MicroID considered harmful ( to privacy )
نویسنده
چکیده
MicroID is a deployed Internet standard designed for use as a lightweight, decentralized identity primitive in web applications and communities. This study presents the standard’s specification and deployment, and analyzes the security and privacy of MicroID, describing attacks that can be used to compromise the privacy of its users. Although it has been described by its designers as privacy-preserving, in practice the deployment of MicroID has put the private information of many of its millions of unwitting users at risk of compromise. We provide recommendations for changes to the standard and its deployment which prevent these attacks.
منابع مشابه
Users as Prosumers of PETs : The Challenge of Involving Users in the Creation of Privacy Enhancing Technologies
Frequent contact with online businesses requires Internet users to distribute large amounts of personal information. This spreading of users’ information through different Websites can eventually lead to increased probabilities for identity theft, profiling and linkability attacks, as well as other harmful consequences. Methods and tools for securing people’s online activities and protecting th...
متن کاملGame-Based Cryptanalysis of a Lightweight CRC-Based Authentication Protocol for EPC Tags
The term "Internet of Things (IoT)" expresses a huge network of smart and connected objects which can interact with other devices without our interposition. Radio frequency identification (RFID) is a great technology and an interesting candidate to provide communications for IoT networks, but numerous security and privacy issues need to be considered. In this paper, we analyze the security and ...
متن کاملInternet Privacy and Self-Regulation: Lessons from the Porn Wars
The availability and adequacy of technical remedies ought to play a crucial role in evaluating the propriety of state action with regard to both the inhibition of Internet pornography and the promotion of Internet privacy. Legislation that would have restricted Internet speech considered indecent or harmful to minors has already faced and failed that test. Several prominent organizations dedica...
متن کاملThe ethical and social implications of personalization technologies for e-learning
Personalization in information systems can be considered beneficial but also ethically and socially harmful. Like many other technologies, the uptake of personalization has been rapid, with inadequate consideration given to its effects. Personalization in e-learning systems also has potential for both harmful and beneficial outcomes, but less is known about its effects. The ethical and social h...
متن کاملComparison of the viewpoints of the operating room staff and those of patients on the degree of respecting patients’ privacy
Introduction: Adherence to a set of principles for patient rights, all defined in the form of professional ethics, is considered to be an essential and fundamental aspect of health and safety issues, one of which is respecting patient privacy. Therefore, the aim of this study was to evaluate the privacy of patients from the viewpoint of personnel and patients in the operating room of Vali-e-Asr...
متن کامل