Presentation is loading. Please wait.

Presentation is loading. Please wait.

Georgios Kontaxis, Michalis Polychronakis Angelos D. Keromytis, Evangelos P. Markatos Siddhant Ujjain (2009cs10219) Deepak Sharma (2009cs10185)

Published byJasper Marbury Modified over 9 years ago

Similar presentations

Presentation on theme: "Georgios Kontaxis, Michalis Polychronakis Angelos D. Keromytis, Evangelos P. Markatos Siddhant Ujjain (2009cs10219) Deepak Sharma (2009cs10185)"— Presentation transcript:

1 Georgios Kontaxis, Michalis Polychronakis Angelos D. Keromytis, Evangelos P. Markatos Siddhant Ujjain (2009cs10219) Deepak Sharma (2009cs10185)

2 Introduction Privacy Issues related to social plug-ins on websites Even if one doesn’t interact with social plug-ins Novel design for privacy-preserving social plug-ins without sacrifices in functionality

3 What are social plug-ins? Provided by online social networking services (SNS) Included in third-party Web sites Enable users to interact with the page content through their social identity via a series of actions Offers personalized information based on social data

4 How many of them? Facebook has 955 million users 33% of the Top 10K Web sites have integrated the Like button (at least 2 million in total) Google+ has 425 million users 22% of Top 10K sites have integrated the +1 button (at least 1 million in total)

5 How do Social Plug-ins Work?

6 Privacy Risks Social networking services know the user’s real name Don’t have to interact with a plug-in Cannot know beforehand whether a page carries plug- ins

7 Who knows I visited Mashable.com?

8 Preventing Privacy Leaks Logging Out of the Social Networking Service? Today at least 2 cookies persist Never logged in Facebook Logged in, then logged out While logged in

9 Preventing Privacy Leaks Disabling Third-party Cookies? Social plug-ins will render as if the user is not a member of the social networking service However, doesn’t always protect from third-party tracking In Chrome it’s trivial for a third party to position itself as a first party( popup window – native blocker won’t help)

10 Preventing Privacy Leaks Enabling the “Do Not Track HTTP” Header? Policy technique, no technical enforcement Very few sites support it at the moment Removing third parties from Web pages? Commonly used to filter out advertisements Social plug-ins will not appear Users lose the option of viewing and/or interacting with some of the social plug-ins if they want to

11 Privacy-Preserving Social Plug-ins

12 The SafeButton Browser Extension Disables the original social plug-ins SafeButton DOM replacement preserve the same (personalized) content Upon interaction, the original plug-in is loaded to enable write functionality

13 SafeButton’s Bootstrapping Privacy protected from the beginning Downloading social data upon user’s login to social network service Bootstrapping the local store for 5,000 friends took a little less than 10 hours Periodic, incremental updates

14 SafeButton’s Resource Requirements

15 SafeButton As a Service Web browser extensions are not good enough Users unaware of privacy risks of social plug-ins Users unwilling or unable to install extensions Implemented with Web technologies that enable an in-browser solution without additional software

16 SafeButton As a Service Pages incl. social plug-ins as usual Social network will return a SafeButton agent

17 SafeButton As a Service How to avoid leaking user-identifying info? Isolate social plug-ins to diff. domain Secure message passing with SNS Cacheable agent Encrypt data store

18 Summary Identified privacy issues of current social plug-ins that most users aren’t aware of Pointed out the dilemma between privacy and functionality Presented the proposal for privacy-preserving social plug-ins

Download ppt "Georgios Kontaxis, Michalis Polychronakis Angelos D. Keromytis, Evangelos P. Markatos Siddhant Ujjain (2009cs10219) Deepak Sharma (2009cs10185)"

Similar presentations

Protecting Browser State from Web Privacy Attacks Collin Jackson, Andrew Bortz, Dan Boneh, John Mitchell Stanford University.

Protecting Browser State from Web Privacy Attacks Collin Jackson, Andrew Bortz, Dan Boneh, John Mitchell Stanford University.
®® Microsoft Windows 7 for Power Users Tutorial 7 Enhancing Your Computers Security.

®® Microsoft Windows 7 for Power Users Tutorial 7 Enhancing Your Computers Security.
ForceHTTPS: Protecting High-Security Web Sites from Network Attacks Collin Jackson and Adam Barth.

ForceHTTPS: Protecting High-Security Web Sites from Network Attacks Collin Jackson and Adam Barth.
Privacy: Facebook, Twitter

Privacy: Facebook, Twitter
Browser Comparisons Internet Explorer 8 & 9, Chrome 11 and Firefox 4 Security, Privacy, Add-ons & Convenience.

Browser Comparisons Internet Explorer 8 & 9, Chrome 11 and Firefox 4 Security, Privacy, Add-ons & Convenience.
Google Docs is a free, web-based office suite offered by Google within its Google Drive service. It was formerly a storage service as well, but has since.

Google Docs is a free, web-based office suite offered by Google within its Google Drive service. It was formerly a storage service as well, but has since.
On the Privacy of Private Browsing Kiavash Satvat, Matt Forshaw, Feng Hao, Ehsan Toreini Newcastle University DPM’13.

On the Privacy of Private Browsing Kiavash Satvat, Matt Forshaw, Feng Hao, Ehsan Toreini Newcastle University DPM’13.
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.

1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
What is a Firewall Anyway?

What is a Firewall Anyway?
Mitigating Malware Collin Jackson CS142 – Winter 2009.

Mitigating Malware Collin Jackson CS142 – Winter 2009.
Securing Interaction for Sites, Apps and Extensions in the Browser Brad Miller J. D. Tygar.

Securing Interaction for Sites, Apps and Extensions in the Browser Brad Miller J. D. Tygar.
Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.

Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.
Privacy and Security on the Web Part 1. Agenda Questions? Stories? Questions? Stories? IRB: I will review and hopefully send tomorrow. IRB: I will review.

Privacy and Security on the Web Part 1. Agenda Questions? Stories? Questions? Stories? IRB: I will review and hopefully send tomorrow. IRB: I will review.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.

 Proxy Servers are software that act as intermediaries between client and servers on the Internet.  They help users on private networks get information.
Lab 3 Cookie Stealing using XSS Kara James, Chelsea Collins, Trevor Norwood, David Johnson.

Lab 3 Cookie Stealing using XSS Kara James, Chelsea Collins, Trevor Norwood, David Johnson.
The Privacy Tug of War: Advertisers vs. Consumers Presented by Group F.

The Privacy Tug of War: Advertisers vs. Consumers Presented by Group F.
Lesson 46: Using Information From the Web copy and paste information from a Web site print a Web page download information from a Web site customize Web.

Lesson 46: Using Information From the Web copy and paste information from a Web site print a Web page download information from a Web site customize Web.
Lesson 46: Using Information From the Web copy and paste information from a Web site print a Web page download information from a Web site customize Web.

Lesson 46: Using Information From the Web copy and paste information from a Web site print a Web page download information from a Web site customize Web.
Internet Explorer Browsing & Windows XP Service Pack 2 What is Service Pack 2? The newest update for Windows XP which aims to make your computer more secure.

Internet Explorer Browsing & Windows XP Service Pack 2 What is Service Pack 2? The newest update for Windows XP which aims to make your computer more secure.

Similar presentations

Ads by Google