BA_PR Online privacy concerns

BA_PR
Onlineprivacyconcerns
Pavel Kotyza @VSFS
1
Video
https://www.youtube.com/watch?v=qAT_ina93NY
Warmup- discussion
Question No.1
• Examplesofgoodandbadprivacypolicies
• Whatdidyoulike/dislike?
• Whatinformationare(e-)storesasking?
Banthesaleofpersonalinfoorcompensation?
ColdCallingbanoropt-in?
3
Howare
online privacyconcerns
differentfrom
offline privacyconcerns?
4
Webprivacyconcerns
Dataisoften
collected
silently
Datafrom
multiple
sourcesmay
bemerged
Datacollected
forbusiness
purposes
Usersgivenno
meaningful
choice
Weballows
large
quantitiesof
data
tobe
collected
inexpensively
and
unobtrusively
Nonidentifiable
information
canbecome
identifiable
whenmerged
Maybeused
inciviland
criminal
proceedings
Fewsites
offer
alternatives
5
BrowserChatter
• x
6
• x
BrowserChatter
• Browserschatterabout
– IPaddress,domain
name,organization,
– Referringpage
– Platform:O/S,browser
– Whatinformationis
requested
• URLsandsearchterms
– Cookies
– AdTrackers
– Remarketing
7
• Toanyonewhomight
belistening
– Endservers
– Systemadministrators
– InternetService
Providers
– Otherthirdparties
• Advertisingnetworks
– Anyonewhomight
subpoenalogfileslater
LifeHacker tip
TypicalHTTPrequestwithcookie
GET/retail/searchresults.asp?qu=beer HTTP/1.0
Referer: http://www.us.buy.com/default.asp
User-Agent: Mozilla/4.75[en](X11;U;NetBSD 1.5_ALPHAi386)
Host: www.us.buy.com
Accept: image/gif,image/jpeg,image/pjpeg,*/*
Accept-Language: en
Cookie: buycountry=us;dcLocName=Basket;dcCatID=6773;
dcLocID=6773;dcAd=buybasket;loc=;parentLocName=Basket;
parentLoc=6773;
ShopperManager%2F=ShopperManager%2F=66FUQULL0QBT8
MMTVSC5MMNKBJFWDVH7;Store=107;Category=0
9
Refererlogproblems
• GETmethodsresultinvaluesinURL
• TheseURLsaresentintherefererheaderto
nexthost
• Example:
http://www.merchant.com/cgi_bin/ord
er?name=Tom+Jones&address=here+th
ere&credit+card=234876923234&PIN=
1234&->index.html
• Accesslogexample
10
Cookies
• Whatarecookies?
• Whatarepeopleconcernedaboutcookies?
• Whatusefulpurposesdocookiesserve?
11
Cookies101
• Cookiescanbeuseful
– Usedlikeastapletoattachmultiplepartsofa
formtogether
– Usedtoidentifyyouwhenyoureturntoaweb
sitesoyoudon’thavetorememberapassword
– Usedtohelpwebsitesunderstandhowpeople
usethem
• Cookiescandounexpectedthings
– Usedtoprofileusersandtracktheiractivities,
especiallyacrosswebsites
12
Howcookieswork– thebasics
• Acookiestoresasmallstringofcharacters
• Awebsiteasksyourbrowserto“set” acookie
• Wheneveryoureturntothatsiteyourbrowsersendsthe
cookiebackautomatically
Please store
cookie xyzzy
site
Here is cookie
xyzzy
browser
First visit to site
13
site
browser
Later visits
Howcookieswork– advanced
•
Cookiesareonlysentbacktothe
“site” thatsetthem– butthis
maybeanyhostindomain
– Sitessettingcookiesindicate
path,domain, andexpirationfor
cookies
Send
me with
any
request
to x.com
until
2008
14
Send me
with requests
for
index.html
on y.x.com
for this
session only
•
Cookiescanstoreuserinfoora
databasekeythatisusedtolook
upuserinfo– eitherwaythe
cookieenablesinfotobelinked
tothecurrentbrowsingsession
User=Joe
Email=
Joe@
x.com
Visits=13
Database
Users …
Email …
Visits …
User=457
6904309
Cookieterminology
CookieReplay
• Sendingacookie backtoasite
Sessioncookie
• Cookiereplayedonlyduringcurrentbrowsingsession
Persistentcookie
• Cookiereplayeduntilexpiration date
First-partycookie
• Cookieassociatedwiththesitetheuserrequested
Third-partycookie
• Cookieassociatedwithanimage,ad,frame,orothercontentfromasitewithadifferentdomain
namethatisembeddedinthesitetheuserrequested
• Browserinterpretsthird-partycookiebasedondomainname,evenifbothdomainsareownedby
thesamecompany
15
Howdatacanbelinked
• Everytimethesamecookieisreplayedtoasite,the
sitemayaddinformationtotherecordassociated
withthatcookie
–
–
–
–
Numberoftimesyouvisitalink,time,date
Whatpageyouvisit
Whatpageyouvisitedlast
Informationyoutypeintoawebform
• Ifmultiplecookiesarereplayedtogether,theyare
usuallyloggedtogether,effectivelylinkingtheirdata
– Narrowscopedcookiemightgetloggedwithbroadscoped
cookie
16
Webbugs/Trackingpixels
• Invisible“images” (1-by-1pixels,transparent)embeddedin
webpagesandcausereferer infoandcookiestobe
transferred
• Alsocalledwebbeacons,cleargifs,trackergifs,etc.
• Workjustlikebanneradsfromadnetworks,butyoucan’t
seethemunlessyoulookatthecodebehindawebpage
• AlsoembeddedinHTMLformattedemailmessages,MSWord
documents,etc.
