Security Privacy Relationship Which FIPs may be relevant to security breaches of customer privacy information? –Must be accountable for all PII in its.

Slides:



Advertisements
Similar presentations
How to protect yourself, your computer, and others on the internet
Advertisements

LeadManager™- Internet Marketing Lead Management Solution May, 2009.
Accessing and Using the e-Book Collection from EBSCOhost ® When an arrow appears, click to proceed to the next slide at your own pace. To go back, click.
Back to Table of Contents
1 Configuring Internet- related services (April 22, 2015) © Abdou Illia, Spring 2015.
Ethical Issues concerning Internet Privacy 1.  Personal information on the Internet has become a hot commodity because it can be collected, exchanged,
Software programs that enable you to view world wide web documents. Internet Explorer and Firefox are examples. Browser.
Greg Lamb. Introduction It is clear that we as consumers and entrepreneurs cannot expect complete privacy when discussing business matters. However… There.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Content  Overview of Computer Networks (Wireless and Wired)  IP Address, MAC Address and Workgroups  LAN Setup and Creating Workgroup  Concept on.
Copyright © 2006 by The McGraw-Hill Companies, Inc. All rights reserved. McGraw-Hill Technology Education Copyright © 2006 by The McGraw-Hill Companies,
1 Configuring Web services (Week 15, Monday 4/17/2006) © Abdou Illia, Spring 2006.
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Web Privacy.
Property of Common Sense Privacy - all rights reserved THE DATA PROTECTION ACT 1998 A QUESTION OF PRINCIPLES Sheelagh F M.
Privacy Policy, Law and Technology Carnegie Mellon University Spring 2004 Lorrie Cranor 1 Online privacy concerns.
The Internet & The World Wide Web Notes
The Privacy Tug of War: Advertisers vs. Consumers Presented by Group F.
Privacy and Encryption The threat of privacy due to the sale of sensitive personal information on the internet Definition of anonymity and how it is abused.
Behavior Tracking Dhaval Patel.
Topics Basic Internet Concepts. Types of Information. Search Tools & Techniques. Managing Internet Resources. Browsing a mail. Composing a mail. Attaching.
The World-Wide Web. Why we care? How much of your personal info was released to the Internet each time you view a Web page? How much of your personal.
ITIS 1210 Introduction to Web-Based Information Systems Chapter 48 How Internet Sites Can Invade Your Privacy.
C4- Social, Legal, and Ethical Issues in the Digital Firm
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2005 Lorrie Cranor 1 Online Privacy Concerns.
Lecturer: Ghadah Aldehim
1 ITGS - introduction A computer may have: a direct connection to a net (cable); or remote access (modem). Connect network to other network through: cables.
Staying Safe Online Keep your Information Secure.
Adapted from Computer Concepts, New Perspectives, Thompson Course Technology EDW 647: The Internet Dr. Roger Webster & Dr. Nazli Mollah 24 Cookies: What.
Chapter 11 Computers and Society, Security, Privacy, and Ethics.
INTERNET PRIVACY Marketing companies The cookie leak security hole in the HTML messages The Web Bug Can we trust the privacy.
XP New Perspectives on Browser and Basics Tutorial 1 1 Browser and Basics Tutorial 1.
E-commerce Vocabulary Terms. E-commerce Buying and selling of goods, services, or information via World Wide Web, , or other pathways on the Internet.
