Presentation is loading. Please wait.

Presentation is loading. Please wait.

D IRECTIONS FOR R AISING P RIVACY A WARENESS IN SNS P LATFORMS Konstantina Vemou, Maria Karyda, Spyros Kokolakis 18th Panhellenic Conference on Informatics.

Published byMerilyn Cameron Modified over 8 years ago

Similar presentations

Presentation on theme: "D IRECTIONS FOR R AISING P RIVACY A WARENESS IN SNS P LATFORMS Konstantina Vemou, Maria Karyda, Spyros Kokolakis 18th Panhellenic Conference on Informatics."— Presentation transcript:

1 D IRECTIONS FOR R AISING P RIVACY A WARENESS IN SNS P LATFORMS Konstantina Vemou, Maria Karyda, Spyros Kokolakis 18th Panhellenic Conference on Informatics Athens, 2-4 October 2014. Department of Information and Communication Systems Engineering, University of the Aegean

2 Introduction – Privacy Paradox Contents Privacy Awareness Goals Research Question– Method of Research Analyzing Current Awareness Practices Directions for Raising Privacy Awareness Further Research Questions

3 Introduction – Privacy Paradox (1/2) Privacy risks Privacy concerns Illusion of privacy Exposure to privacy risks

4 Introduction – Privacy Paradox (2/2) Privacy risks Privacy concerns Illusion of privacy X

5 Privacy Awareness Goals PROBLEM: Limited use of awareness tools and practices  Show privacy risks  Show sources of privacy risks  Propose actions the user can take to protect their privacy Several tools have been proposed (privacy mirrors, privacy wizards, personal containers, privacy signaling, etc)

6 Research Question – Method of Research How can embedded SNS awareness practices be improved ? Literature review Identify and analyze currently employed privacy practices Evaluate effectiveness Provide Guidance 1 2 3 4

7 Analyzing Current Awareness Practices (1/6) Links at the end of the sign up form and the footer of the webpage Terms of use and privacy policies Links under the sign-up button, preselected, optional Rare notifications on terms of use changes Offer clear notifications on any changes in TOS

8 Analyzing Current Awareness Practices (2/6) Functionality to create groups of friends/ Audience Segregation Audience management and visualization Some still offer Private (all friends) vs Public view “View As” mirroring tool Statistics, report visitors-viewed info, visualization of networks Statistics, report visitors-viewed info, visualization of networks

9 Analyzing Current Awareness Practices (3/6) Application permissions presented prior to installation Third-Parties Access List of installed applications in no predefined place Transitive access controls List of other parties granted access and purpose, Block transitive access controls in applications, Application center in the privacy settings, Report of accessed data by each application List of other parties granted access and purpose, Block transitive access controls in applications, Application center in the privacy settings, Report of accessed data by each application

10 Analyzing Current Awareness Practices (4/6) Log of profile owner activities Activity Logs No presentation of activities’ relation to privacy risks No predefined place in the user interface Organization of activity logs under privacy settings, Logs of accessed pieces of information Organization of activity logs under privacy settings, Logs of accessed pieces of information

11 Analyzing Current Awareness Practices (5/6) Functionality to notify via e-mail or SMS on certain activities, e.g. tags, mentions Notifications Notifications only to some changes of T.O.S.. Notifications via e-mail selected by default, Notification when a user accesses the profile Notifications via e-mail selected by default, Notification when a user accesses the profile

12 Analyzing Current Awareness Practices (6/6) Download files of collected data Access to recorded data Vague Description of types of collected data in the privacy policy Process to access all collected data, Process to request correction or deletion of data Process to access all collected data, Process to request correction or deletion of data

13 Diversity of awareness methods (no standards for embedded practices) Need for organization in the user interface (simple menu in privacy settings) Need to provide a list of entities accessing information Poor presentation for risk-risk sources combination Unexploited new technologies (e.g. privacy signaling) Directions for Raising Privacy Awareness

14 Further Research Analyze the actual use of privacy awareness tools Evaluate the effectiveness of privacy awareness tools Use as input to design of privacy awareness practices for SNS Analyze Evaluate Use

15 Questions

Download ppt "D IRECTIONS FOR R AISING P RIVACY A WARENESS IN SNS P LATFORMS Konstantina Vemou, Maria Karyda, Spyros Kokolakis 18th Panhellenic Conference on Informatics."

Similar presentations

Recruitment Booster.

Recruitment Booster.
Https://secure.utah.gov/abr/abr Utah – 2014. Business Fraud Alert notifies business owners and registered agents when a change has been made to a business’

Utah – Business Fraud Alert notifies business owners and registered agents when a change has been made to a business’
Presenter: Nguyen Ba Anh HCMC University of Technology Information System Security Course.

Presenter: Nguyen Ba Anh HCMC University of Technology Information System Security Course.
Lync 2010 Multiparty Conference Training. Agenda Creating your PIN Scheduling a Conference Starting/Joining a Scheduled Conference Conducting a Web Conference.

Lync 2010 Multiparty Conference Training. Agenda Creating your PIN Scheduling a Conference Starting/Joining a Scheduled Conference Conducting a Web Conference.
Georgios Kontaxis, Michalis Polychronakis Angelos D. Keromytis, Evangelos P. Markatos Siddhant Ujjain (2009cs10219) Deepak Sharma (2009cs10185)

Georgios Kontaxis, Michalis Polychronakis Angelos D. Keromytis, Evangelos P. Markatos Siddhant Ujjain (2009cs10219) Deepak Sharma (2009cs10185)
Presented by: Dan Landsberg August 12, 2011. Agenda  What is Social Media?  Social Media’s Professional Side  Benefits of Social Media  Regulatory.

Presented by: Dan Landsberg August 12, Agenda  What is Social Media?  Social Media’s Professional Side  Benefits of Social Media  Regulatory.
Our aims ease the pain – for all our users get with the times better communication with our supporters recruit and engage people to our campaigns raise.

Our aims ease the pain – for all our users get with the times better communication with our supporters recruit and engage people to our campaigns raise.
A Decision Support System For Civil Protection Prof. Thanasis Ziliaskopoulos University of Thessaly Hellenic Institute of Transport International Conference.

A Decision Support System For Civil Protection Prof. Thanasis Ziliaskopoulos University of Thessaly Hellenic Institute of Transport International Conference.
User studies. Why user studies? How do we know security and privacy solutions are really usable? Have to observe users! –you may be surprised by what.

User studies. Why user studies? How do we know security and privacy solutions are really usable? Have to observe users! –you may be surprised by what.
An Overview of the REMS TA Center’s EOP ASSIST Software Application.

An Overview of the REMS TA Center’s EOP ASSIST Software Application.
Company Confidential Info Exchange Workflow Examples for External Users: Action Items Company Confidential.

Company Confidential Info Exchange Workflow Examples for External Users: Action Items Company Confidential.
2007.02.11 The Dr ü G Book: An Intro to Drupal The Dr ü G Book: An Intro to Drupal (Dr ü G: Drupal User ’ s Group - users, not developers) This is an introduction.

The Dr ü G Book: An Intro to Drupal The Dr ü G Book: An Intro to Drupal (Dr ü G: Drupal User ’ s Group - users, not developers) This is an introduction.
MANAGING YOUR ONLINE PROFILE WHAT DOES THIS MEAN AND WHY SHOULD YOU CARE? Sarah Morris UT Libraries.

MANAGING YOUR ONLINE PROFILE WHAT DOES THIS MEAN AND WHY SHOULD YOU CARE? Sarah Morris UT Libraries.
Grants Online Locating and Viewing Documents Attached to a Grant of Aid Step-by-Step Guide February 2013.

Grants Online Locating and Viewing Documents Attached to a Grant of Aid Step-by-Step Guide February 2013.
CHAPTER 9 DATABASE MANAGEMENT © Prepared By: Razif Razali.

CHAPTER 9 DATABASE MANAGEMENT © Prepared By: Razif Razali.
Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.

Database Security and Auditing: Protecting Data Integrity and Accessibility Chapter 3 Administration of Users.
Presented by Chad Kafka This Month’s Topic: Wikispaces Advanced Today’s session is an introduction to what a WIKI is and how they can be used in education.

Presented by Chad Kafka This Month’s Topic: Wikispaces Advanced Today’s session is an introduction to what a WIKI is and how they can be used in education.
CPSC 203 Introduction to Computers T59 & T64 By Jie (Jeff) Gao.

CPSC 203 Introduction to Computers T59 & T64 By Jie (Jeff) Gao.
C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.

C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.
What is Sure BDCs? BDC stands for Batch Data Communication and is also known as Batch Input. It is a technique for mass input of data into SAP by simulating.

What is Sure BDCs? BDC stands for Batch Data Communication and is also known as Batch Input. It is a technique for mass input of data into SAP by simulating.

Similar presentations

Ads by Google