research-article

Virtual private social networks

Authors:
Mauro Conti

Vrije Universiteit Amsterdam, Amsterdam, Netherlands

Vrije Universiteit Amsterdam, Amsterdam, Netherlands
View Profile

,
Arbnor Hasani

Vrije Universiteit Amsterdam, Amsterdam, Netherlands

Vrije Universiteit Amsterdam, Amsterdam, Netherlands
View Profile

,
Bruno Crispo

University of Trento, Trento, Italy

University of Trento, Trento, Italy
View Profile

CODASPY '11: Proceedings of the first ACM conference on Data and application security and privacyFebruary 2011Pages 39–50https://doi.org/10.1145/1943513.1943521

Published:21 February 2011Publication History

CODASPY '11: Proceedings of the first ACM conference on Data and application security and privacy

Pages 39–50

ABSTRACT

Social Networking Sites (SNSs) are having a significant impact on the social life of many people - even beyond the millions of people that use them directly. These websites usually allow users to present a profile of themselves through a long list of very detailed information. However, even when such SNSs have advanced privacy policies, users are often not aware of their settings and, on top of that, users cannot abstain from sharing a minimum set of information (e.g. name and location). Such a small set of information has been proven to be enough to completely re-identify a user [22, 25].

In this work we introduce the concept of Virtual Private Social Networks (VPSNs), a concept inspired by the one of Virtual Private Networks in traditional computer networks. We argue that VPSNs can mitigate the privacy issues of SNSs, building private social networks that leverage architecture publicly available for SNSs. Furthermore, we propose FaceVPSN, which is an implementation of VPSNs for Facebook, one of the most used SNSs. FaceVPSN is the first privacy threats mitigation solution that has a light and completely distributed architecture - no coordinator is required. Furthermore, it can be implemented without any particular collaboration from the SNS platform. Finally, experimental evaluation shows that FaceVPSN adds a limited overhead, which, we argue, is acceptable for the user.

References

Virtual private social networks website. http://sites.google.com/site/fbprivacy2010/.Google Scholar
Please rob me, June 2010. http://pleaserobme.com/.Google Scholar
E. Aimeur, S. Gambs, and A. Ho. UPP: User privacy policy for social networking sites. In Proceedings of the Fourth International Conference on Internet and Web Applications and Services, pages 267--272. IEEE Computer Society, 2009. Google ScholarDigital Library
E. Aimeur, S. Gambs, and A. Ho. Towards a privacy-enhanced social networking site. In International Conference on Availability Reliability and Security, volume 0, pages 172--179. IEEE Computer Society, 2010.Google ScholarCross Ref
R. Baden, A. Bender, N. Spring, B. Bhattacharjee, and D. Starin. Persona: an online social network with user-defined privacy. In Proceedings of the ACM Conference on Data Communication, pages 135--146. ACM Press, 2009. Google ScholarDigital Library
D. M. Boyd and N. B. Ellison. Social network sites: Definition, history, and scholarship. Journal of Computer-Mediated Communication., 13(1):Article 11, 2007.Google ScholarDigital Library
L. A. Cutillo, R. Molva, and T. Strufe. Safebook: A privacy-preserving online social network leveraging on real-life trust. IEEE Communicaions Magazine, 47(12), December 2009. Google ScholarDigital Library
B. Dybwad. Facebook and others caught sending user data to advertisers, 2010. http://mashable.com/2010/05/20/facebook-caught-sending-user-data-to-advertisers/.Google Scholar
Facebook. http://www.facebook.com.Google Scholar
Facebook. Facebook's privacy policy. http://www.facebook.com/policy.php.Google Scholar
A. Felt and D. Evans. Privacy protection for social networking apis. In W2SP '08: in Conjunction with the 2008 IEEE Symposium on Security and Privacy. IEEE Computer Society, 2008.Google Scholar
R. Gross and A. Acquisti. Information revelation and privacy in online social networks. In Proceedings of the 2005 ACM workshop on Privacy in the Electronic Society, pages 71--80. ACM Press, 2005. Google ScholarDigital Library
S. Guha, K. Tang, and P. Francis. Noyb: Privacy in online social networks. In Proceedings of the First Workshop on Online Social Networks, pages 49--54. ACM Press, 2008. Google ScholarDigital Library
M. Hay, G. Miklau, D. Jensen, P. Weis, and S. Srivastava. Anonymizing social networks. Technical Report 07-19, University of Massachusetts Amherst, March 2007.Google Scholar
M. Kacimi, S. Ortolani, and B. Crispo. Anonymous opinion exchange over untrusted social networks. In SNS '09: Proceedings of the Second ACM EuroSys Workshop on Social Network Systems, pages 26--32. ACM Press, 2009. Google ScholarDigital Library
A. Korolova, R. Motwani, S. U. Nabar, and Y. Xu. Link privacy in social networks. In Proceeding of the 17th ACM conference on Information and Knowledge Management, pages 289--298. ACM Press, 2008. Google ScholarDigital Library
M. M. Lucas and N. Borisov. Flybynight: Mitigating the privacy risks of social networking. In Proceedings of the 7th ACM workshop on Privacy in the Electronic Society, pages 1--8. ACM Press, 2008. Google ScholarDigital Library
W. Luo, Q. Xie, and U. Hengartner. Facecloak: An architecture for user privacy on social networking sites. In Proceedings of the 2009 International Conference on Computational Science and Engineering, pages 26--33. IEEE Computer Society, 2009. Google ScholarDigital Library
A. Mislove, B. Viswanath, K. P. Gummadi, and P. Druschel. You are who you know: Inferring user profiles in online social networks. In Proceedings of the third ACM International Conference on Web Search and Data Mining, pages 251--260. ACM Press, 2010. Google ScholarDigital Library
Mozilla. Observer notifications. https://developer.mozilla.org/en/Observer_Notifications.Google Scholar
Mozilla. Venkman javascript debugger project page. http://www.mozilla.org/projects/venkman/.Google Scholar
A. Narayanan and V. Shmatikov. De-anonymizing social networks. In Proceedings of the 30th IEEE Symposium on Security and Privacy, pages 173--187. IEEE Computer Society, 2009. Google ScholarDigital Library
A. of Exploits. Facebook's servers was hacked again by inj3ct0r team. http://inj3ct0r.com/exploits/13403.Google Scholar
A. Sorniotti and R. Molva. Secret interest groups (sigs) in social networks with an implementation on facebook. In Proceedings of the 2008 ACM Symposium on Applied Computing, pages 621--628. ACM Press, 2010. Google ScholarDigital Library
L. A. Sweeney. http://groups.csail.mit.edu/mac/classes/6.805/articles/privacy/sweeney-thesis-draft.pdf.Google Scholar
N. Tabakoff. Facebook users are sitting ducks for identity theft, 2009. http://www.dailytelegraph.com.au/news/facebook-users-sitting-ducks-for-identity-theft/story-e6freuy9-122580713389/.Google Scholar
L.-H. Vu, K. Aberer, S. Buchegger, and A. Datta. Enabling secure secret sharing in distributed online social networks. In Proceedings of the Annual Computer Security Applications Conference, pages 419--428, 2009. Google ScholarDigital Library
W. Wolfe-Wylie. The harm of facebook pictures, 2010. http://www.torontosun.com/life/2010/08/10/14978476.html.Google Scholar
A. L. Young and A. Quan-Haase. Information revelation and internet privacy concerns on social network sites: a case study of facebook. In Proceedings of the Fourth International Conference on Communities and Technologies, pages 265--274. ACM Press, 2009. Google ScholarDigital Library
E. Zheleva and L. Getoor. To join or not to join: The illusion of privacy in social networks with mixed public and private user profiles. In Proceedings of the 18th International Conference on World Wide Web, pages 531--540. ACM Press, 2009. Google ScholarDigital Library

