Wirtschaftsuniversität Wien Magisterarbeit - SemanticLab
Wirtschaftsuniversität Wien Magisterarbeit - SemanticLab
Wirtschaftsuniversität Wien Magisterarbeit - SemanticLab
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
In addition, the applied part of this thesis will focus on up-porting 2 and enhancing<br />
an existing add-on 3 for Mozilla Firefox which adds a Platform for Privacy Preference<br />
Project (P3P) functionality to the open source web browser which feature it is currently<br />
lacking.<br />
Taking everything into account one can say that this master thesis has two goals:<br />
1. Based on literature and examples, the topic of privacy while browsing the Internet<br />
should be addressed, threats to privacy should be highlighted and privacy tools<br />
should be evaluated .<br />
2. As a starting point for the Mozilla community to support P3P, an add-on for<br />
Mozilla Firefox should be developed that anticipates the current lack of P3P support<br />
of Firefox.<br />
1.3. Thesis structure<br />
The content of this thesis are web browsing privacy threads and standards, that is which<br />
threats to privacy exists while surfing the Internet and which standards were developed<br />
to hinder such threats. Already existing tools are going to be evaluated and an existing<br />
tool is going to be enhanced as the applied part of this thesis.<br />
Chapter two, 2 Privacy Threads, deals with privacy threats on the Internet. In<br />
particular, general privacy issues are going to be discussed as well as common applications<br />
which require personal data such as e-commerce applications or social network<br />
platforms. In addition, some (technical) background information about privacy on the<br />
Internet will be provided, especially about cookies, Internet Service Providers (ISPs)<br />
and methods for user tracking and profiling.<br />
The next chapter, 3 Privacy Standards, introduces three extensive privacy standards<br />
which were developed by organizations or norming institutions: W3C’s P3P, IBM’s Enterprise<br />
Privacy Authorization Language (EPAL) and OASIS’ eXtensible Access Control<br />
Markup Language (XACML). As parts of this thesis deals with the implementation of<br />
P3P, the emphasis in this chapter lies on the P3P Standard.<br />
In chapter four, 4 Requirements for Privacy Tools, generic software quality requirements<br />
(based on ISO/IEEE standards) are going to be discussed as well as privacy<br />
specific requirements according to literature.<br />
The fifth chapter, 5 Evaluation of Existing Privacy Tools, deals with the actual<br />
evaluation of privacy tools based on the requirements defined in chapter 4. As there<br />
4<br />
2 “Up-porting” describes an activity in software engineering where a certain piece of source code is<br />
adopted to a changed (software) environment<br />
3 For the readers’ benefit, the term “add-on” and “extension” will be used exchangeable in this thesis<br />
although strictly seen “extension” is correct