Abstract
In this paper, we introduce our own two-year experiments to acquire sensitive personal information from discarded hard disks which we had obtained with no ease in Korean second-hand PC markets. With careful scanning, we found that most of hard disks were not adequately cleaned, and had a plenty of confidential and sensitive personal data, which could be utilized in crimes like identity theft. Collected private data, analyzed based on the concept of identifiable individual, amounted to 4,526 persons worth of data, including 3,584 resident registration numbers. The result also indicated that discovered data items of each person were revealed to display a wide spectrum of sensitivity level.
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Ackerman, M.S., Cranor, L.F., Reagle, J.: Privacy in E-Commerce: Examining User Scenarios and Privacy Preferences. In: Procs. of 1st ACM Conference on Electronic Commerce, Denver, Colorado, U.S.A. (1999)
Berghel, H.: Digital Village: Identity Theft, Social Security Numbers, and the Web. Communications of the ACM 43(2), 17–21 (2000)
Garfinkel, S.L., Shelat, A.: Remembrance of Data Passed: A Study of Disk Sanitization Practices. IEEE Security and Privacy 1(1), 17–27 (2003)
Gutmann, P.: Secure Deletion of Data from Magnetic and Solid-State Memory. In: Procs. of 6th USENIX Security Symposium, San Jose, California, U.S.A. (1996)
Javelin Strategy and Research: 2005 Identity Fraud Survey Report (2005)
Jones, A.: How Much Information Do Organizations Throw Away? Computer Fraud and Security 2005(3), 4–9 (2005)
Schneier, B.: Risks of Third-party Data. Communications of the ACM 48(5), 136 (2005)
Shein, E.: Die Hard (Drive). CFO Magazine (2004)
Spiekermann, S., Grossklags, J., Berendt, B.: E-privacy in 2nd Generation E-commerce: Privacy Preferences Versus Actual Behavior. In: Procs. of 3rd ACM Conference on Electronic Commerce, Tampa, Florida, U.S.A. (2001)
U.S. Department of Defense: DoD 5220.22-M National Industrial Security Program Operating Manual (1995)
U.S. Public Law 104-191: Health Insurance Portability and Accountability Act of 1996 (1996)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Kwon, Y.C., Lee, S.W., Moon, S. (2006). Personal Computer Privacy: Analysis for Korean PC Users. In: Yoshiura, H., Sakurai, K., Rannenberg, K., Murayama, Y., Kawamura, S. (eds) Advances in Information and Computer Security. IWSEC 2006. Lecture Notes in Computer Science, vol 4266. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11908739_6
Download citation
DOI: https://doi.org/10.1007/11908739_6
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-47699-3
Online ISBN: 978-3-540-47700-6
eBook Packages: Computer ScienceComputer Science (R0)