privacy implications of privacy settings and tagging in
play

Privacy Implications of Privacy Settings and Tagging in Facebook - PowerPoint PPT Presentation

Mar 26, 2024 •284 likes •476 views

Privacy Implications of Privacy Settings and Tagging in Facebook 1 Privacy Implications of Privacy Settings and Tagging in Facebook Stan Damen, Nicola Zannone Eindhoven University of Technology 10th VLDB Workshop on Secure Data Management

  1. Privacy Implications of Privacy Settings and Tagging in Facebook 1 Privacy Implications of Privacy Settings and Tagging in Facebook Stan Damen, Nicola Zannone Eindhoven University of Technology 10th VLDB Workshop on Secure Data Management COMMIT/ S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  2. Privacy Implications of Privacy Settings and Tagging in Facebook 2 Motivations Social Networks Increasingly popular ◮ millions of users across the world Benefits ◮ Finding old friends ◮ Building communities around common interests ◮ Gaming ◮ ... S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  3. Privacy Implications of Privacy Settings and Tagging in Facebook 3 Motivations Information Sharing ◮ Posting ◮ Sharing pictures ◮ Profile (partially) publicly available ◮ Third party applications ◮ games, online marketplace ◮ Tagging Huge amount of personal information available on social networks S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  4. Privacy Implications of Privacy Settings and Tagging in Facebook 4 Motivations Privacy Issues ◮ Social network privacy practices: related to the collection and processing of personal data by the social network and their disclosure to third parties. ◮ user tracking (e.g., Facebook “Like” button), user profiling for advertisement purposes, secondary usage of data, and storing information after it was deleted by the user. ◮ Information disclosure to contacts: misuse of personal information by other users in the social network. ◮ e.g., cyberstalking, identity theft, discrimination S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  5. Privacy Implications of Privacy Settings and Tagging in Facebook 5 Motivations Privacy Paradox “There is only one thing in the world worse than being Facebook stalked, and that is not being Facebook stalked” Atwan and Lushing (2008) S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  6. Privacy Implications of Privacy Settings and Tagging in Facebook 6 Motivations Privacy Regulations ◮ Privacy legislation imposes stringent requirements on the collection, processing and disclosure of personal data ◮ Upcoming European regulation on data protection ◮ user empowerment in controlling own data ◮ easier access own data ◮ right to be forgotten ◮ right to data portability S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  7. Privacy Implications of Privacy Settings and Tagging in Facebook 7 Motivations Empowering Users ◮ Social networks provide control tools ◮ Privacy setting ◮ Facebook “View As” functionality ◮ Google Dashboard ◮ False confidence of being in control of data S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  8. Privacy Implications of Privacy Settings and Tagging in Facebook 7 Motivations Empowering Users ◮ Social networks provide control tools ◮ Privacy setting ◮ Facebook “View As” functionality ◮ Google Dashboard ◮ False confidence of being in control of data Goal ◮ Understand exiting privacy controls for collaborative systems. ◮ Focus on privacy impact of privacy settings and tagging in Facebook. S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  9. Privacy Implications of Privacy Settings and Tagging in Facebook 8 Outline Facebook Profile Privacy Issues Proof-of-Concept Conclusions & Future Work S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  10. Privacy Implications of Privacy Settings and Tagging in Facebook 9 Facebook Profile Profile Model Profile 1 1 1 Information Profile 1 1 * Album * * Posted_By 1 Post 1 * 1 Image 1 * * * * 1 Tag Comment * Uploaded_By Owns 1 * * Refer_To Issued_By Made_By 1 1 1 1 1 Data Data Host Tag Target Tag Issuer Provider * * Belong_To 1 Group User * 1 Defined_By S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  11. Privacy Implications of Privacy Settings and Tagging in Facebook 10 Facebook Profile Privacy Settings ◮ Settings for visibility ◮ Specify who can view an object ◮ Defined in terms of groups (only me, friend, friend of friend, custom groups) ◮ Defined for each object (album, photo, post, etc.) ◮ Settings for posting (define who can post) ◮ Settings for the visibility of new objects ◮ User friendly ◮ By default, more permissive settings S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  12. Privacy Implications of Privacy Settings and Tagging in Facebook 11 Facebook Profile Tagging ◮ Tagging allows users to share information faster and easier ◮ A tag is an unambiguous link to another user ◮ Additional “features” ◮ Modify visibility of tagged object ◮ Create a copy of the tagged object in the profile of the tagged user S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  13. Privacy Implications of Privacy Settings and Tagging in Facebook 12 Facebook Profile Permissions ◮ Permissions: view, delete, post, comment , tag ◮ Depending on the role ◮ Data host: all permissions ◮ Data provider: delete his post (if still in visibility of the post) ◮ Tag target: delete tag ◮ Depending on privacy setting ◮ users can see a post if they are in the visibility of the post ◮ Privacy settings can only be seen by data host S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  14. Privacy Implications of Privacy Settings and Tagging in Facebook 13 Privacy Issues Scenario (1) 1. Alice posts on Bob’s profile Visibility : Bob’s FoF 2. Eve becomes Alice’s friend Eve in the visibility of the post on Bob’s profile ◮ Eve can see contents on Bob’s profile without Bob knowing it ◮ Facebook’s “View As” functionality does not help ◮ Bob can restrict visibility to only me or friend S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  15. Privacy Implications of Privacy Settings and Tagging in Facebook 14 Privacy Issues Scenario (2) 1. Alice posts some content on her profile and tags Bob Visibility : Alice’s FoF ∪ Bob’s FoF Visibility (copy) : Bob’s FoF Eve in the visibility of the post 2. Alice changes the visibility to friend Visibility : Alice’s friend ∪ Bob’s friend Visibility (copy) : Bob’s FoF Eve in the visibility of the post 3. Alice changes the visibility to only me Visibility : Alice ∪ Bob Visibility (copy) : Bob’s FoF Eve in the visibility of (the copy of) the post ◮ Alice cannot remove Eve from the visibility of the post without removing the tag ◮ Alice depends on Bob’s settings S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  16. Privacy Implications of Privacy Settings and Tagging in Facebook 15 Privacy Issues Scenario (3) 1. Bob uploads a picture of Alice and tags Eve Visibility : Bob’s friends ∪ Eve’s friends Visibility (Eve copy) : Eve’s FoF 2. A tag of Alice is added to the picture Visibility (Eve copy) : Bob’s friends ∪ Eve’s friends ∪ Alice’s friends Visibility (Eve copy) : Eve’s FoF Visibility (Alice copy) : Alice’s FoF ◮ Alice (data subject) cannot influence visibility of the post ◮ Alice can only remove the tag S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  17. Privacy Implications of Privacy Settings and Tagging in Facebook 16 Privacy Issues Issues ◮ User(s) in control of information ◮ data host in control ◮ privacy concerns data subject ◮ Object-centric ◮ copies are treated as independent objects ◮ Business-driven ◮ Personal data (and their sharing) are a business asset ◮ By default, more permissive restrictions ◮ Tagging ◮ visibility difficult to control ◮ can be used to identify data subject(s), but not main goal ◮ additional risk of data exposure S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  18. Privacy Implications of Privacy Settings and Tagging in Facebook 17 Proof-of-Concept Proof-of-Concept ◮ Implementation of privacy settings in Facebook ◮ Actual view on information (vs. object view) ◮ Limitation ◮ Need access to privacy settings of users ◮ Can only be deployed as a functionality of the social network S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

