Academia.eduAcademia.edu

Outline

Title
Abstract
Introduction
Related Work
Conclusions and Future Work
References
All Topics
Psychology
Applied Psychology

Context-driven prevention of unintended identity disclosure

Profile image of Yolande BerbersYolande Berbers

2006

Abstract

In this paper we discuss the problem of privacy and information disclosure in ubiquitous and pervasive computing environments. We describe a framework that uses context information to selectively disclose personal information to service providers while keeping the humancomputer interaction non-intrusive. For each interaction with a service provider, our framework will take previously disclosed personal information, user preferences and available privacy enhancing technologies into consideration to conduct an optimal information revealing strategy in a particular situation. The use of context-awareness in our framework provides the ability to infer revealing information and enables the user to adjust the privacy control in a non-intrusive manner.

Related papers

Integrating Privacy Enhancing Services In Ubiquitous Computing Environments
Adrian Friday

Workshop on Security in Ubiquitous Computing, 4th …, 2002

View PDFchevron_right
Super-Ego: a framework for privacy-sensitive bounded context-awareness
Eran Toch

2011

Abstract Context-awareness enables applications to better streamline and personalize their service according to the current situation of the user. However, the user's information used by context-aware applications, such as the user's current location, is inherently private and sensitive. Using this information without proper control by the user can lead to privacy risks and might harm the trust users have in the context-aware application.

View PDFchevron_right
Preserving Privacy in Context-Aware Systems
Laura Zavala

2011 IEEE Fifth International Conference on Semantic Computing, 2011

Recent years have seen a confluence of two major trends-the increase of mobile devices such as smart phones as the primary access point to networked information and the rise of social media platforms that connect people. Their convergence supports the emergence of a new class of context-aware geosocial networking applications. While existing systems focus mostly on location, our work centers on models for representing and reasoning about a more inclusive and higher-level notion of context, including the user's location and surroundings, the presence of other people and devices, and the inferred activities in which they are engaged. A key element of our work is the use of collaborative information sharing where devices share and integrate knowledge about their context. This introduces the need for privacy and security mechanisms. We present a framework to provide users with appropriate levels of privacy to protect the personal information their mobile devices are collecting, including the inferences that can be drawn from the information. We use Semantic Web technologies to specify high-level, declarative policies that describe user information sharing preferences. We have built a prototype system that aggregates information from a variety of sensors on the phone, online sources, and sources internal to the campus intranet, and infers the dynamic user context. We show how our policy framework can be effectively used to devise better privacy control mechanisms to control information flow between users in such dynamic mobile systems.

View PDFchevron_right
Extending Context Models for Privacy in Pervasive Computing Environments
Jadwiga Indulska

Third IEEE International Conference on Pervasive Computing and Communications Workshops, 2005

Privacy is widely recognised as a significant obstacle inhibiting the adoption of context-aware applications. In order to remove this obstacle, advances are required in many areas of context-awareness research. In this paper, we address the incorporation of privacy support into context models. In particular, we present extensions to our context modelling approach that address the challenges of assigning ownership to context information and enabling users to express privacy preferences for their own information.

View PDFchevron_right
Towards context adaptive privacy decisions in ubiquitous computing
Florian Schaub

2012

In ubiquitous systems control of privacy settings will be increasingly difficult due to the pervasive nature of sensing and communication capabilities. We identify challenges for privacy decisions in ubiquitous systems and propose a system for in situ privacy decision support. When context changes occur, the system adapts a user's privacy preferences to the new situation. As a consequence, recommendations can be offered to the user or sharing behavior can be automatically adjusted to help the user maintain a desired level of privacy. The system learns from user interaction and behavior to improve decision accuracy. In this paper, we outline the main components of our system and illustrate its operation with an ambient assisted living use case.

View PDFchevron_right
Privacy in Distributed Context-Aware Systems
Paulo Roberto Ferreira

2011

Context-aware systems aim to deliver a richer user experience by taking into account the current user context (location, time, activity, etc.), possibly captured without his intervention. For example, cellphones are now able to continuously update the user's location while, at the same time, users execute an increasing amount of activities online, where their actions may be easily captured (e.g., login in a web application) without user consent. The potential advantages of these applications is huge, but we must not forget the important privacy issues that it creates. Particularly in distributed context-aware systems where the information that is captured may be sent to a distant server, people feel uncomfortable about exposing highly personal data, such as their location or current activity. This paper examines the current privacy management techniques and identifies four main groups: Privacy Policies, Data Perturbation, Anonymization and Lookup Notification. Each of these groups is analyzed highlighting the advantages and disadvantages of their application to Distributed Context-Aware Systems.

