Privacy of Geolocation Implementations Marcos Cceres, Opera - - PowerPoint PPT Presentation

privacy of geolocation implementations
SMART_READER_LITE
LIVE PREVIEW

Privacy of Geolocation Implementations Marcos Cceres, Opera - - PowerPoint PPT Presentation

Jul 22, 2023 227 likes •450 views

Privacy of Geolocation Implementations Marcos Cceres, Opera Software ASA W3C Workshop on Privacy of Advance Web APIs 12 July, 2010. London, United Kingdom. Implementations iOS 4 Firefox 3.6 Chrome 6 Opera 10.6 Critical

slide-1
SLIDE 1

Privacy of Geolocation Implementations

Marcos Cáceres, Opera Software ASA

W3C Workshop on Privacy of Advance Web APIs 12 July, 2010. London, United Kingdom.

slide-2
SLIDE 2

Implementations

  • iOS 4
  • Firefox 3.6
  • Chrome 6
  • Opera 10.6
slide-3
SLIDE 3

Critical Framework

  • Accessibility: Can the end-user access
  • ptions and information pertaining to

privacy?

  • Control: Does the system afford control
  • ver privacy settings? How much?
  • Confidentiality: Does the system afford

anonymity or alternative means of protecting their privacy?

slide-4
SLIDE 4

iOS 4

  • All apps must get the

user’s express permission (DAP take note!)

slide-5
SLIDE 5

iOS 4

  • No indication as to how

location is being derived

  • Modal prompts: user

cannot explore page.

  • Risk “click fatigue”
  • No link to privacy policy
slide-6
SLIDE 6

iOS 4

  • Privacy Policy 3 Levels

deep

  • ~50 pages (!)
  • No links, search, send
  • iHardToReadLegalGrey™
slide-7
SLIDE 7

iOS 4

Resets all location warnings

slide-8
SLIDE 8

iOS 4

Location services indicator!

slide-9
SLIDE 9

iOS 4

  • Accessibility: Not very. Modal dialog.

Hard to find privacy controls and policy. Indicator is helpful!

  • Control: kinda. Requires full reset. No

control over provider (ability to lie).

  • Confidentiality: Kinda. Location

services can be disabled + Airplane mode.

slide-10
SLIDE 10

Firefox

  • Non-modal
  • Allow, Deny, remember.
  • Access to privacy policies.
slide-11
SLIDE 11

Firefox - Location Provider

  • Not very accessible: “about:config”
slide-12
SLIDE 12

Firefox

  • Accessibility: Hard to find. Lacks way of

managing sites. No indicator.

  • Control:

Yes, but advanced options are

  • hidden. Hard to change.
  • Confidentiality: Hard. Ability to disable

and change provider.

slide-13
SLIDE 13

Opera

  • Non-modal
  • Allow, deny, remember.
  • No access to privacy policies!
slide-14
SLIDE 14

Opera - First time

  • After accept, lacks

way to view privacy policy.

slide-15
SLIDE 15

Opera - Location Provider

  • Not very accessible: “opera:config”
  • Provides decent control
  • Lacks info about choices
slide-16
SLIDE 16

Opera

  • Accessibility:
  • Yes. One click. But lacks

good way of managing sites.

  • Control:

Yes, but advanced options are hidden.

  • Confidentiality:

Yes, ability to disable and change provider.

slide-17
SLIDE 17

Chrome

  • Non-modal
  • Allow (forever), deny.
  • Access to privacy policies.
slide-18
SLIDE 18

Chrome

  • Indicator
  • One click access
  • Good control over sites
  • Embedded components
slide-19
SLIDE 19

Chrome

  • Accessibility:
  • Yes. One click. But lacks

good way of managing sites.

  • Control:
  • Yes. But no control over

provider.

  • Confidentiality:
  • Yes. But no ability to

change provider?

slide-20
SLIDE 20

Do we need...

  • Further standardization of UI?
  • To leave it to the market?