Privacy enhancing technologies for solving the privacy-personalization paradox: Taxonomy and survey

Kaaniche, Nesrine; Laurent, Maryline; Belguith, Sana

doi:10.1016/j.jnca.2020.102807

Cited by 85 publications

(53 citation statements)

References 187 publications

(304 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The term Privacy Enhancing Technology (PET) covers a broad range of technologies and applications that are designed to enhance privacy and data security of both individual (e.g. Kaaniche et al 2020) and corporate users (e.g. Gan et al 2019) in their online activities and communications.…”

Section: Literature Reviewmentioning

confidence: 99%

“…On these premises, it is no wonder that the market of the so called 'Privacy Enhancing Technologies (PET), i.e. a wide and heterogeneous family of information and communication technologies (ICTs) designed to reduce, eliminate, or prevent unauthorized processing of users' personal data to protect their privacy and security (Heurix et al 2015;Borking and Raab 2001) such as proxy servers, virtual private networks (VPNs), end-to-end secure communications, and anonymization networks like The Onion Router (known as Tor), have recently gained momentum (Kaaniche et al 2020;Sardá et al 2019).…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Hands off my data: users’ security concerns and intention to adopt privacy enhancing technologies

2020

View full text Add to dashboard Cite

As the number of data leak scandals and data infringements increase by the day, people are becoming more concerned than ever about their online security. As a result, software and applications designed to reduce, eliminate, or prevent unauthorized processing of users' online personal data, referred to as privacy enhancing technologies (PETs) are gaining momentum. Yet, research investigating what drives users' intention to adopt these technologies is still scant. Drawing on the Unified Theory of Acceptance and Use of Technology 2 (UTAUT2), this study develops a research framework and tests it with a research design combining structural equation modelling and multi-group analysis. As participants, we recruited 198 members of four online communities where discussion of PETs takes place. Besides confirming the UTAUT2 variables' predictive power on the intention to use PETs, the results of applying the baseline model also provide interesting insight on the mediating role UTAUT2 core constructs play in the relationship between security concerns and intention to adopt PETs. The multi-group analysis, in contrast, revealed that the underlying mechanisms of the theoretical framework we tested work differently when the users' level of expertise is taken into account. This work concludes with managerial implications addressed to both PET providers and any business dealing with online consumer data.

show abstract

Section: Literature Reviewmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Hands off my data: users’ security concerns and intention to adopt privacy enhancing technologies

2020

View full text Add to dashboard Cite

show abstract

“…However, many shortcomings of user-centric PII management within TCPA have been identified over the previous years in Chapter 1.2.2 in [3]. e problem of the reunification of personal data has been well identified in the literature in Chapter IV in [4] and remains relevant.…”

Section: Introductionmentioning

confidence: 99%

“…e problem of the reunification of personal data has been well identified in the literature in Chapter IV in [4] and remains relevant. In fact, academic and industrial solutions, either they be (i) personal data stores [5][6][7][8], (ii) identity managers [9][10][11][12][13], (iii) anonymous certificate systems [3,14,15], or (iv) delegation architecture [16,17], do not address the specific needs of PII management within TCPA. Indeed, (i) personal data stores only support simple PII management scenarios where PII is collected on an "all-ornothing" basis.…”

Section: Introductionmentioning

confidence: 99%

An Efficient User-Centric Consent Management Design for Multiservices Platforms

Marillonnet

Ates²,

Laurent

et al. 2021

Security and Communication Networks

Self Cite

View full text Add to dashboard Cite

This paper presents an efficient user-centric consent management system to access online services of the Territorial Collectivities and Public Administration (TCPA) as well as user-authorized third parties. It defines a novel PII manager that supports a set of sources obeying to different authorization and PII retrieval protocols. This contribution is motivated by the necessity to interface TCPA services with remote sources that provide Personally Identifiable Information (PII). Hence, the originality of our solution is multifold. First, the burden for enforcing the interoperability between the sources and the TCPA services collecting the PII is reduced from the point of view of the user, the administrator of the User-Relationship Management (URM) platform, and the territorial agent responsible for processing the user’s queries. Second, it defines a unified consent model supporting four types of sources. Third, it goes into details of practical implementations. Fourth, the relevance of the proposed PII manager for a relevant TCPA use case is demonstrated through a functional analysis.

show abstract

“…The privacy and security in mobile information systems are essential because the mobile devices are equipped with several sensors that may capture sensitive data related to the user, such as location, previous communications, and other sensors data capable of identifying the different users [6,7]. Still, the privacy of the users is always crucial in the different developed systems.…”

Section: Introductionmentioning

confidence: 99%

PriADA: Management and Adaptation of Information Based on Data Privacy in Public Environments

et al. 2020

View full text Add to dashboard Cite

The mobile devices cause a constant struggle for the pursuit of data privacy. Nowadays, it appears that the number of mobile devices in the world is increasing. With this increase and technological evolution, thousands of data associated with everyone are generated and stored remotely. Thus, the topic of data privacy is highlighted in several areas. There is a need for control and management of data in circulation inherent to this theme. This article presents an approach to the interaction between the individual and the public environment, where this interaction will determine the access to information. This analysis was based on a data privacy management model in open environments created after reading and analyzing the current technologies. A mobile application based on location by Global Positioning System (GPS) was developed to substantiate this model, which considers the General Data Protection Regulation (GDPR) to control and manage access to each individual’s data.

show abstract

Privacy enhancing technologies for solving the privacy-personalization paradox: Taxonomy and survey

Cited by 85 publications

References 187 publications

Hands off my data: users’ security concerns and intention to adopt privacy enhancing technologies

Hands off my data: users’ security concerns and intention to adopt privacy enhancing technologies

An Efficient User-Centric Consent Management Design for Multiservices Platforms

PriADA: Management and Adaptation of Information Based on Data Privacy in Public Environments

Contact Info

Product

Resources

About