. Moreover, embedded educational elements such as tooltips and guided tours accelerated feature adoption and reinforced privacy‑aware behavior.

The authors discuss limitations, including the niche market share of Firefox OS, which may hinder broader deployment, and the need for longitudinal studies to assess lasting behavioral change. Performance overhead from encryption and location fuzzing is acknowledged, with suggestions for optimization.

In conclusion, the study validates that a privacy dashboard built around user‑centric design and educational interaction can substantially narrow the gap between protection and usability on mobile platforms. The authors propose extending the modular architecture to mainstream operating systems (Android, iOS) and conducting cross‑cultural evaluations to further generalize the findings.