Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Platform for Privacy Preferences Project

Published bySigne Henningsen Modified over 4 years ago

Similar presentations

Presentation on theme: "The Platform for Privacy Preferences Project"— Presentation transcript:

1 The Platform for Privacy Preferences Project
Lorrie Faith Cranor AT&T Labs-Research Co-Chair, P3P Interest Group

2 Empowerment Tools Prevent your actions from being linked to you
Crowds - AT&T Labs Allow you to develop persistent relationships not linked to each other or you Lucent Personal Web Assistant - Bell Labs Make informed choices about how your information will be used Platform for Privacy Preferences Project - W3C Know that assurances about information practices are trust worthy TRUSTe - Electronic Frontier Foundation and CommerceNet

3 Platform for Privacy Preferences Project (P3P)
A framework for automated privacy discussions under development by W3C Services communicate about practices Users exercise preferences over those practices User agent can facilitate automated decision making, prompt user, exchange data, etc.

4 Basic P3P Concepts proposal user agent service user agreement
user data repository preferences service data practices agreement

5 A Simple P3P Conversation
service user agent User agent: Get index.html Service: Here is my P3P proposal - I collect click-stream data and computer information for web site and system administration and customization of site User agent: OK, I accept your proposal Service: Here is index.html

6 More Complicated Conversations
Service offers choice of proposals User agent makes counter proposal User agent rejects proposal and asks service for another offer Upon agreement, user agent automatically sends requested data No agreement is reached

7 Where we are and where we’re going . . .
Overall architecture Proposal grammar Harmonized vocabulary Protocol structure Syntax (encoded in RDF or XML) Implementation guide Preference interchange language October 1997 March 1998 May 1998?

8 P3P Grammar Experience space Service provider’s identity
URL for privacy policy Consequence Qualified data set data set/element data category Purpose Qualifiers Required

9 P3P Vocabulary Purpose Data category Qualifiers identifiable use
recipients (domain of use) general disclosures access to identifiable information assurance (accountability) other disclosures change agreement retention

10 Data Categories Physical contact information Online contact information Unique identifiers Financial account identifiers Computer information Navigation and click-stream data Transaction data Demographic and socio-economic data Preference data Content

11 Purposes Completion and support of current activity
Web site and system administration Customization of site to individuals Research and development Contacting visitors for marketing of services or products Other uses

12 Implementation Guide Guiding principles
Guidelines for user agent implementers Guidelines for service providers Guidelines for users Guidelines for server implementers Guidelines for creators of recommended settings

13 Guiding Principles Information Privacy Notice Choice and Control
Fairness and Integrity Security

14 Keys to Success Good end-user implementations easy to use
easy to plug in “recommended settings” not annoying use incremental adoption model privacy friendly Good server implementations and tools Adoption by many Web sites Users find it useful Endorsement by government-regulatory and self-regulatory organizations

Download ppt "The Platform for Privacy Preferences Project"

Similar presentations

Usage Statistics in Context: related standards and tools Oliver Pesch Chief Strategist, E-Resources EBSCO Information Services Usage Statistics and Publishers:

Usage Statistics in Context: related standards and tools Oliver Pesch Chief Strategist, E-Resources EBSCO Information Services Usage Statistics and Publishers:
BUSINESS B2 Ethics.

BUSINESS B2 Ethics.
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2005 Lorrie Cranor 1 Privacy Authorization Languages.

Privacy Policy, Law and Technology Carnegie Mellon University Fall 2005 Lorrie Cranor 1 Privacy Authorization Languages.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Minding Your Own Business The Platform for Privacy Preferences Project and Privacy Minder Lorrie Faith Cranor AT&T Labs-Research

Minding Your Own Business The Platform for Privacy Preferences Project and Privacy Minder Lorrie Faith Cranor AT&T Labs-Research
The Platform for Privacy Preferences Project (P3P) Lorrie Faith Cranor AT&T Labs-Research P3P Interest Group Co-Chair October 1998.

The Platform for Privacy Preferences Project (P3P) Lorrie Faith Cranor AT&T Labs-Research P3P Interest Group Co-Chair October 1998.
P3P: Platform for Privacy Preferences Charlin Lu Sensitive Information in a Wired World November 11, 2003.

P3P: Platform for Privacy Preferences Charlin Lu Sensitive Information in a Wired World November 11, 2003.
CMU Usable Privacy and Security Laboratory Power Strips, Prophylactics, and Privacy, Oh My! Julia Gideon, Serge Egelman, Lorrie.

CMU Usable Privacy and Security Laboratory Power Strips, Prophylactics, and Privacy, Oh My! Julia Gideon, Serge Egelman, Lorrie.
An Analysis of P3P Deployment Hyun Jin Kim Sensitive Information in a Wired World November 11, 2003.

An Analysis of P3P Deployment Hyun Jin Kim Sensitive Information in a Wired World November 11, 2003.
Chapter 9 e-Commerce Systems.

Chapter 9 e-Commerce Systems.
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Privacy Policy.

Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Privacy Policy.
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2004 Lorrie Cranor 1 Privacy Self-Regulation.

Privacy Policy, Law and Technology Carnegie Mellon University Fall 2004 Lorrie Cranor 1 Privacy Self-Regulation.
Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Privacy Preferences Edgardo Vega Usable Security – CS 6204 – Fall, 2009 – Dennis.

Usable Security – CS 6204 – Fall, 2009 – Dennis Kafura – Virginia Tech Privacy Preferences Edgardo Vega Usable Security – CS 6204 – Fall, 2009 – Dennis.
Becoming A Customer SICOR Securities, Inc.. How? In order to establish the client (customer) relationship between yourself, as a registered representative.

Becoming A Customer SICOR Securities, Inc.. How? In order to establish the client (customer) relationship between yourself, as a registered representative.
P3P A New Standard in Online Privacy Overview and Demos from Summer 2000.

P3P A New Standard in Online Privacy Overview and Demos from Summer 2000.
Invitation to Computer Science 5th Edition

Invitation to Computer Science 5th Edition
WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ Identity and Privacy: the.

WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ WHEN TITLE IS NOT A QUESTION N O ‘WE CAN’ Identity and Privacy: the.
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2004 Lorrie Cranor 1 P3P I Week 6 - October.

Privacy Policy, Law and Technology Carnegie Mellon University Fall 2004 Lorrie Cranor 1 P3P I Week 6 - October.
Privacy, P3P and Internet Explorer 6 P3P Briefing – 11/16/01.

Privacy, P3P and Internet Explorer 6 P3P Briefing – 11/16/01.
The Future of P3P Ari Schwartz Center for Democracy and Technology Lorrie Faith Cranor AT&T Labs-Research November 2002.

The Future of P3P Ari Schwartz Center for Democracy and Technology Lorrie Faith Cranor AT&T Labs-Research November 2002.

Similar presentations

Ads by Google