2.9.2008 von admin.

This presentation held by Miles Rochford from Nokia at the last IA Summit in Miami/Florida has some excellent arguements for a privacy-by-design approach that should be adopted by social network providers. Ultimately, some very relevant arguements for the information architecture framework I am developing for privacy-enhanced social network applications.

Geschrieben in Social Networks, Privacy | Keine Kommentare »

11.6.2008 von admin.

The upcoming OECD Ministerial Meeting on the Future of the Internet from June 17-18, 2008 in Seoul/Korea will discuss how policies for the Internet economy can shape creativity, confidence and convergence in the digital world. The OECD Secretary General, Mr. Angel Gurría, put out a call for ideas and contributions via YouTube that I find quite interesting.

Watch for yourself:

My contribution would be the following:

1) Creativity: Invest in the Internet for Education, Education, Education. Innovation, economic growth, and social development can all only occur with higher levels of education - whereever you are in the world. As such, there should be more keynote speakers that represent educational initiatives. I am glad to see APC being represented but other than that the so-called stakeholders all have a technology background (more to that on the convergence topic).

2) Confidence: Trust in the Internet technology is key for its continued ability to shape our future. One of the challenges I am trying to help with is the enhancement of information privacy for Internet users. In my role as project editor of the new privacy standards at the International Organization for Standardization (ISO) and with my dissertation work on “Information Privacy in Social Network Applications” I am trying to contribute my fair share. Yet, application providers and technology firms need to absorb the idea that Internet users should get control over their own information - please!

3) Convergence: Technologies and platforms that converge on the Internet represent exciting new forms of communication. Creativity is key to develop these ideas and technologies further but we do need a broader participation for international technology standardization in this space - and that not by just a few. All stakeholders need to act together to effectively adapt this new environment of converging platforms.

Geschrieben in Internet, Law & Technology, Web 2.0, Privacy | Keine Kommentare »

26.4.2008 von admin.

It was an inspiring roundtable of speakers and some good discussions at the Interdisciplinary Centre for Law & Information Technology (ICRI) of the Katholieke Universiteit Leuven this past Thursday where I gave a guest lecture on my expert research. One arguement that I took away for my work and I have to mention here in my blog is the work of Franck Dumontier, researcher at the Centre de Recherches Informatique et Droit (CRID). Thinking of the questions that I always face when talking about the risks for our information privacy in social networks argueing that users give their personal information willingly and, therefore, we should not bother at all. Franck Dumontier brought it to the point: It is the risk of de-contextualization of our personal information we should be concerned about. Social network users want their information to be displayed openly and are willing to share it with a large group of people publicly. However, it is when this information is used out of context that the privacy issues start. Dumontier sees the risk of de-contextualization especially in online social networks because of the simplification of social relations on these sites, the large information dissemination implied by online social networks, and because of the network globalization and normalization effects of social network applications. Think of your own personal information being displayed in your social network profiles. When do you start getting worried? Maybe never but what if someone used this information in a completely different context and made judgements about yourself? Think about it. 

Geschrieben in Social Networks, Privacy | Keine Kommentare »

26.4.2008 von admin.

The International Working Group on Data Protection in Telecommunications, the so-called Berlin Group, has released a report and guidance on privacy in social network services. After listing some of the major risks to the information privacy of social network users, the report draws up some preliminary guidance for privacy and data protection regulators, for social network application providers and also for users. The Rome Memorandum is available for free.

Geschrieben in Law & Technology, Social Networks, Privacy | Keine Kommentare »

26.2.2008 von admin.

This fairly tale is about a girl called Little Red Surfing Hood. The girl one day is surfing through the Internet and through some of her social network profiles. She actually plans to visit her grandmother later that day. All of a sudden, a message pops up on her screen from a user with the profile name “wolf”. He plans to discover as much about the girl and her grandmother as possible and pretends to be a very cute boy going to the same school as Little Red Surfing Hood. He asks all kinds of questions, sends her a link request and asks for a picture of her. She naïvely links him to her profile and also sends him a picture. Little Red Surfing Hood is really happy to have made a new friend. In the meantime, wolf assembles various credentials about Little Red Surfing Hood making use of details revealed on her profile, pictures, and personal details such as her address, Email, a mobile phone number and the route she always takes to go to her grandmother. With those credentials, he goes to the girl’s grandmother’s house, gains entry by pretending to be the girl. The rest of the fairy tale is known. The wolf eats the grandmother and later on the girl as well. There are different story endings how the girl and her grandmother were rescued by a hunter. But that is not the point of the story here. We don’t even know who the hunter was, how he found out about the wolf in the grandmother’s house and for what purpose he was into this.

Information privacy in social network applications means more than allowing certain people to see your profile. First, it means to have a way to really know the true identity of the person talking or connecting to you. Secondly, it means to have full transparency over what you and what others are doing. What happens if you upload a certain piece of data to your social network profile? Who can see which part of your profile data, who is connected to it and who uses your data for which purpose? This, of course, includes the service providers and any third parties (including the hunter). And finally, it means to determine for yourself, how your personal data is linked, exported, assembled and analyzed in which context and by whom.

Geschrieben in Social Networks, Privacy | Keine Kommentare »

29.1.2008 von admin.

DataPortability - Connect, Control, Share, Remix from Smashcut Media on Vimeo.

An interesting and well-done video on the data portability project done by Michael Pick from Smashcut Media. The project spells out as one of its principles the protection of user rights and privacy. Yet, assigning access rights to certain pieces of personal data will only cover the data protection aspect of privacy but it will not cover the required accountability and self-control over personal data in various contexts. It should be interesting to see how the project work evolves in this respect. Certainly, more work is necessary on enhancing social network users’ privacy especially when their data increasingly gets transferred and exported to other applications.

Geschrieben in Social Networks, Web 2.0, Privacy | Keine Kommentare »

28.1.2008 von admin.

It might of interest to some folks working on information privacy in social network applications that the W3C has started an interest group called PLING (Policy Languages Interest Group). It is an open forum to discuss use cases, languages, and frameworks around information governance policies and serves as a global platform to enable different initiatives to share and exchange ideas about policy interoperability. Part of my PhD work is setting requirements and mechanisms to talk “privacy” to computers. Not an easy task. As we know, for computers the Web is flat. Privacy, however, has many dimensions and depends on various contexts. Therefore, I thought it might be a good idea to join PLING and see how I can contribute with some use cases related to privacy in social network applications. If you are interested in joining the group, please go to http://www.w3.org/Policy/pling/ and join the public mailing list.

Geschrieben in PhD, Web 2.0, Privacy | Keine Kommentare »

21.1.2008 von admin.

I am currently working on a paper for the PET Symposium trying to build a privacy threat model for social networking applications. The Webb/Butterfield/Smith Model for Social Software seems to be an appropriate way to visualize the main functional elements of social networking apps. Let’s see how this model can be extended to information privacy and the personal data being collected and processed in social networking applications…

Geschrieben in Social Networks, Privacy | Keine Kommentare »

22.12.2007 von admin.

Recommended lessons to privacy-respecting design of social software by Kosmar.

| View | Upload your own

Geschrieben in Social Networks, Web 2.0, Privacy | Keine Kommentare »

19.12.2007 von admin.

Geschrieben in Law & Technology, Privacy | Keine Kommentare »