Casual Privacy “ a design pattern for sharing non-public information using out-of-band exchange of unguessable tokens.” be...
<ul><li>Privacy is more trouble then its worth right now.  Some people share in public, some people give up. </li></ul>How...
Current Privacy Options 1. Share Nothing 2. Share Everything 3. Manage a crowd
Everything Private Sucks <ul><li>Lonely! </li></ul><ul><li>No wisdom of the crowds </li></ul><ul><li>Web 1.0! </li></ul><u...
Share Everything? <ul><li>Default Web 2.0 assumption  (Flickr, del.icio.us, Upcoming, Twitter) </li></ul><ul><li>Not every...
Sharing:  Because it works! <ul><li>Outboard brain </li></ul><ul><li>Wisdom of crowds </li></ul><ul><li>Serendipity enhanc...
Manage a crowd <ul><li>“ Traditional” approach </li></ul><ul><li>Contacts + Roles </li></ul><ul><li>Complex </li></ul><ul>...
Account proliferation! <ul><li>Contact based approach, everyone needs an account. </li></ul><ul><li>Use ~14 sites roughly ...
<ul><li>“ a design pattern for sharing non-public information using out-of-band exchange of unguessable tokens.”  </li></u...
Case Study: Flickr Guest Pass <ul><li>http://flickr.com/gp/  + 86712998@N00/ + BWk63Tj7 </li></ul><ul><li>Simple? </li></u...
Casual Privacy: Features <ul><li>Its Internet scale by default! </li></ul><ul><li>Credential are forwardable. </li></ul><u...
OMG Alice isn't trustworthy and leaked the secret token! <ul><li>In practice, accidental not malicious </li></ul><ul><li>T...
Deniable <ul><li>Don't leak  </li></ul><ul><li>No sequential IDs </li></ul><ul><li>No hinting </li></ul><ul><li>Don’t brin...
Hard to Guess <ul><li>8 places of random alpha-numerics gets you a really big search spaces </li></ul><ul><li>2,251,875,39...
History Of <ul><li>Odeo, 2005 </li></ul><ul><li>Quicktopic, 1999 </li></ul><ul><li>High school rave, 1992 </li></ul>
Worse is Better <ul><li>More flexible </li></ul><ul><li>Network effects make databases cry </li></ul><ul><li>Everybody les...
Casual Privacy: Checklist <ul><li>Simple </li></ul><ul><li>Forwardable/sharedable </li></ul><ul><li>Revokable </li></ul><u...
Security Concerns <ul><li>Don’t use in feeds  (aggregator data hygiene sucks!) </li></ul><ul><li>Proxies cache URL. HTTP h...
Future Work <ul><li>Data fuzzing </li></ul><ul><li>URL decay </li></ul><ul><li>Ben Adida’s BeamAuth </li></ul><ul><li>Buil...
<ul><li>http://flickr.com/photos/dirtyfeet/217931104/ </li></ul><ul><li>http://flickr.com/photos/lalunablanca/62556584/ </...
Upcoming SlideShare
Loading in...5
×

Casual Privacy (Ignite Web2.0 Expo)

9,548

Published on

My "casual privacy" talk from Ignite on the Web 2.0 Expo opening night.

Published in: Technology, Sports
6 Comments
14 Likes
Statistics
Notes
  • Just an FYI folks this is last years *5 minute* version. I'll be posting this years full version soon!
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
  • I'm missing the point, I guess...<br /><br/>
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
  • It was a great presentation. Lots of food for thought.
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
  • Thanks! I'll make sure to post a link to the video when its up.

    Rashmi I hear your talk at Web2Open was great!
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
  • This presentation is giving me a lot of food for thought. The approach is similar to one of the ideas we were considering for privacy on SlideShare. Thanks for sharing!
       Reply 
    Are you sure you want to  Yes  No
    Your message goes here
No Downloads
Views
Total Views
9,548
On Slideshare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
269
Comments
6
Likes
14
Embeds 0
No embeds

No notes for slide

Casual Privacy (Ignite Web2.0 Expo)

