 |
As more of us integrate social networking into our daily lives online, the layered privacy choices we make through our in-network interactions are becoming increasingly complex.
In the process of creating accounts on social networking sites, many users embrace the "fix it and forget it" approach -- either choosing to accept the default privacy settings or making deliberate choices to customize those settings to their own preferences. And while these initial choices might serve us well for some interactions online, the process of managing our privacy preferences on these networks often requires us to have a dynamic, evolving conversation with the applications we use.
Beyond the basic decisions we make about restricting access to our profile through settings, users are faced with a myriad of choices about what we share and who we share it with each time we post new content, add an application, accept a new friend, or join a new group.
As noted in an Associated Press article, "Social Networking Applications Can Pose Security Risks," the implications of these privacy choices are often not fully understood. Of particular interest in the article is the rising popularity of Facebook applications, programs that are designed by third parties to provide added services and games to users.
Every time users agree to start interacting with a new application, they agree to share their names, networks, and lists of friends with the Facebook Platform applications. In addition, those who read the "Platform Application Terms of Use" will see that they also give their consent to share "any information provided by you and visible to you on the Facebook Site, excluding any of your Contact Information."
So, what happens to all of the excess data we routinely entrust to the kind folks who created the "Zombies" application or "What Kind of Dog Would You Be?" Do the Zombies really need to see the photos of my cat to know best how to attack me?
How this information -- which can include things like your birthday, your dating interests, or your photos -- ultimately gets used by these third parties is a bit of a mystery. Clearly, some applications, such as the popular online word game Scrabulous, use basic demographic information to serve up relevant ads while a user engages with the interface.
Yet, as enterprising young researcher Adrienne Felt has shown along with her colleagues at the University of Virginia, developers are often granted access to much more data than they actually need to ensure that the application functions properly.
As Dan Solove points out in a recent post to his Concurring Opinions blog, even the most conservative users who refuse to add any applications to their profiles still end up sharing many of those same details with third parties via their friends. (The default settings on Facebook permit the sharing of profile information with applications your friends choose to add.)
CNET writer Chris Soghoian emphasizes the challenge this presents to users: "To restate -- if you set your profile to private, and one of your friends adds an application, most of your profile information that is visible to your friend is also available to the application developer -- even if you yourself have not installed the application."
Fortunately, the user can easily change these default settings with a few clicks. But those who are sensitive about the information they share may be surprised to find that their friends have inadvertently disclosed their personal details to third parties -- especially if it turns out that they're also Zombies.
— Mary Madden, Senior Research Specialist, Pew Internet & American Life Project
Rank: Cave Painter
Sunday May 11, 2008 6:23:17 AM
I wonder how many of us actually take sufficient care of our privacy
online--and how much we unwittingly give up when we accept a site's
terms of service. Probably too much--imagine if we could create our own
terms of service? A collective, accessible user-driven terms of service
that a website could accept, that addressed varying levels of privacy?
Thinkernetter
Thursday May 1, 2008 4:56:22 PM
Thanks so much to everyone who has contributed thoughtful feedback to this post.
Regarding resources for parents who are hoping to talk with their kids about privacy choices online, there are fortunately many great websites out there. One good place to start is GetNetWise.
Those who are interested in finding out more about adults' attitudes toward privacy online and their information sharing practices might be interested in a report from the Pew Internet Project called "Digital Footprints."
Some of the more surprising findings from the report: 60% of adult internet users say they are not worried about how much information is available about them online, and just 47% have searched for their own name online.
IQ Crew
Thursday May 1, 2008 4:20:29 PM
When wanting to secure private data from network zombies: Can sharing make you more secure? Can karma save you from crimeware? Can a community protect your company? These kaspersky.com questions you may have seen in an advertisement, for example on this page. Perhaps it is a reasonable and worthy thing to expect to see continual work on developing sound principles, on promoting adherence to such principles, on elevating a common mindset for ethics, legal activity, and other forms of goodness. Perhaps positive energy will lead to continued improvements to behavior-based mechanisms and overall collective intelligence.
