Suchergebnisse

Intro -- Acknowledgments -- Introduction -- Chapter Overview -- Terminology and Definitions -- Attributes -- Privacy Settings of Attributes -- Risk Sources -- Data Inference -- Threat -- Privacy Harm -- Privacy Risks -- Privacy Risk Analysis -- Dimensions of Privacy Scoring in OSNs -- Type of Data -- Assumptions About the User -- Privacy Settings -- Risk Sources -- Privacy Metrics -- Sensitivity -- Visibility -- Reachability -- Data Inference -- Suggestion of Countermeasures -- Attribute Visibility in OSN -- Visibility Matrix -- Construction of Visibility Matrix -- An Illustration -- Open Problems -- Harm Trees for OSNs -- Harm Trees -- Construction of Harm trees -- Harm Likelihood -- Harm Expressions -- Harm Database -- Open Problems -- Privacy Risk Analysis in OSNs -- An Overview -- PrivOSN in Details -- Computation of Accuracy -- Evaluation of Harm Likelihoods -- Computation Profile Similarity -- Presentation of Privacy Risk to the User -- Residual Risks -- Open Problems -- Social Benefits -- Social Ties -- Social Capital -- Understanding Social Benefits -- Social Benefit Criteria -- Attributes and Social Benefit Criteria -- Evaluation of Social Benefit -- Open Problems -- Choosing the Right Privacy Settings -- Privacy and Social Benefit Tradeoff in Privacy Management -- An Integer Programming Model -- Balancing Privacy Risks and Social Benefits -- Formulation of the IP Problem -- Objective Function -- Privacy Risk Constraints -- Social Benefit Constraints -- Privacy Setting Constraints -- Open Problems -- Conclusion -- Notations and Their Meanings -- Comparison of Privacy Scoring Mechanisms -- Cases 3 and 4 -- Bibliography -- Authors' Biographies -- Blank Page.

Governments around the world are utilizing their digital ecosystems to respond to the COVID‐19 pandemic. To increase awareness among the beneficiaries about privacy risks, they must proactively publish the data handling practices for their digital initiatives through appropriate privacy policies. This study analyzes the privacy policies of public COVID‐support mobile applications (apps) in the context of India. We found a total of 63 government initiated COVID‐support apps in India out of which 38% were found to have an app‐specific privacy policy. These policies were analyzed further to assess their coverage of key principles, such as "Purpose," "Data Categories," and "Data Retention," derived from legal requirements. We also analyzed the extent of the specificity of policies with a high coverage. In India, only one nation‐wide app stood out to have both considerable coverage of key principles as well as a high level of specificity. Other national/regional apps fail to display the desired levels of coverage and/or specificity. The broader policy recommendations of this study are that the government should better address privacy concerns regarding its existing and future disaster management apps as well as its other digital initiatives by (a) establishing and enforcing a comprehensive legislative framework for data protection and (b) increasing privacy awareness among the beneficiaries.

The work described in this paper is a contribution to enhancing individual control overpersonal data which is promoted, inter alia, by the new EU General Data Protection Regulation.We propose a method to enable better informed choices of privacy preferences or privacy settings.The method relies on a privacy risk analysis framework parameterized with privacy settings. Theuser can express his choices, visualize their impact on the privacy risks through a user-friendlyinterface, and decide to revise them as necessary to reduce risks to an acceptable level. ; L'objectif du travail décrit dans cet article est de renforcer le contrôle des individussur leurs données personnelles. Nous proposons une méthode permettant d'effectuer des choix de paramétrage de politiques de protection de vie privée informés par le résultat d'une analyse de risques. L'utilisateur peut exprimer ses choix et visualiser leurs conséquences en termes de risques, puis les réviser si nécessaire dans un processus itératif, jusqu'à obtention d'un niveau de risque acceptable.

The work described in this paper is a contribution to enhancing individual control overpersonal data which is promoted, inter alia, by the new EU General Data Protection Regulation.We propose a method to enable better informed choices of privacy preferences or privacy settings.The method relies on a privacy risk analysis framework parameterized with privacy settings. Theuser can express his choices, visualize their impact on the privacy risks through a user-friendlyinterface, and decide to revise them as necessary to reduce risks to an acceptable level. ; L'objectif du travail décrit dans cet article est de renforcer le contrôle des individussur leurs données personnelles. Nous proposons une méthode permettant d'effectuer des choix de paramétrage de politiques de protection de vie privée informés par le résultat d'une analyse de risques. L'utilisateur peut exprimer ses choix et visualiser leurs conséquences en termes de risques, puis les réviser si nécessaire dans un processus itératif, jusqu'à obtention d'un niveau de risque acceptable.

The work described in this paper is a contribution to enhancing individual control overpersonal data which is promoted, inter alia, by the new EU General Data Protection Regulation.We propose a method to enable better informed choices of privacy preferences or privacy settings.The method relies on a privacy risk analysis framework parameterized with privacy settings. Theuser can express his choices, visualize their impact on the privacy risks through a user-friendlyinterface, and decide to revise them as necessary to reduce risks to an acceptable level. ; L'objectif du travail décrit dans cet article est de renforcer le contrôle des individussur leurs données personnelles. Nous proposons une méthode permettant d'effectuer des choix de paramétrage de politiques de protection de vie privée informés par le résultat d'une analyse de risques. L'utilisateur peut exprimer ses choix et visualiser leurs conséquences en termes de risques, puis les réviser si nécessaire dans un processus itératif, jusqu'à obtention d'un niveau de risque acceptable.