  1. 1. Casual Privacy “ a design pattern for sharing non-public information using out-of-band exchange of unguessable tokens.” because most privacy isn’t worth it.
  2. 2. <ul><li>Privacy is more trouble then its worth right now. Some people share in public, some people give up. </li></ul>How to do we get more people to share more information, and more interesting information? Is there information you’re sharing more widely right now then you feel comfortable with? Is there information you’d share with more people if it was easy that you don’t want to tell GoogleBot? Assertion: Open Questions:
  3. 3. Current Privacy Options 1. Share Nothing 2. Share Everything 3. Manage a crowd
  4. 4. Everything Private Sucks <ul><li>Lonely! </li></ul><ul><li>No wisdom of the crowds </li></ul><ul><li>Web 1.0! </li></ul><ul><li>We’d all be out of jobs! </li></ul>
  5. 5. Share Everything? <ul><li>Default Web 2.0 assumption (Flickr, del.icio.us, Upcoming, Twitter) </li></ul><ul><li>Not everyone can, will </li></ul><ul><li>On Flickr people want to share (privately) </li></ul><ul><li>Kids </li></ul><ul><li>Home </li></ul><ul><li>Weddings </li></ul><ul><li>Last nights party </li></ul>
  6. 6. Sharing: Because it works! <ul><li>Outboard brain </li></ul><ul><li>Wisdom of crowds </li></ul><ul><li>Serendipity enhancement </li></ul><ul><li>More valuable then privacy? </li></ul>
  7. 7. Manage a crowd <ul><li>“ Traditional” approach </li></ul><ul><li>Contacts + Roles </li></ul><ul><li>Complex </li></ul><ul><li>Cognitive burden </li></ul><ul><li>also: ego, anxiety, social pressure, attractive nuisance. </li></ul>friend, family, contact, acquaintance, met, co-worker, colleague, co-resident, neighbor, child, parent, sibling, spouse, kin, muse, crush, date, sweetheart, me, friend, family, contact, acquaintance, met, co-worker, colleague, co-resident, neighbor, child, parent, sibling, spouse, kin, muse, crush, date, sweetheart, me, friend, family, contact, acquaintance, met, co-worker, colleague, co-resident, neighbor, child, parent, sibling, spouse, kin, muse, crush, date, sweetheart, me, friend, family, contact, acquaintance, met, co-worker, colleague, co-resident, neighbor, child, parent, sibling, spouse, kin, muse, crush, date, sweetheart, me, acquaintance, met, co-worker, colleague, co-resident, neighbor, child, parent, sibling, spouse, kin, muse, crush, date, sweetheart, me, friend, family, contact, quasi-friend, sort-a-friend, weird-uncle, kith, annoying ex-roomate
  8. 8. Account proliferation! <ul><li>Contact based approach, everyone needs an account. </li></ul><ul><li>Use ~14 sites roughly daily all designed to share. </li></ul><ul><li>Small pieces loosely joined hurts now </li></ul>
  9. 9. <ul><li>“ a design pattern for sharing non-public information using out-of-band exchange of unguessable tokens.” </li></ul>http://flickr.com/gp/86712998@N00/BWk63T SUPER SEKRET URLZ!!1!
  10. 10. Case Study: Flickr Guest Pass <ul><li>http://flickr.com/gp/ + 86712998@N00/ + BWk63Tj7 </li></ul><ul><li>Simple? </li></ul><ul><li>No authentication </li></ul><ul><li>No account need </li></ul><ul><li>No activation </li></ul><ul><li>No identity </li></ul><ul><li>You have the token, you're in. </li></ul>
  11. 11. Casual Privacy: Features <ul><li>Its Internet scale by default! </li></ul><ul><li>Credential are forwardable. </li></ul><ul><li>Authorization is contextual </li></ul>
  12. 12. OMG Alice isn't trustworthy and leaked the secret token! <ul><li>In practice, accidental not malicious </li></ul><ul><li>Tokens revokable. Always. Poof! </li></ul><ul><li>Visual cues </li></ul><ul><li>Sufficient information </li></ul>
  13. 13. Deniable <ul><li>Don't leak </li></ul><ul><li>No sequential IDs </li></ul><ul><li>No hinting </li></ul><ul><li>Don’t bring the egos back </li></ul><ul><li>Greenfield: “beneficial hypocrisy” </li></ul>
  14. 14. Hard to Guess <ul><li>8 places of random alpha-numerics gets you a really big search spaces </li></ul><ul><li>2,251,875,390,625 </li></ul><ul><li>Extra fun? Make your tokens checksumable </li></ul>
  15. 15. History Of <ul><li>Odeo, 2005 </li></ul><ul><li>Quicktopic, 1999 </li></ul><ul><li>High school rave, 1992 </li></ul>
  16. 16. Worse is Better <ul><li>More flexible </li></ul><ul><li>Network effects make databases cry </li></ul><ul><li>Everybody less anxious </li></ul>
  17. 17. Casual Privacy: Checklist <ul><li>Simple </li></ul><ul><li>Forwardable/sharedable </li></ul><ul><li>Revokable </li></ul><ul><li>Deniable </li></ul><ul><li>Visual Indicators </li></ul><ul><li>Hard to guess </li></ul><ul><li>Easy to implement </li></ul>
  18. 18. Security Concerns <ul><li>Don’t use in feeds (aggregator data hygiene sucks!) </li></ul><ul><li>Proxies cache URL. HTTP headers can help </li></ul><ul><li>document.location.hash </li></ul>
  19. 19. Future Work <ul><li>Data fuzzing </li></ul><ul><li>URL decay </li></ul><ul><li>Ben Adida’s BeamAuth </li></ul><ul><li>Build it already! </li></ul>
  20. 20. <ul><li>http://flickr.com/photos/dirtyfeet/217931104/ </li></ul><ul><li>http://flickr.com/photos/lalunablanca/62556584/ </li></ul><ul><li>http://flickr.com/photos/mesolimbo/86561068/ </li></ul><ul><li>http://flickr.com/photos/merlin/13374753/ </li></ul><ul><li>http://flickr.com/photos/fetching/387574792/ </li></ul><ul><li>http://flickr.com/photos/stewart/459153074/ </li></ul><ul><li>http://flickr.com/photos/oybay/111504290/ </li></ul><ul><li>http://flickr.com/photos/68888883@N00/274651759/ </li></ul><ul><li>http://flickr.com/photos/laughingsquid/390813713/ - Scott Beale / Laughing Squid (laughingsquid.com) </li></ul>
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.

×