View PDFchevron_right
Everyday privacy in ubiquitous computing environments
Anind Dey

Ubicomp 2002 Workshop on Socially- …, 2002

We present a conceptual model of everyday privacy in ubiquitous computing environments, based on the works of Lessig and Adams. By everyday privacy, we mean the enduser's ongoing exposure to and control over personal information collection. The model accounts for the influence of societal-scale forces, contextual factors, and subjective perception on end-user privacy. We identify notice and consent as the fair information practices of greatest everyday utility to users, as they gradually engender the user's conceptual model of ubicomp privacy. Navigating the regular deluge of personal information collection events in ubicomp requires that notice be minimally intrusive and consent be implicitly granted by a persistent, situation-specific set of user preferences. We extend our model into an interactional metaphor called faces, designed to mitigate the complexity of privacy for the end-user. Users vary the face they wear depending on the recipient and/or situation, where a face is a meaningful encapsulation of privacy preferences.

View PDFchevron_right
Privacy protection in context aware systems
A Pandit

2000

View PDFchevron_right
Privacy as a Tradeoff: Introducing the Notion of Privacy Calculus for Context-Aware Mobile Applications
Zhan Liu

2014 47th Hawaii International Conference on System Sciences, 2014

Evidences collected from smartphones users show a growing desire of personalization offered by services for mobile devices. However, the need to accurately identify users' contexts has important implications for user's privacy and it increases the amount of trust, which users are requested to have in the service providers. In this paper, we introduce a model that describes the role of personalization and control in users' assessment of cost and benefits associated to the disclosure of private information. We present an instantiation of such model, a context-aware application for smartphones based on the Android operating system, in which users' private information are protected. Focus group interviews were conducted to examine users' privacy concerns before and after having used our application. Obtained results confirm the utility of our artifact and provide support to our theoretical model, which extends previous literature on privacy calculus and user's acceptance of contextaware technology.

View PDFchevron_right
Towards everyday privacy for ubiquitous computing
Anind Dey

2003

The goal of everyday privacy is to make it easy for endusers to share information with the right people at the right level of detail in ubiquitous computing environments. In this paper, we describe a conceptual model we have developed for everyday privacy, consisting of control over and feedback about disclosure. We also describe a prototype we have created for helping end-users manage their personal privacy, an evaluation of that prototype, and a revised prototype based on feedback from the ...

View PDFchevron_right

References (26)

  1. <owl:Class rdf:ID="Pseudonym" /> <owl:Class rdf:ID="Recipient" /> <owl:Class rdf:ID="Attribute" /> <owl:Class rdf:ID="Profile" /> <owl:ObjectProperty rdf:ID="hasProfile"> <rdfs:domain rdf:resource="#Pseudonym" /> <rdfs:range rdf:resource="#Profile" /> <rdf:type rdf:resource="&owl;#FunctionalProperty" /> </owl:ObjectProperty> <owl:ObjectProperty rdf:ID="contains"> <rdfs:domain rdf:resource="#Profile" /> <rdfs:range rdf:resource="#Attribute" />
  2. </owl:ObjectProperty> <owl:DatatypeProperty rdf:ID="sensitivity"> <rdfs:domain rdf:resource="#Attribute" /> <rdfs:range rdf:resource="&xsd;#int" /> <rdf:type rdf:resource="&owl;#FunctionalProperty" /> </owl:DatatypeProperty> <owl:DatatypeProperty rdf:ID="accuracy"> <rdfs:domain rdf:resource="#Attribute" /> <rdfs:range rdf:resource="&xsd;#int" /> <rdf:type rdf:resource="&owl;#FunctionalProperty" /> </owl:DatatypeProperty> References
  3. Stefan A. Brands. Rethinking Public Key Infrastructures and Digital Certificates: Building in Privacy. MIT Press, Cambridge, MA, USA, 2000.
  4. Jan Camenisch and Els Van Herreweghen. Design and implementation of the idemix anonymous credential system. In ACM Conference on Computer and Com- munications Security, pages 21-30, 2002.
  5. David Chaum. Untraceable electronic mail, return addresses, and digital pseudonyms. In Communications of the ACM, volume 24, pages 84-88, Febru- ary 1981.
  6. David Chaum. Blind signatures for untraceable payments. In CRYPTO, pages 199-203, 1982.
  7. David Chaum. Security without identification: Transaction systems to make big brother obsolete. Commun. ACM, 28(10):1030-1044, 1985.
  8. David Chaum and Hans Van Antwerpen. Undeniable signatures. In CRYPTO, pages 212-216, 1989.
  9. David Chaum and Eugène van Heyst. Group signatures. In EUROCRYPT, pages 257-265, 1991.
  10. Davy Preuveneers et al. Towards an extensible context ontology for ambient in- telligence. In Panos Markopoulos, Berry Eggen, Emile Aarts, and James L. Crow- ley, editors, Second European Symposium on Ambient Intelligence, volume 3295 of LNCS, pages 148 -159, Eindhoven, The Netherlands, Nov 8 -11 2004. Springer.
  11. Anind K. Dey. Understanding and using context. Personal Ubiquitous Comput., 5(1):4-7, 2001.
  12. Claudia Díaz, Stefaan Seys, Joris Claessens, and Bart Preneel. Towards measuring anonymity. In Roger Dingledine and Paul F. Syverson, editors, Privacy Enhancing Technologies, volume 2482 of Lecture Notes in Computer Science, pages 54-68. Springer, 2002.
  13. Els Van Herreweghen. Unidentifiability and Accountability in Electronic Transac- tions. PhD thesis, Katholieke Universiteit Leuven, 2004.
  14. Jason I. Hong and James A. Landay. An architecture for privacy-sensitive ubiqui- tous computing. In MobiSys '04: Proceedings of the 2nd international conference on Mobile systems, applications, and services, pages 177-189, New York, NY, USA, 2004. ACM Press.
  15. HP Labs. Jena 2 -A Semantic Web Framework. http://www.hpl.hp.com/semweb/ jena2.htm, 2004.
  16. Xiaodong Jiang and James A. Landay. Modeling privacy control in context-aware systems. IEEE Pervasive Computing, 1(3):59-63, 2002.
  17. Marc Langheinrich. A privacy awareness system for ubiquitous computing envi- ronments. In Ubicomp, pages 237-245, 2002.
  18. Scott Lederer, Anind K. Dey, and Jennifer Mankoff. Everyday privacy in ubiquitous computing environments. In Ubicomp 2002 Workshop on Socially-informed Design of Privacy-enhancing Solutions in Ubiquitous Computing, 2002.
  19. Deborah L. McGuinness and Frank van Harmelen. Owl web ontology language overview, w3c recommendation 10 february 2004, February 2004.
  20. Andreas Pfitzmann and Michael Waidner. Networks without user observability: Design options. In Advances in Cryptology-EUROCRYPT '85: Proceedings of a Workshop on the Theory and Application of Cryptographic Techniques, pages 245-253, April 1985.
  21. Davy Preuveneers and Yolande Berbers. Adaptive context management using a component-based approach. In Nancy Alonistioti and Lea Kutvonen, editors, Proceedings of 5th IFIP International Conference on Distributed Applications and Interoperable Systems (DAIS2005), Lecture Notes in Computer Science (LNCS), Athens/Greece, June 2005. Springer Verlag.
  22. Davy Preuveneers and Yolande Berbers. Automated context-driven composi- tion of pervasive services to alleviate non-functional concerns. In Ghita Kouadri Mostefaoui and Patrick Brezillon, editors, Proceedings of the ICPS'05 Interna- tional Workshop on Software Aspects of Context (IWSAC'05), pages 1-8, San- torini, Greece, July 2005. CEUR Workshop Proceedings, ISSN 1613-0073, online CEUR-WS.org/Vol-150/paper4.pdf.
  23. PRIME. Privacy and Identity Management for Europe. http://www.prime- project.eu.org, March 2004.
  24. Sandra Steinbrecher and Stefan Köpsell. Modelling unlinkability. In Roger Din- gledine, editor, Privacy Enhancing Technologies, volume 2760 of Lecture Notes in Computer Science, pages 32-47. Springer, 2003.
  25. Latanya Sweeney. Achieving k-anonymity privacy protection using generalization and suppression. International Journal on Uncertainty, Fuzziness and Knowledge- based Systems, 10(5):571-588, 2002.
  26. Mark Weiser. The Computer for the Twenty-First Century. Scientific American, pages 94-10, September 1991.