E-commerce Vocabulary Terms By: Laura Kinchen. Buying and selling of goods, services, or information via World Wide Web, , or other pathways on the.
OHT 11.1 © Marketing Insights Limited 2004 Chapter 9 Analysis and Design EC Security.
Privacy & Security Online Ivy, Kris & Neil Privacy Threat - Ivy Is Big Brother Watching You? - Kris Identity Theft - Kris Medical Privacy - Neil Children’s.
Chapter 8 Browsing and Searching the Web. Browsing and Searching the Web FAQs: – What’s a Web page? – What’s a URL? – How does a browser work? – How do.
COOKIES. INTERNET COOKIES What are they Where are they found What should you do about them.
The DoubleClick controversy and other related issues pertaining to privacy on the Internet.
Chapter 18 Technology in the Workplace Section 18.2 Internet Basics.
Digital Citizenship Lesson 3. Does it Matter who has your Data What kinds of information about yourself do you share online? What else do you do online.
U.S. Department of Commerce Web Advisory Group Minding Your Own Business The Platform for Privacy Preferences Project.
1 UNIT 13 The World Wide Web Lecturer: Kholood Baselm.
How the Web Works Building a Website – Lesson 1. How People Access the Web Browsers People access websites using software called a web browser. To view.
Sears Privacy Policy & Security information Shaina Lacher.
Chapter Twelve Digital Interactive Media Arens|Schaefer|Weigold Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution.
Chapter 12: How Private are Web Interactions?. Why we care? How much of your personal info was released to the Internet each time you view a Web page?
FriendFinder Location-aware social networking on mobile phones.
Personal Privacy and the Public Internet John E. Carter Kennesaw State University IT 3700.
PRIVACY, LAW & ETHICS MBA 563. Source: eMarketing eXcellence Chaffey et al. BH Overview: Establishing trust and confidence in the online world.
1 Law, Ethical Impacts, and Internet Security. 2 Legal Issues vs. Ethical Issues Ethics — the branch of philosophy that deals with what is considered.
Policies and Security for Internet Access
Introduction Web analysis includes the study of users’ behavior on the web Traffic analysis – Usage analysis Behavior at particular website or across.
27.1 Chapter 27 WWW and HTTP Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display.
Protecting your search privacy A lesson plan created & presented by Maria Bernhey (MLS) Adjunct Information Literacy Instructor
1 UNIT 13 The World Wide Web. Introduction 2 The World Wide Web: ▫ Commonly referred to as WWW or the Web. ▫ Is a service on the Internet. It consists.
Top Ten Ways to Protect Privacy Online -Abdul M. Look for privacy policies on Web Sites  Web sites can collect a lot of information about your visit.
Windows Vista Configuration MCTS : Internet Explorer 7.0.
Fall Personal privacy Rights of individuals/entities Informational /database protection Government Regulation & surveillance Workplace Privacy.
CS 115: COMPUTING FOR THE SOCIO-TECHNO WEB TECHNOLOGIES FOR PRIVATE (AND NOT-SO-PRIVATE) COMMUNICATIONS.
Facebook privacy policy
IT Security  .
COOKIES.
Protect Your Computer Against Harmful Attacks!
CS 115: COMPUTING FOR The Socio-Techno Web
What is Cookie? Cookie is small information stored in text file on user’s hard drive by web server. This information is later used by web browser to retrieve.
Configuring Internet-related services
Chapter 10: Privacy, Security, and Ethics
HOW DO I KEEP MY COMPUTER SAFE?
Privacy Policy, Law and Technology Online Privacy
Privacy and Data Mining
Presentation transcript:

