Title :
P2F: A User-Centric Privacy Protection Framework
Author :
Jafari-Lafti, Maryam ; Huang, Chin-Tser ; Farkas, Csilla
Author_Institution :
Dept of Comput. Sci. & Eng., Univ. of South Carolina, Columbia, SC
Abstract :
In this paper, we present an end-user tool called the privacy protection framework (P2F) which aims to support users in protecting their privacy when obtaining Web-based services. P2F acts as a recommendation tool that analyzes the user´s transaction history and privacy preferences in addition to real-world privacy guidelines to prevent undesirable disclosure of personal data. The framework is based on a novel qualitative privacy compromise risk assessment approach designed to support decision-making in settings where server-side support for user-centric privacy protection frameworks is minimal or unkown. Our risk assessment model uses service provider properties, likelihood of collusion between providers, the sensitivity of the personal data to be released, and undesirable transaction linkability to determine the privacy compromise potential of a transaction.
Keywords :
Web services; data privacy; decision making; risk management; security of data; P2F privacy protection framework; Web-based service; data security; decision-making; qualitative privacy compromise risk assessment approach; recommendation tool; server-side support; user-centric privacy; users transaction history; Availability; Computer security; Cryptography; Data privacy; History; Identity management systems; Information security; Protection; Risk analysis; Risk management; Data Security; Privacy; Risk Analysis; User Profiling;
Conference_Titel :
Availability, Reliability and Security, 2009. ARES '09. International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4244-3572-2
Electronic_ISBN :
978-0-7695-3564-7
DOI :
10.1109/ARES.2009.167
