Friendster and publicly articulated social networking
CHI '04 Extended Abstracts on Human Factors in Computing Systems
BT Technology Journal
Information revelation and privacy in online social networks
Proceedings of the 2005 ACM workshop on Privacy in the electronic society
Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Understanding privacy settings in facebook with an audience view
UPSEC'08 Proceedings of the 1st Conference on Usability, Psychology, and Security
Personal knowledge questions for fallback authentication: security questions in the era of Facebook
Proceedings of the 4th symposium on Usable privacy and security
Proceedings of the 2010 ICSE Workshop on Software Engineering in Health Care
The impact of social navigation on privacy policy configuration
Proceedings of the Sixth Symposium on Usable Privacy and Security
Users' (mis)conceptions of social applications
Proceedings of Graphics Interface 2010
Measuring profile distance in online social networks
Proceedings of the International Conference on Web Intelligence, Mining and Semantics
Privacy: is there an app for that?
Proceedings of the Seventh Symposium on Usable Privacy and Security
Favors from facebook friends: unpacking dimensions of social capital
Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
My profile is my password, verify me!: the privacy/convenience tradeoff of facebook connect
Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Preserving user privacy from third-party applications in online social networks
Proceedings of the 22nd international conference on World Wide Web companion
Privacy and security issues in social networks: an evaluation of Facebook
Proceedings of the 2013 International Conference on Information Systems and Design of Communication
Proceedings of the 2013 ACM international symposium on New ideas, new paradigms, and reflections on programming & software
Appinspect: large-scale evaluation of social networking apps
Proceedings of the first ACM conference on Online social networks
| Hi-index | 0.00 |
Online social network sites, such as MySpace, Facebook and others have grown rapidly, with hundreds of millions of active users. A new feature on many sites is social applications -- applications and services written by third party developers that provide additional functionality linked to a user's profile. However, current application platforms put users at risk by permitting the disclosure of large amounts of personal information to these applications and their developers. This paper formally abstracts and defines the current access control model applied to these applications, and builds on it to create a more secure framework. We do so in the interest of preserving as much of the current architecture as possible, while seeking to provide a practical balance between security and privacy needs of the users, and the needs of the applications to access users' information. We present a user study of our interface design for setting a user-to-application policy. Our results indicate that the model and interface work for users who are more concerned with their privacy, but we still need to explore alternate means of creating policies for those who are less concerned.