Researcher
Thursday May 1, 2008 4:09:42 PM
Hi, Mary!
At least, you CAN control your privacy at Facebook!There is one social network in Russia, that could be translated as classmates.ru, so you can't even set your privacy level-anybody could look at your profile, your pictures(more over, to evaluate them), and there is a special application for monitoring anybody who watches your profile.
So, when I found out that my school teacher who hated me,looked at my photos, I just deleted my profile and never came back again.
But what I have heard, that bank security uses that network for searching people who don't pay their loans. I don't know how exactly they use it, but the conclusion is obvious. Be VERY!!! careful and think twice before filling out the registration form.
Researcher
Thursday May 1, 2008 1:36:59 PM
Hi Mary,
Securing private data in the internet age now seems an exerxise in futility. It's something we've to live with that as long as we are online, there is no way you can be assured that your privacy is well and truly secured.
Back to the issue of facebook these applications violating the principle of least privelege?
Do they actually need the user data they are requesting?
IQ Crew
Thursday May 1, 2008 11:34:07 AM
The technological way of life will increase and likely often raise ethical implications, for example relative to worms, zombies, botnets and so on. Perhaps collective optimism from pros and public (before, by and beyond 2020) will somehow help to achieve giant leaps and miracles. Perhaps the world’s foundation for ethics and goodness needs to be elevated and more common. If zombies are an issue, the root cause fix may be a change in the mindset of the zombies' creators.
IQ Crew
Wednesday April 30, 2008 10:15:03 PM
I'm surprised that someone hasn't created a parenting guide on how to approach their kids on things to avoid while on the net, plus an introduction on ones internet footprint.
IQ Crew
Wednesday April 30, 2008 4:31:49 PM
Thank you for sharing with us the interesting information regarding the
prowling Zombies at social network sites such as Facebook.
Is keeping one’s information private even possible at such sites?
It seems as if one needs to realize that one way or another, a zombie is
going to invade your profile somehow and obtain the information it was seeking.
The only level of privacy I see at such sites is the ability to prevent
another user from viewing portions of your profile.
However, the zombies spawned by a particular third party service obviously
have the back stage pass to all the profiles.
The ThinkerNet does not reflect the views of TechWeb. The ThinkerNet is an informal means of communication to members and visitors of the Internet Evolution site. Individual authors are chosen by Internet Evolution to blog. Neither Internet Evolution nor TechWeb assume responsibility for comments, claims, or opinions made by authors and ThinkerNet bloggers. They are no substitute for your own research and should not be relied upon for trading or any other purpose. |
|
|
|
previous posts from Mary Madden
As the title of a recent New York Times article (“Sorry, Boys, This Is Our Domain”) suggests, teen girls have already laid their claim to the farthest-reaching corners of the creative Web. The one glaring exception to that trend is the way boys have embraced online video; when compared with teen girls, boys are twice as likely to have posted videos online.
IETV: the thinkerNet on film
an IBM information resource
sponsored content
big blue blog
I’m leaving my BlackBerry.
white papers & case studies
an IBM information resource
sponsored content
Getting to Work on Smart Work: How IT Is Transforming the Implementation of the 'Internet of Things'
Organizations in all industry sectors are becoming more instrumented, interconnected, and intelligent -- and that's changing the way they approach virtually every facet of their operations. It's up to IT to help organizations adopt a "Three I's" approach that leverages the emerging Internet of Things and enables them to work smarter.
READ THIS eBOOK
your weekly update of news, analysis, and
opinion from Internet Evolution - FREE!
REGISTER HERE
Wanted! Site Moderators
Internet Evolution is looking for a handful of readers to help moderate the message boards on our site – as well as engaging in high-IQ conversation with the industry mavens on our thinkerNet blogosphere. The job comes with various perks, bags of kudos, and GIANT bragging rights. Interested?
Please email: moderators@internetevolution.com
|
Digg
Del.icio.us
Reddit
Email This
TWEET THIS
