Android Permission Model and Application (app) analysis has consistently remained the focus of the investigation of research groups and stakeholders of the Android ecosystem since it was launched in 2008. Even though the Android smartphone operating system (OS) permission model has evolved significantly from `all-or-none access' to `user-chosen dangerous resource access', specific challenges and issues remain unresolved even after 15 years after the smartphone OS launch. This study addresses the issues and documents the research work in this arena through a comprehensive literature survey and comparative analysis. The survey's focal point is the Android permission model and relevant research between 2010-2022. We systematize the knowledge on (i) Android API Calls to permissions mapping, (ii) Android Permissions evolution, and (iii) how permissions are checked. Furthermore, the survey identifies the permission-related issues and relevant research addressed during the last decade. We reference seminal work in these areas. We summarize the identified research gaps and present future directions for early and experienced researchers.

翻译：自2008年发布以来，Android权限模型及其应用分析始终是研究团队和Android生态系统利益相关者关注的重点。尽管Android智能手机操作系统权限模型已从"全有或全无访问"模式显著演进至"用户选择危险资源访问"模式，但在该智能手机操作系统发布15年后，特定挑战与问题依然悬而未决。本研究通过全面的文献调研与比较分析，探讨了该领域存在的问题并梳理了相关研究工作。调研聚焦于2010年至2022年间Android权限模型及相关研究。我们对以下知识进行了系统化梳理：(i) Android API调用与权限的映射关系，(ii) Android权限的演进历程，以及(iii)权限检查机制。此外，本文识别了过去十年中已解决的权限相关问题及相关研究，并引证了这些领域的开创性工作。最后，我们总结了已发现的研究空白，并为新晋及资深研究者提出了未来研究方向。