Surveillance Disguised as Protection: A Comparative Analysis of Sideloaded and In-Store Parental Control Apps
Authors: Eva-Maria Maier (St. Pölten University of Applied Sciences), Leonie Maria Tanczer (University College London), Lukas Daniel Klausner (St. Pölten University of Applied Sciences)
Volume: 2025
Issue: 2
Pages: 107–124
DOI: https://doi.org/10.56553/popets-2025-0052
Abstract: Parental control applications, software tools designed to manage and monitor children’s online activities, serve as essential safeguards for parents in the digital age. However, their usage has sparked concerns about security and privacy violations inherent in various child monitoring products. Sideloaded software (i.e. apps installed outside official app stores) poses an increased risk, as it is not bound by the regulations of trusted platforms. Despite this, the market of sideloaded parental control software has remained widely unexplored by the research community. This paper examines 20 sideloaded parental control apps and compares them to 20 apps available on the Google Play Store. We base our analysis on privacy policies, Android package kit (APK) files, application behaviour, network traffic and application functionalities. Our findings reveal that sideloaded parental control apps fall short compared to their in-store counterparts, lacking specialised parental control features and safeguards against misuse while concealing themselves on the user's device. Alarmingly, three apps transmitted sensitive data unencrypted, half lacked a privacy policy and 9 out of 20 were flagged for potential stalkerware indicators of compromise (IOC).
Keywords: application analysis, dual-use applications, mobile security, parental control, sideloading, stalkerware
Copyright in PoPETs articles are held by their authors. This article is published under a Creative Commons Attribution 4.0 license.