  19. Privacy Implications of Privacy Settings and Tagging in Facebook 18 Conclusions & Future Work Conclusions & Future Work ◮ Privacy issues mainly caused by design decisions ◮ Need for novel access control model for collaborative systems ◮ able to consider role of users wrt data ◮ able to support novel modalities of social communication (e.g., tagging) ◮ Need for user-friendly transparency tools ◮ visualize who can see information ◮ notify when own policy is not enforced S. Damen & N. Zannone Privacy Implications of Privacy Settings and Tagging in Facebook

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cybercasing the Joint: On the Privacy Implications of Geo-Tagging Gerald Friedland, Robin Sommer

Cybercasing the Joint: On the Privacy Implications of Geo-Tagging Gerald Friedland, Robin Sommer

Cybercasing the Joint: On the Privacy Implications of Geo-Tagging Gerald Friedland, Robin Sommer International Computer Science Institute Berkeley, CA fractor,robin@icsi.berkeley.edu What is Geotagging? Source: Wikipedia 2 Why Geo-Tagging?

933 views • 27 slides
Automatic Privacy Policy Clustering ... applicable privacy preferences settings to formalise the

Automatic Privacy Policy Clustering ... applicable privacy preferences settings to formalise the

Automatic Privacy Policy Clustering ... applicable privacy preferences settings to formalise the data disclosure decisions and for visualization IFIP Summer School on Identity Management Karlstad, Sweden August, 6 th -10 th 2007

338 views • 15 slides
Direct-to-Consumer Neurotechnology: Privacy Implications Deven McGraw, JD, MPH, LLM Partner

Direct-to-Consumer Neurotechnology: Privacy Implications Deven McGraw, JD, MPH, LLM Partner

Direct-to-Consumer Neurotechnology: Privacy Implications Deven McGraw, JD, MPH, LLM Partner Manatt, Phelps & Phillips, LLP August 20, 2014 Why do we care about privacy? 1 Without privacy protections, people will engage in privacy-

577 views • 8 slides
Toniann Pitassi Outline 1. Differential Privacy: The Basics 2. Differential Privacy in New

Toniann Pitassi Outline 1. Differential Privacy: The Basics 2. Differential Privacy in New

Differential Privacy and Fairness: Foundations and New Frontiers Toniann Pitassi Outline 1. Differential Privacy: The Basics 2. Differential Privacy in New Settings - Pan Privacy - Privacy in multi-party settings - Fairness Outline

947 views • 49 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Privacy in Ubiquitous Computing Options, Trends, and Implications of Smart Objects Marc

