Konferensartikel

Risk Analysis of Privacy Protection in Social Networking Sites

Heidi E. I. Dahl
SINTEF ICT, Norway

Mass Soldal Lund
SINTEF ICT, Norway

Ketil Stølen
SINTEF ICT, Norway

Ladda ner artikelhttp://www.ep.liu.se/ecp_article/index.en.aspx?issue=041;article=004

Ingår i: NODES 09: NOrdic workshop and doctoral symposium on DEpendability and Security; Linköping; Sweden; April 27; 2009

Linköping Electronic Conference Proceedings 41:4, s. 29-31

Visa mer +

Publicerad: 2009-07-14

ISBN:

ISSN: 1650-3686 (tryckt), 1650-3740 (online)

Abstract

We present risks in relation to privacy issues; based on an analysis of the Design Feedback Tool (DFT); an application (in development) for conducting large scale surveys. The DFT combines features from traditional questionnaires with elements from social networking sites. The analysis was performed according to the CORAS method for security risk analysis. We show how the CORAS method was applied for analysing privacy in the DFT; how this analysis influenced the solution; and how privacy issues of the system are addressed.

Nyckelord

Inga nyckelord är tillgängliga

Referenser

[1] Dwyer; C.; Hiltz; S. R.; & Passerini; K. (2007). Trust and privacy concern within social networking sites: A comparison of Facebook and MySpace. Proceedings of AMCIS 2007. Retrieved 12 March; 2009; from http://csis.pace.edu/~dwyer/research/DwyerAMCIS2007.pdf

[2] Olsen; T.; Mahler; T.; Seddon; C.; Cooper; V.; Williams; S.; Valdes; M.; et al. (2005). Privacy in Relation to Networked Organisations and Identity Management: Legal-IST

[3] Woo; J. (2006). The right not to be identified: privacy and anonymity in the interactive media environment. New Media and Society; 8(6); 649-967.

[4] Folker den Braber; Ida Hogganvik; Mass Soldal Lund; Ketil Stølen; and Fredrik Vraalsen. Model-based security analysis in seven steps – a guided tour to the CORAS method. BT Technology Journal; 25(1):101-117; 2007.

[5] Heidi E. I. Dahl; Ida Hogganvik; and Ketil Stølen. Structured semantics for the CORAS security risk modelling language. Technical Report A970; SINTEF ICT; 2007.

[6] The CORAS tool. Retrieved 12 March; 2009; from http://coras.sourceforge.net/

[7] Personvernombudet for forskning; Ord og Begreper. Retrieved 12 March; 2009; from http://www.nsd.uib.no/personvern/forsk_stud/begreper.html

Citeringar i Crossref