Wirtschaftsuniversität Wien Magisterarbeit - SemanticLab

More documents

Recommendations

Info

In addition, the applied part of this thesis will focus on up-porting 2 and enhancing an existing add-on 3 for Mozilla Firefox which adds a Platform for Privacy Preference Project (P3P) functionality to the open source web browser which feature it is currently lacking. Taking everything into account one can say that this master thesis has two goals: 1. Based on literature and examples, the topic of privacy while browsing the Internet should be addressed, threats to privacy should be highlighted and privacy tools should be evaluated . 2. As a starting point for the Mozilla community to support P3P, an add-on for Mozilla Firefox should be developed that anticipates the current lack of P3P support of Firefox. 1.3. Thesis structure The content of this thesis are web browsing privacy threads and standards, that is which threats to privacy exists while surfing the Internet and which standards were developed to hinder such threats. Already existing tools are going to be evaluated and an existing tool is going to be enhanced as the applied part of this thesis. Chapter two, 2 Privacy Threads, deals with privacy threats on the Internet. In particular, general privacy issues are going to be discussed as well as common applications which require personal data such as e-commerce applications or social network platforms. In addition, some (technical) background information about privacy on the Internet will be provided, especially about cookies, Internet Service Providers (ISPs) and methods for user tracking and profiling. The next chapter, 3 Privacy Standards, introduces three extensive privacy standards which were developed by organizations or norming institutions: W3C’s P3P, IBM’s Enterprise Privacy Authorization Language (EPAL) and OASIS’ eXtensible Access Control Markup Language (XACML). As parts of this thesis deals with the implementation of P3P, the emphasis in this chapter lies on the P3P Standard. In chapter four, 4 Requirements for Privacy Tools, generic software quality requirements (based on ISO/IEEE standards) are going to be discussed as well as privacy specific requirements according to literature. The fifth chapter, 5 Evaluation of Existing Privacy Tools, deals with the actual evaluation of privacy tools based on the requirements defined in chapter 4. As there 4 2 “Up-porting” describes an activity in software engineering where a certain piece of source code is adopted to a changed (software) environment 3 For the readers’ benefit, the term “add-on” and “extension” will be used exchangeable in this thesis although strictly seen “extension” is correct
are several kinds of privacy tools, this chapter will focus on tools used in an Internet environment such as browsers, browser add-ons and proxies. In the last chapter, 6 Development of a Privacy Plug-In, the development of a privacy add-on for Mozilla Firefox is described. This chapter is, in combination with Appendix A and B, the documentation of the applied part of this thesis. Besides a short introduction to add-on development for Mozilla Firefox, an overview about the existing add-on and the enhanced extension will be provided. Finally, the new add-on is going to be evaluated regarding the defined requirements. 5
Page 1: Wirtschaftsuniversität Wien Magist
Page 4 and 5: Contents Abbreviations vii Listings
Page 6 and 7: II. Applied part 53 6. Development
Page 8 and 9: Listings viii 3.1. HTTP response he
Page 10 and 11: List of Tables x 3.1. PURPOSE sub-e
Page 12 and 13: 1. Introduction This thesis address
Page 16 and 17: 2. Privacy Threats Privacy is the
Page 18 and 19: term friendly fraud relates to legi
Page 20 and 21: over iGoogle, search Wikipedia via
Page 22 and 23: collect a lot of personal data abou
Page 24 and 25: 2.4. Privacy sensitive technologies
Page 26 and 27: • Data necessary to identify the
Page 28 and 29: 3. Privacy Standards The following
Page 30 and 31: The well-known location method (whi
Page 32 and 33: • User Preferences: User-agents m
Page 34 and 35: Another important issue for policy
Page 36 and 37: 1 M i c r o s o f t Way< /DATA> Red
Page 38 and 39: 28 PURPOSE Plain Language Translati
Page 40 and 41: Finally, an example should be provi
Page 42 and 43: • There is a commercial P3P polic
Page 44 and 45: Element Value ruling allow user cat
Page 46 and 47: 3.3.1. XACML - an introduction Simi
Page 48 and 49: 3.3.3. Summary The introduced priva
Page 50 and 51: specified conditions” [ISO01a]. T
Page 52 and 53: applied to this characteristic too,
Page 54 and 55: Figure 5.1.: Microsoft Internet Exp
Page 56 and 57: 5.1.2. Firefox The Mozilla Foundati
Page 58 and 59: shortcuts and context-menu, users s
Page 60 and 61: 5.3. Proxies In this section, proxi
Page 62 and 63: 52 Figure 5.10.: The settings dialo
Page 64 and 65:
6. Development of a Privacy Plug-In
Page 66 and 67:
• components directory: this dire
Page 68 and 69:
Speaking of information it has to b
Page 70 and 71:
Figure 6.2.: Displaying the P3P pol
Page 72 and 73:
matches the users preferences befor
Page 74 and 75:
Figure 6.4.: The privacy policy of
Page 76 and 77:
is different from the one available
Page 78 and 79:
access elements in a policy which i
Page 80 and 81:
implementation available although t
Page 82 and 83:
[Dro06] Dennis Drotar, Rachel Green
Page 84 and 85:
[Kob07] Alfred Kobsa. Privacy-enhan
Page 86 and 87:
[Oli04] Nadia Olivero and Peter Lun
Page 88 and 89:
[Woo06] Jisuk Woo. The right not to
Page 90 and 91:
M i c r o s o f t i s a premier spo
Page 92 and 93:
82
Page 94 and 95:
B. E-Mail correspondence Subject :
Page 96:
the Thank you , Renukesh M i c r o
show all

Wirtschaftsuniversität Wien Magisterarbeit - SemanticLab

Create successful ePaper yourself

Delete template?

Save as template?