Privacy in Ubiquitous Computing Options, Trends, and Implications of Smart Objects Marc

Privacy in Ubiquitous Computing Options, Trends, and Implications of Smart Objects Marc Langheinrich Institut fr Pervasive Computing ETH Zrich Februar 11. 2006 ZiF-Workshop: Privacy and 1 Surveillance Technologies Privacy in Ubiquitous

573 views • 32 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in many ways over the years. Usually privacy is concerned with the individual human being. We may talk about privacy as the control over your own

230 views • 21 slides
Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy Commissioner of Ontario https://www.ipc.on.ca/images/resources/7foundationalprinciples.pdf Privacy by Design Let's have it! Article 25 European

1.32k views • 118 slides
Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy.

Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy.

Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy. College Bescherming Persoonsgegevens (CBP) What is privacy? Users must be able to determine for themselves when, how, to what extent and

798 views • 45 slides
Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics

Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics

ECE598NB Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics Course Structure Privacy Define privacy Privacy History Privacy has always existed Cities / large populations have made

173 views • 14 slides
Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance Engineering & Public Policy Lorrie Faith Cranor October 29, 2013 y & c S a e v c i u r P r i t e y l b L a a s

245 views • 20 slides
Policy Advisory Committee 13 November 2017 Meeting 1 Policy Advisory Committee - Agenda 5.

Policy Advisory Committee 13 November 2017 Meeting 1 Policy Advisory Committee - Agenda 5.

Policy Advisory Committee 13 November 2017 Meeting 1 Policy Advisory Committee - Agenda 5. Update on the policy change 1. Apologies (absentees) To remove the claim to the name requirement from the 2. Minutes of the Meeting of

607 views • 37 slides
CoCCA Open Registry APRICOT 2005 Kyoto Japan Muhammad Aslam <muhammad.aslam@nic.af>

CoCCA Open Registry APRICOT 2005 Kyoto Japan Muhammad Aslam <muhammad.aslam@nic.af>

CoCCA Open Registry APRICOT 2005 Kyoto Japan Muhammad Aslam <muhammad.aslam@nic.af> Definitions ! Registrant: ! The organization or person responsible for a domain ! Registrar: ! The middlemen who interact with registries on behalf of

525 views • 13 slides
ICANN UPDATE Presentation title Anne-Rachel Inn presenter Manager Regional Relations, Africa

ICANN UPDATE Presentation title Anne-Rachel Inn presenter Manager Regional Relations, Africa

ICANN UPDATE Presentation title Anne-Rachel Inn presenter Manager Regional Relations, Africa title AfriNIC 11 date Dakar, Sngal 21-27 November 2009 1 Agenda About ICANN quick introduction New gTLDs What to expect and

820 views • 27 slides
DOMAINS AND HOSTING Web Application Development AGENDA A bit about domain names A bit

DOMAINS AND HOSTING Web Application Development AGENDA A bit about domain names A bit

DOMAINS AND HOSTING Web Application Development AGENDA A bit about domain names A bit about web hosting A bit about DNS info used in web hosting DOMAIN NAMES Web Application Development Duh WHAT IS A DOMAIN NAME? The

696 views • 42 slides
Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of

Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of

Digital identity, anonymity, pseudonymity and law in India Rowena E Rodrigues University of Edinburgh Digital India Increase in Internet usage and penetration Cyber cafs Telecentres Home Use Other applications

477 views • 15 slides
Chapter 6.1. Cycles in Permutations Prof. Tesler Math 184A Winter 2019 Prof. Tesler Ch. 6.1.

Chapter 6.1. Cycles in Permutations Prof. Tesler Math 184A Winter 2019 Prof. Tesler Ch. 6.1.

Chapter 6.1. Cycles in Permutations Prof. Tesler Math 184A Winter 2019 Prof. Tesler Ch. 6.1. Cycles in Permutations Math 184A / Winter 2019 1 / 31 Notations for permutations Consider a permutation in 1-line form : = f 6 5 2 7 1 3 4

467 views • 31 slides
1.14 Implementing Effective Contract Negotiation and Relationship Management Strategies 101 May

1.14 Implementing Effective Contract Negotiation and Relationship Management Strategies 101 May

1.14 Implementing Effective Contract Negotiation and Relationship Management Strategies 101 May 2020 Mary Schwartz, Abt Associates Fran Ledger, HUD SNAPS Office 1 Webinar Instructions Webinar will last about 60 minutes Participants in

474 views • 26 slides
Optimizing Your Analytic s L ife Cyc le with SAS & T e r adata Paul Se gal - T e r

Optimizing Your Analytic s L ife Cyc le with SAS & T e r adata Paul Se gal - T e r

Optimizing Your Analytic s L ife Cyc le with SAS & T e r adata Paul Se gal - T e r adata June 2017 Ag e nda T he Ana lytic L ife Cyc le Co mmo n Pro b le ms SAS & T e ra da ta so lutio ns 2 Ana lytic

629 views • 25 slides

More recommend