Skip to main content
Springer Nature Link
Log in

Ephemeral UUID for Protecting User Privacy in Mobile Advertisements

  • Conference paper
Database and Expert Systems Applications (DEXA 2014)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 8645))

Included in the following conference series:

  • 1424 Accesses

Abstract

Recently, a universally unique identifier (UUID) for targeting ad services is supported by a smartphone OS, which can be reset and/or halted by a user. However, when a user resets the UUID, all targeted ad libraries are initialized. It means that the user cannot control ad libraries one at a time. As the user interests managed by the same UUID are easily exchanged between the ad service provider and another ad service provider, the user is anxious about the privacy violation. In addition, as the UUID can be tapped on the unencrypted network, the replay attack using the tapped UUID violates the user’s privacy. In this paper, we propose a privacy enhanced UUID that is generated by each ad service provider. As the UUID is encrypted with the time information by each access, the value of “Enc(Time, UUID)” is changed frequently. Thus, we call it an ephemeral UUID. The ephemeral UUID is shared through the same ad libraries in any applications, but it cannot be shared through the other ad libraries. Our UUID can be reset by the user and cannot be extracted on the network.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. MIC, Japan: Smartphone Privacy Initiative (2012), http://www.soumu.go.jp/main_sosiki/joho_tsusin/eng/presentation/pdf/Initiative.pdf

  2. Stevens, R., Gibler, C., Crussell, J., Erickson, J., Chen, H.: Investigating User Privacy in Android Ad Libraries. IEEE Mobile Security Technologies (2012)

    Google Scholar 

  3. AdLantis, http://sp.www.adlantis.jp/

  4. i-mobile, http://i-mobile.co.jp/en/index.aspx

  5. Nend, http://nend.net/

  6. Admob by Google, http://www.google.com/ads/admob/

  7. Farahat, A., Sunnyvale, Bailey, M.C.: How effective is targeted advertising? In: 21st International Conference on World Wide Web, pp. 111–120 (2012)

    Google Scholar 

  8. European Commission: A comprehensive approach on personal data protection in the European Union: Right to be Forgotten (2010), http://ec.europa.eu/justice/news/consulting_public/0006/com_2010_609_en.pdf

  9. European Commission’s data protection reform (2013), http://ec.europa.eu/commission_2010-2014/reding/pdf/news/20131022-libe-data-protection_en.pdf

  10. Federal Trade Commission (FTC): Endorses ‘Do Not Track’ to facilitate consumer choice about online tracking (2010), http://www.ftc.gov/opa/2010/12/privacyreport.shtm

  11. FTC Staff Report: Self-Regulatory Principles For Online Behavioral Advertising (2009), http://www.ftc.gov/os/2009/02/P085400behavadreport.pdf

  12. Do Not Track: Implementations, http://donottrack.us/implementations

  13. iOS Developer Library, ASIdentifierManager Class Reference, http://developer.apple.com/library/ios/documentation/AdSupport/Reference/ASIdentifierManager_Ref/ASIdentifierManagerhtml//apple_ref/doc/uid/TP40012654

  14. Android advertising ID, http://developer.android.com/google/play-services/id.html

  15. Grace, M.C., Zhou, W., Jiang, X., Sadeghi, A.-R.: Unsafe exposure analysis of mobile in-app advertisements. In: ACM Conference on Security and Privacy in Wireless and Mobile Network, pp. 101–112 (2012)

    Google Scholar 

  16. Wireshark, http://www.wireshark.org/

  17. AdTruth, Device Fingerprinting, http://www.adtruth.com/buzz/press/cookie-less-tracking-device-fingerprinting-vs-device-identification-technology

  18. MIC, Japan: Smartphone Privacy Initiative II (2013), http://www.soumu.go.jp/main_sosiki/joho_tsusin/eng/presentation/pdf/Summary_II.pdf

Download references

Author information

Authors and Affiliations

  1. Security Department, KDDI R&D Laboratories Inc., Japan

    Keisuke Takemori, Toshiki Matsui, Hideaki Kawabata & Ayumu Kubota

Authors
  1. Keisuke Takemori
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Toshiki Matsui
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Hideaki Kawabata
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Ayumu Kubota
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Instituto Tecnológico de Informática, 46022, Valencia, Spain

    Hendrik Decker

  2. Faculty of Electrical Engineering, Department of Cybernetics, Czech Technical University in Prague, 166 27, Prague 6, Czech Republic

    Lenka Lhotská

  3. Department of Computer Science, The University of Auckland, 1010, Auckland, New Zealand

    Sebastian Link

  4. Knowledge Management, LMU University of Munich, Leopoldstraße 13, 80802, Munich, Germany

    Marcus Spies

  5. FAW, University of Linz, Altenbergerstrasse 69, 4040, Linz, Austria

    Roland R. Wagner

Rights and permissions

Reprints and permissions

Copyright information

© 2014 Springer International Publishing Switzerland

About this paper

Cite this paper

Takemori, K., Matsui, T., Kawabata, H., Kubota, A. (2014). Ephemeral UUID for Protecting User Privacy in Mobile Advertisements. In: Decker, H., Lhotská, L., Link, S., Spies, M., Wagner, R.R. (eds) Database and Expert Systems Applications. DEXA 2014. Lecture Notes in Computer Science, vol 8645. Springer, Cham. https://doi.org/10.1007/978-3-319-10085-2_24

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-10085-2_24

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-10084-5

  • Online ISBN: 978-3-319-10085-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics