Transcript No Slide Title

The Platform
for Privacy
Preferences Project
Lorrie Faith Cranor
AT&T Labs-Research
Co-Chair, P3P Interest Group
http://www.research.att.com/~lorrie/
http://www.w3.org/P3P/
Empowerment Tools
 Prevent your actions from being linked to you
Crowds - AT&T Labs
 Allow you to develop persistent relationships
not linked to each other or you
Lucent Personal Web Assistant - Bell Labs
 Make informed choices about how your
information will be used
Platform for Privacy Preferences Project - W3C
 Know that assurances about information
practices are trust worthy
TRUSTe - Electronic Frontier Foundation and CommerceNet
2
Platform for Privacy
Preferences Project (P3P)
A framework for automated privacy
discussions under development by W3C
Services communicate about practices
Users exercise preferences over those practices
User agent can facilitate automated decision
making, prompt user, exchange data, etc.
3
Basic P3P Concepts
proposal
user
agent
service
user
agreement
user data
repository
preferences
data
practices
4
A Simple P3P Conversation
service
user
agent
User agent: Get index.html
Service: Here is my P3P proposal - I collect
click-stream data and computer
information for web site and system
administration and customization of site
User agent: OK, I accept your proposal
Service: Here is index.html
5
More Complicated
Conversations
Service offers choice of proposals
User agent makes counter proposal
User agent rejects proposal and asks
service for another offer
Upon agreement, user agent
automatically sends requested data
No agreement is reached
6
Where we are and where
we’re going . . .
 Overall architecture
 Proposal grammar
October 1997
 Harmonized vocabulary
 Protocol structure
March 1998
 Syntax (encoded in RDF or XML)
May 1998?
 Implementation guide
 Preference interchange language
7
P3P Grammar
 Experience space
 Qualified data set
 Service provider’s
identity
 data set/element
 data category
 URL for privacy
policy
 Consequence
 Purpose
 Qualifiers
 Required
8
P3P Vocabulary
 Purpose
 Data category
 Qualifiers
 identifiable use
 recipients (domain of use)
 general disclosures
access to identifiable
information
assurance (accountability)
other disclosures
• change agreement
• retention
9
Data Categories
 Physical contact
information
 Navigation and
click-stream data
 Online contact
information
 Transaction data
 Unique identifiers
 Financial account
identifiers
 Computer
information
 Demographic and
socio-economic
data
 Preference data
 Content
10
Purposes
 Completion and
support of current
activity
 Web site and
system
administration
 Customization of
site to individuals
 Research and
development
 Contacting visitors
for marketing of
services or
products
 Other uses
11
Implementation Guide
 Guiding principles
 Guidelines for user
agent
implementers
 Guidelines for
service providers
 Guidelines for
server
implementers
 Guidelines for
creators of
recommended
settings
 Guidelines for
users
12
Guiding Principles
Information Privacy
Notice
Choice and Control
Fairness and Integrity
Security
13
Keys to Success
 Good end-user
implementations
 easy to use
easy to plug in
“recommended
settings”
not annoying
 use incremental
adoption model
 privacy friendly
 Good server
implementations and
tools
 Adoption by many
Web sites
 Users find it useful
 Endorsement by
governmentregulatory and selfregulatory
organizations
14