Security Privacy Relationship Which FIPs may be relevant to security breaches of customer privacy information? –Must be accountable for all PII in its possession –Must not permit forward transfer of of PII without the person’s permission –Should retain the PII only for as long as necessary –Must ensure the security of the PII in its possession –Provide a means of recourse if any of the previous are violated

Frequency of Security/Privacy Failures Frequency doubled from 1996 to 2001 Security incidents on the rise Not all security breaches result in the loss of consumer data, but many do

The Problem of Security Systems not designed for security Many points of vulnerability Lack of security policy and security education The human element –Insider fraud –Social engineering

Consumer Concerns One way mirror analogy Perception that online tracking is harmful Government tracking

Cookies 101 Cookies can be useful –Used like a staple to attach multiple parts of a form together –Used to identify you when you return to a web site so you don’t have to remember a password –Used to help web sites understand how people use them Cookies can do unexpected things –Used to profile users and track their activities, especially across web sites

How cookies work – the basics A cookie stores a small string of characters A web site asks your browser to “set” a cookie Whenever you return to that site your browser sends the cookie back automatically browsersite Please store cookie xyzzy First visit to site browsersite Here is cookie xyzzy Later visits

How cookies work – advanced Cookies are only sent back to the “site” that set them – but this may be any host in domain –Sites setting cookies indicate path, domain, and expiration for cookies Cookies can store user info or a database key that is used to look up user info – either way the cookie enables info to be linked to the current browsing session Database Users … … Visits … Send me with any request to x.com until 2008 Send me with requests for index.html on y.x.com for this session only User=Joe = x.com Visits=13 User=

Cookie terminology Cookie Replay – sending a cookie back to a site Session cookie – cookie replayed only during current browsing session Persistent cookie – cookie replayed until expiration date First-party cookie – cookie associated with the site the user requested Third-party cookie – cookie associated with an image, ad, frame, or other content from a site with a different domain name that is embedded in the site the user requested –Browser interprets third-party cookie based on domain name, even if both domains are owned by the same company

Web bugs Invisible “images” (1-by-1 pixels, transparent) embedded in web pages and cause referer info and cookies to be transferred Also called web beacons, clear gifs, tracker gifs,etc. Work just like banner ads from ad networks, but you can’t see them unless you look at the code behind a web page Also embedded in HTML formatted messages, MS Word documents, etc. For more info on web bugs see: For software to detect web bugs see:

How data can be linked Every time the same cookie is replayed to a site, the site may add information to the record associated with that cookie –Number of times you visit a link, time, date –What page you visit –What page you visited last –Information you type into a web form If multiple cookies are replayed together, they are usually logged together, effectively linking their data –Narrow scoped cookie might get logged with broad scoped cookie

Ad networks Ad company can get your name and address from CD order and link them to your search Ad search for medical information set cookie buy CD replay cookie Search ServiceCD Store

What ad networks may know… Personal data: – address –Full name –Mailing address (street, city, state, and Zip code) –Phone number Transactional data: –Details of plane trips –Search phrases used at search engines –Health conditions “It was not necessary for me to click on the banner ads for information to be sent to DoubleClick servers.” – Richard M. Smith

Online and offline merging In November 1999, DoubleClick purchased Abacus Direct, a company possessing detailed consumer profiles on more than 90% of US households. In mid-February 2000 DoubleClick announced plans to merge “anonymous” online data with personal information obtained from offline databases By the first week in March 2000 the plans were put on hold –Stock dropped from $125 (12/99) to $80 (03/00)

Subpoenas Data on online activities is increasingly of interest in civil and criminal cases The only way to avoid subpoenas is to not have data In the US, your files on your computer in your home have much greater legal protection that your files stored on a server on the network

Spyware Spyware: Software that employs a user's Internet connection, without their knowledge or explicit permission, to collect information –Most products use pseudonymous, but unique ID Over 800 known freeware and shareware products contain Spyware, for example: –Beeline Search Utility –GoZilla Download Manager –Comet Cursor According to one study Spyware has affected (infected?) 80% of home computers Often difficult to uninstall!

Some Websites for Spyware Removal or Information for AdAwarewww.lavasoftusa.com for SpyBot Search & Destroywww.safernetworking.org /spyware_free/index.htmlhttp:// /spyware_free/index.html

Interactive TV Janet Jackson rewind Sale of viewing habits in aggregate, but viewers are still anonymous

GPS and Satellite Tracking Fleet management OnStar Connecticut Rental Vehicle case

Mobile Phones Requirement for 911 service will necessitate use of GPS Targeted marketing – geo-coded services

m-Marketing Special security issues with mobile devices Opt-in versus opt-out for m-Marketing Risk of information overload

Workplace Privacy 9 th Circuit Court Judges’ reactions Least intrusive forms of workplace surveillance – spot checks, filtering, blocking Most intrusive forms – blanket surveillance

1986 Electronic Communication Privacy Act (ECPA) It is illegal to intentionally intercept oral, wire, or electronic communications Three exceptions to the law –Business extension exception –Consent exception –Service provider exception

Reasons for Workplace Surveillance To protect proprietary data and intellectual property To enhance worker productivity To ensure a comfortable safe work environment

Workplace Monitoring Recommendations Define the purpose for collecting employee information Define how it will be used Develop a workplace privacy policy Explain consequences of violations Document consent Conduct education and training Measure monitoring against legislation and human rights codes Provide a means for employee complaints

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.