Index Terms

Virtual private social networks
1. Security and privacy
  1. Cryptography
    1. Cryptanalysis and other attacks
  2. Intrusion/anomaly detection and malware mitigation
2. Social and professional topics
  1. Computing / technology policy
    1. Computer crime
    2. Intellectual property

Recommendations

Virtual private social networks and a facebook implementation

The popularity of Social Networking Sites (SNS) is growing rapidly, with the largest sites serving hundreds of millions of users and their private information. The privacy settings of these SNSs do not allow the user to avoid sharing some information (...
Read More
Information revelation and privacy in online social networks
WPES '05: Proceedings of the 2005 ACM workshop on Privacy in the electronic society

Participation in social networking sites has dramatically increased in recent years. Services such as Friendster, Tribe, or the Facebook allow millions of individuals to create online profiles and share personal information with vast networks of friends ...
Read More
Uses and gratifications of social networking sites for bridging and bonding social capital

Applying uses and gratifications theory (UGT) and social capital theory, our study examined users of four social networking sites (SNSs) (Facebook, Twitter, Instagram, and Snapchat), and their influence on online bridging and bonding social capital. ...
Read More

Comments

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Published in
CODASPY '11: Proceedings of the first ACM conference on Data and application security and privacy
February 2011
294 pages
ISBN:9781450304665
DOI:10.1145/1943513
General Chair:
Ravi Sandhu
University of Texas at San Antonio, USA
,
Program Chair:
Elisa Bertino
Purdue University, USA
Copyright © 2011 ACM
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]
Sponsors
In-Cooperation
Publisher
Association for Computing Machinery
New York, NY, United States
Publication History
- Published: 21 February 2011
Permissions
Request permissions about this article.
Request Permissions

Check for updates
Author Tags
facebook privacy
internet and privacy
social networking sites
virtual private social networks
Qualifiers
- research-article
Conference

Acceptance Rates
Overall Acceptance Rate149of789submissions,19%
Upcoming Conference
CODASPY '24

Sponsor:

sigsac

Fourteenth ACM Conference on Data and Application Security and Privacy

June 19 - 21, 2024

Porto , Portugal
Funding Sources
Other Metrics
View Article Metrics

Article Metrics
- 30
  Total Citations
  View Citations
- 1,110
  Total Downloads
- Downloads (Last 12 months)9
- Downloads (Last 6 weeks)4
Other Metrics
View Author Metrics
Cited By
View all

PDF Format

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Virtual private social networks

CODASPY '11: Proceedings of the first ACM conference on Data and application security and privacy

ABSTRACT

References

Cited By

Index Terms

Recommendations

Virtual private social networks and a facebook implementation

Information revelation and privacy in online social networks

Uses and gratifications of social networking sites for bridging and bonding social capital