Current online social networking (OSN) sites pose severe risks to their users' privacy. Facebook in particular is capturing more and more of a user's past activities, sometimes starting from the day of birth. Instead of transiently passing on information between friends, a user's data is stored persistently and therefore subject to the risk of undesired disclosure. Traditionally, a regular user of a social network has little awareness of her privacy needs in the Web or is not ready to invest a considerable effort in securing her online activities. Furthermore, the centralised nature of proprietary social networking platforms simply does not cater for end-to-end privacy protection mechanisms. In this paper, we present a non-disruptive and lightweight integration of a confidentiality mechanism into OSNs. Additionally, direct integration of visual security indicators into the OSN UI raise the awareness for (un)protected content and thus their own privacy. We present a fully-working prototype for Facebook and an initial usability study, showing that, on average, untrained users can be ready to use the service in three minutes.
%0 Conference Paper
%1 Harbach:2012:OMB:2187980.2188106
%A Harbach, Marian
%A Fahl, Sascha
%A Muders, Thomas
%A Smith, Matthew
%B Proceedings of the 21st international conference companion on World Wide Web
%C New York, NY, USA
%D 2012
%I ACM
%K 2012 confidentiality encryption facebook myown usability
%P 519--520
%R 10.1145/2187980.2188106
%T All our messages are belong to us: usable confidentiality in social networks
%U http://doi.acm.org/10.1145/2187980.2188106
%X Current online social networking (OSN) sites pose severe risks to their users' privacy. Facebook in particular is capturing more and more of a user's past activities, sometimes starting from the day of birth. Instead of transiently passing on information between friends, a user's data is stored persistently and therefore subject to the risk of undesired disclosure. Traditionally, a regular user of a social network has little awareness of her privacy needs in the Web or is not ready to invest a considerable effort in securing her online activities. Furthermore, the centralised nature of proprietary social networking platforms simply does not cater for end-to-end privacy protection mechanisms. In this paper, we present a non-disruptive and lightweight integration of a confidentiality mechanism into OSNs. Additionally, direct integration of visual security indicators into the OSN UI raise the awareness for (un)protected content and thus their own privacy. We present a fully-working prototype for Facebook and an initial usability study, showing that, on average, untrained users can be ready to use the service in three minutes.
%@ 978-1-4503-1230-1
@inproceedings{Harbach:2012:OMB:2187980.2188106,
abstract = {Current online social networking (OSN) sites pose severe risks to their users' privacy. Facebook in particular is capturing more and more of a user's past activities, sometimes starting from the day of birth. Instead of transiently passing on information between friends, a user's data is stored persistently and therefore subject to the risk of undesired disclosure. Traditionally, a regular user of a social network has little awareness of her privacy needs in the Web or is not ready to invest a considerable effort in securing her online activities. Furthermore, the centralised nature of proprietary social networking platforms simply does not cater for end-to-end privacy protection mechanisms. In this paper, we present a non-disruptive and lightweight integration of a confidentiality mechanism into OSNs. Additionally, direct integration of visual security indicators into the OSN UI raise the awareness for (un)protected content and thus their own privacy. We present a fully-working prototype for Facebook and an initial usability study, showing that, on average, untrained users can be ready to use the service in three minutes.},
acmid = {2188106},
added-at = {2012-11-14T19:13:16.000+0100},
address = {New York, NY, USA},
author = {Harbach, Marian and Fahl, Sascha and Muders, Thomas and Smith, Matthew},
biburl = {https://www.bibsonomy.org/bibtex/24efbe4385846be22760a7fc9190cd884/harbach},
booktitle = {Proceedings of the 21st international conference companion on World Wide Web},
description = {All our messages are belong to us},
doi = {10.1145/2187980.2188106},
interhash = {60cc612a060ca0c336de130bf255a357},
intrahash = {4efbe4385846be22760a7fc9190cd884},
isbn = {978-1-4503-1230-1},
keywords = {2012 confidentiality encryption facebook myown usability},
location = {Lyon, France},
numpages = {2},
pages = {519--520},
publisher = {ACM},
series = {WWW '12 Companion},
timestamp = {2012-11-14T19:13:16.000+0100},
title = {All our messages are belong to us: usable confidentiality in social networks},
url = {http://doi.acm.org/10.1145/2187980.2188106},
year = 2012
}