• AdBlockers and AntiVirus software can help
17
Adnetworks
search for
medical
information
buy book
set cookie
replay cookie
Ad
Ad
Search Service
18
Ad company
can get your
name and
address from
your order and
link them to
your search
Book Store
Whatadnetworksmayknow…
• Personaldata:
– Emailaddress
– Fullname
– Mailingaddress(street,
city,state,andZipcode)
– Phonenumber
• Transactionaldata:
– Detailsofplanetrips
– Searchphrasesusedat
searchengines
– Healthconditions
“It was not necessary for me to click on the banner ads for information to
be sent to DoubleClick servers.”
– Richard M. Smith
19
Onlineandofflinemerging
• InNovember1999,DoubleClick
purchasedAbacusDirect,a
companypossessingdetailedconsumerprofilesonmorethan
90%ofUShouseholds.
• Inmid-February 2000 DoubleClickannouncedplanstomerge
“anonymous” onlinedatawithpersonalinformationobtained
fromofflinedatabases
• BythefirstweekinMarch2000theplanswereputonhold
– Stockdropped from $125(12/99)to $80(03/00)
20
Onlinedatamerging
• InNovember1999,DoubleClick
purchasedAbacusDirect,a
companypossessingdetailedconsumerprofilesonmorethan
90%ofUShouseholds.
• Inmid-February 2000 DoubleClickannouncedplanstomerge
“anonymous” onlinedatawithpersonalinformationobtained
fromofflinedatabases
• BythefirstweekinMarch2000theplanswereputonhold
– Stockdropped from $125(12/99)to $80(03/00)
21
Offlinedatagoesonline…
The
Cranor
family’s
25 most
frequent
grocery
purchases
(sorted by
nutritional
value)!
22
Youmaygettojailorcourt
• Dataononlineactivitiesisincreasinglyof
interestincivilandcriminalcases
• Theonlywaytoavoidsubpoenasistonot
havedata
• IntheUSandalsoinEU,yourfilesonyour
computerinyourhomehavemuchgreater
legalprotectionthatyourfilesstoredona
serveronthenetwork
23
Spyware
• Spyware:Softwarethatemploysauser'sInternetconnection,
withouttheirknowledgeorexplicitpermission,tocollect
information
– Mostproductsusepseudonymous,butuniqueID
• Over800knownfreewareandsharewareproductscontain
Spyware,forexample:
– Beeline SearchUtility
– GoZillaDownloadManager
– CometCursor
• Oftendifficulttouninstall!
• Anti-SpywareSites:
–
–
–
–
24
http://grc.com/oo/spyware.htm
http://www.adcop.org/smallfish
http://www.spychecker.com
http://cexx.org/adware.htm
1Devicerulethemall
Activity:1Devicerulethemall
Createteamoftwoorindividually writedown whatdatacanmobile gatheraboutyou:
Geographic
Personal
Lifestyle
Routines
HealthdataarenewNEWoil
Downside
Upside
Devicesthatmonitoryou
Mobile
Denifitely the most privacy intrusive device.
But we love them J
Sony eMarker
Lets you figure out the
artitst and title of songs
you hear on the radio. And
keeps a personal log of all
the music you like on the
emarker Web site.
http://www.emarker.com
Sportbrain
Monitors daily workout. Custom
phone cradle uploads data to
company Web site for analysis.
http://www.sportbrain.com/
:CueCat
Keeps personal log of advertisements
you‘re interested in.
http://www.crq.com/cuecat.html
See28http://www.privacyfoundation.org/
MarketingAutomation
User(devices)
communicatewith
infrastructurethat
surroundsthem
E.g.,McDonald's
Coupons
Anybodyhavea
problemwiththis?
29
Allowsgeography
tobecome
relevant(new)
Opportunityto
aiddevelopment
Walking through
amallentrance
…youhavebeen
toMcDonald’s…
andyoulikeBig
Mac’s
Suddenly,Big
Maccoupons
appearonyour
mobile/PC
Tracking(GPS)
• GlobalPositioningSystem(GPS)uses15+satellitesto
triangulate(locate)receiver
– Usedtotrackusers,vehicles,E-911
– Veryimportantforcommercialnavigation,militaryapplications,and
tracking(withtransmitter)
• OnStarusestechnology
– Offersroadsideassistance
– Emergencyroadassistance
– Navigation,serviceslocator(e.g.,whereisgas)
• Likemanyothertechnologies,canbeabused
– Trackingwherepeoplego,whenthey,whothey(potentially)meet,…
30
Whentechnologiesdogood…
• TheNannyCam
– X.10Camera(heavily
advertisedonweb)
– Allows“smallfootprint”
cameratotransmitto
localcomputer/TV
(undetectable)
– Soldtobeusedto
monitorwithout
detection
– Savesdataand…
– Transmitsdatavia802.11
• Anyproblemshere???
31
Whengoodtechnologiesgobad…
• Samsung“SmartTV”
– Whenoption is on
– TVlistens toword
spoken inthe room
– Align adtargeting based
oncontext of aspoken
word.
• Anyproblemshere???
32
Closingdiscussion
Whatprivacysoftwaredidyoutry?
Tellusaboutit.
Whatprivacyconcerndoesitaddress?
Ifyoucouldcommission privacysoftware,whatwould itdo?
Wheredidyoufindtrackingpixels?
Whatfunctions dotheyperform?
Doyouthinkweneedtoaddress onlineprivacyissues separatelyfromgeneralprivacyissues?
Goodexamplesofprivacyapps?
Whatprivacy-relatedareasseemtobemissing fromourpolicies?
33
BestPrivacyArsenalTools
Willingness to
digthrougha
Web siteand
yourbrowser's
settingspanels
Goodhabits
Healthydoseofparanoia
Thankyou