Sebastian Labitzke, Florian Werling, Jens Mittag, H. Hartenstein
{"title":"Do online social network friends still threaten my privacy?","authors":"Sebastian Labitzke, Florian Werling, Jens Mittag, H. Hartenstein","doi":"10.1145/2435349.2435352","DOIUrl":null,"url":null,"abstract":"A user's online social network (OSN) friends commonly share information on their OSN profiles that might also characterize the user him-/herself. Therefore, OSN friends are potentially jeopardizing users' privacy. Previous studies demonstrated that third parties can potentially infer personally identifiable information (PII) based on information shared by users' OSN friends if sufficient information is accessible. However, when considering how privacy settings have been adjusted since then, it is unclear which attributes can still be predicted this way. In this paper, we present an empirical study on PII of Facebook users and their friends. We show that certain pieces of PII can easily be inferred. In contrast, other attributes are rarely made publicly available and/or correlate too little so that not enough information is revealed for intruding user privacy. For this study, we analyzed more than 1.2 million OSN profiles in a compliant manner to investigate the privacy risk due to attribute prediction by third parties. The data shown in this paper provides the basis for acting in a risk aware fashion in OSNs.","PeriodicalId":118139,"journal":{"name":"Proceedings of the third ACM conference on Data and application security and privacy","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2013-02-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"14","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the third ACM conference on Data and application security and privacy","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2435349.2435352","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 14
Abstract
A user's online social network (OSN) friends commonly share information on their OSN profiles that might also characterize the user him-/herself. Therefore, OSN friends are potentially jeopardizing users' privacy. Previous studies demonstrated that third parties can potentially infer personally identifiable information (PII) based on information shared by users' OSN friends if sufficient information is accessible. However, when considering how privacy settings have been adjusted since then, it is unclear which attributes can still be predicted this way. In this paper, we present an empirical study on PII of Facebook users and their friends. We show that certain pieces of PII can easily be inferred. In contrast, other attributes are rarely made publicly available and/or correlate too little so that not enough information is revealed for intruding user privacy. For this study, we analyzed more than 1.2 million OSN profiles in a compliant manner to investigate the privacy risk due to attribute prediction by third parties. The data shown in this paper provides the basis for acting in a risk aware fashion in OSNs.
用户的OSN (online social network)好友通常会在他们的OSN (online social network)配置文件中共享用户的个人信息,这些信息可能也是用户的个人特征。因此,OSN友元存在潜在的隐私风险。先前的研究表明,如果用户的OSN朋友共享的信息足够可访问,第三方可能会根据这些信息推断出个人身份信息(PII)。然而,当考虑到自那时以来隐私设置是如何调整的,就不清楚哪些属性仍然可以通过这种方式预测。本文对Facebook用户及其好友的个人身份信息进行了实证研究。我们展示了PII的某些部分可以很容易地被推断出来。相比之下,其他属性很少公开可用和/或关联太少,因此没有足够的信息显示侵犯用户隐私。在本研究中,我们以合规的方式分析了120多万个OSN配置文件,以调查第三方属性预测导致的隐私风险。本文中显示的数据为osn以风险意识的方式行事提供了基础。