Related papers

Managing personal information disclosure in ubiquitous computing environments
Anind Dey

2003

Ubiquitous computing stands to redefine established notions of pr ivacy as it introduces regular, pervasive sensing of personal information such as identity, location, and activity. To effectively and comfortably manage the di sclosure of personal information, end-users will require a coherent conceptual model of privacy and convenient user interfaces to manage it. We describe a conceptual framework designed to support personal privacy management in ubiquitous computing by empowering users to adjust the precision of disclosed information. The framework relies on three key strategies: encapsulation, a priori configuration, and manual configuration. We describe a prototypical user i nterface built to instantiate this framework and we report the results of a formative evaluation of the framework. Results show our approach is superior to simple, automated disclosure paradigms but can be further refined.

View PDFchevron_right
A Privacy Service for Context-aware Mobile Computing
Fernando Nascimento

2005

Privacy issues related to the access of context information are becoming increasingly important as we move toward ubiquitous and mobile computing environments. In this article, we describe the design and implementation of a privacy service, called Context Privacy Service (CoPS), to control how, when and to whom disclose a user's context information. Based on the results of an end-user survey and experience reported by other research groups, we identified the main service requirements and designed CoPS aiming flexibility, generality, simplicity and fine-grained privacy control. CoPS is an optional service of our context-provisioning middleware MoCA and allows users of context-and location-aware applications to define and manage their privacy policies regarding disclosure of their context information. The main features supported by CoPS are group-based access control, pessimistic and optimistic approaches for access control, hierarchical privacy rules, mixed-initiative interaction, and rule specificity analysis.

View PDFchevron_right
Personal Information Disclosure Control in Context-aware Healthcare Applications
Ahyoung Choi

2005

There is a tradeoff between user’s privacy and utility of context-aware services in ubiquitous computing environments. Many privacy models have been proposed to support the disclosure of personal information at different levels of detail, in ubiquitous computing environments. However, most of these models do not allow for explicit criteria to assess the benefit users are likely to reap by disclosing their personal information. In this paper, we propose an automated decision making mechanism that evaluates the “benefit of disclosure” for the users based on trust relationships between users and information requesters and manages the disclosure of user’s personal information accordingly. Unlike other trust models, we do not regard the reputation of an information requester as sufficient to determine his/her trustworthiness. Instead, we represent trustworthiness as a function of information requester’s reputation in the eyes of the user and his/her competence in a given context. To vali...

View PDFchevron_right
Context-Awareness: Control Over Disclosure and Privacy In a Social Environment
Varun Singh

cse.tkk.fi

Modern mobile phones in the near future will adapt theirapplications, services, and look-and-feel based on theirusage and environment. This ability of the devices toadapt based on user’s context provides new challengesin areas of context sharing, context management, and inthe associated area of privacy. Inadequate relationshipmodels make control over disclosure impossible, whichmanifests itself in either sharing too much information- compromising ones privacy, or sharing too little - con-straining the use of context in a shared environment. Inthis paper, we define a new pseudo-hierarchical tag basedrelationship model to overcome the constraints of controlover disclosure. Furthermore, we discuss some of the pit-falls of sharing context on user’s privacy.

View PDFchevron_right
Controlled Disclosure of Context Information across Ubiquitous Computing Domains
Andrew Tokmakoff

2008 IEEE International Conference on Sensor Networks, Ubiquitous, and Trustworthy Computing (sutc 2008), 2008

One of the challenges in ubiquitous computing is that of mobility, which typically requires interaction between intelligent environments in different domains of administration. We present a highly distributed and collaborative system that enables context-aware applications to obtain context information about mobile entities (users or devices) independent of the domain that produces this information. The added value of the system is that it enriches the amount of available context information about these entities in a way that is transparent for applications. In addition, the system shares context information across domains in a controlled manner by taking privacy policies into account, both of the mobile entity as well as of the domains it visits. We discuss the system's architecture, its implementation, and the way we deployed it.

View PDFchevron_right

Related topics

  • Human Computer Interaction
  • User preferences
  • Ubiquitous and Pervasive Computing
  • Context Information
    • 580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved