Maturing e-Privacy with P3P and Context Agents

Jutla, Dawn; Zhang, Y.

doi:10.1109/eee.2005.90

Cited by 5 publications

(7 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For instance, many privacy laws contain provisions that allow for the processing and distribution of sensitive pieces of information under rare circumstances, such as when a person's life is at stake. P3P cannot describe such extraordinary circumstances [Jutla and Zhang 2005].…”

Section: Survey Methodologymentioning

confidence: 99%

A large-scale empirical study of P3P privacy policies

2009

View full text Add to dashboard Cite

Numerous studies over the past ten years have shown that concern for personal privacy is a major impediment to the growth of e-commerce. These concerns are so serious that most if not all consumer watchdog groups have called for some form of privacy protection for Internet users. In response, many nations around the world, including all European Union nations, Canada, Japan, and Australia, have enacted national legislation establishing mandatory safeguards for personal privacy. However, recent evidence indicates that Web sites might not be adhering to the requirements of this legislation. The goal of this study is to examine the posted privacy policies of Web sites, and compare these statements to the legal mandates under which the Web sites operate. We harvested all available P3P (Platform for Privacy Preferences Protocol) documents from the 100,000 most popular Web sites (over 3,000 full policies, and another 3,000 compact policies). This allows us to undertake an automated analysis of adherence to legal mandates on Web sites that most impact the average Internet user. Our findings show that Web sites generally do not even claim to follow all the privacy-protection mandates in their legal jurisdiction (we do not examine actual practice, only posted policies). Furthermore, this general statement appears to be true for every jurisdiction with privacy laws and any significant number of P3P policies, including European Union nations, Canada, Australia, and Web sites in the USA Safe Harbor program.

show abstract

Section: Survey Methodologymentioning

confidence: 99%

A large-scale empirical study of P3P privacy policies

2009

View full text Add to dashboard Cite

show abstract

“…(7) The privacy component may support provision/retrieval of the user model information to the user on request. User models for privacy management can be found in [12,13,30]. Some user model attributes for privacy, from the organization's perspective, include individual data release rules, client trust (in the organization) attribute, user role, and user tenure with the organization.…”

Section: Figure 3 Biometric Security and Privacymentioning

confidence: 99%

“…Most of these are only a few sentences for a particular transactional context. Examples of transactional contexts [12,13] are buy, retrieve (browse, search), register, etc. (4) After (3), the system may ask the user whether he/she consents to all the data collection/uses/retention terms/and sharing present in the statements or whether the user would like to customize individually his/her privacy preferences for the transaction."…”

Section: Figure 3 Biometric Security and Privacymentioning

confidence: 99%

See 1 more Smart Citation

Adding User-Level SPACe: Security, Privacy, and Context to Intelligent Multimedia Information Architectures

Jutla

Kanevsky

2006

2006 IEEE/WIC/ACM International Conference on Web Intelligence and Intelligent Agent Technology Workshops

View full text Add to dashboard Cite

We provide a unified architecture, called SPACe, for Secure, Privacy-Aware, and Contextual multimedia systems in organizations. Many key and important architectural components already exist which contribute to a unified platform, including the classic data mining, security, and privacy-preserving components in conventional intelligent systems. After presenting an overview of our unified architecture, we focus on the state-of-theart architectural components for user interaction in future systems -particularly multimedia voice interaction with intelligent systems. This paper shows how user-level conversational data mining (CDM) methods, coupled with biometric security, and enhanced with privacy-awareness, may be used with any Web information system architecture. Finally, we provide an example of our unified architecture through integrating a knowledge architecture for an e-finance application in the financial services domain. The resulting architectures benefit from added security, privacy-awareness, and contextual filtering at the user-level.

show abstract

“…On one hand, let me mention work on the regulatory aspects of technology in such fields as universal usability (Shneiderman 2000); informed consent (Friedman et al 2002); crime control and architecture (Katyal 2002(Katyal , 2003; social justice (Borning et al 2004); allegedly perfect self-enforcement technologies on the internet (Zittrain 2007); and design-based instruments for implementing social policies (Yeung 2007 On the other hand, following seminal work on the ethics of design (Friedman 1986;Mitcham 1995;Whitbeck 1996), and privacy (Agre 1997), it is noteworthy that scholars have examined data protection issues raised by the design of ICT, by the means of value-sensitive design (Friedman and Kahn 2003;Friedman et al 2006), legal ontologies (Abou-Tair and Berlik 2006; Mitre et al 2006;Lioudakis et al 2007), projects on platforms for privacy preferences (P3P), (Jutla and Zhang 2005;Cranor et al 2008;Reay et al 2009) and PeCAN platforms (Jutla et al 2006;Jutla 2010), down to the topology of complex social networks (Pagallo 2007). In addition, the idea of incorporating data protection safeguards in ICT was the subject matter of both "Privacy by Design.…”

Section: Introductionmentioning

confidence: 99%