Threats and Protection on E-Sim

Threats involve various risks and threats are associated with the embedded SIM technology, for instance, the Internet of things (IoT) identity. IoT refers to the working capabilities enabling the allocation of unique identifiers (UID) to effectively connect with the related devices thus enhancing communication. An e-SIM application cannot produce reliable and actual data used to obtain the subscriber’s anticipated outcome. The SIM technology does not provide some reliable data that can be employed by the user to formulate some serious productive outcomes. Failure by the technology to process and automatically provide the user with the notification suppose of any infringement or hacking. SIM-jacking is the other notable threats facing the embedded universal integrated connectivity card (e-UICC). Incompetent Log Rhythm Al Engine influences the fraudster hacking experience due to failure protections within the operational surrounding. The e-SIM technology system lacks timely threat, risk, and other various vital operations predictability to react to the experienced unbearable operations challenges induced by the fraudsters. Similarly, the embedded SIM incurs the insider threats whereby the service providers fail to secure the much-needed privacy concerning an individual’s vital information. The situations of personal data leakage are witnessed within the system operations.The e-SIM hijacking enables the fraudsters to secretly obtain the victim’s vital data of the subscriber, hijack, and receive the information intended to the individual to his/her personal phone. The process results to complete mobile account operations by the hacker resulting to further access to the victim’s bank information and transfer of cash. The other threat experienced by e-SIM users is the provision of false information. The SIM subscribers normally fall into traps of the fraudsters by receiving short messages (SMS) citing assistance kind of news from the service providers, thus drawing the victim’s bank amount. Identity fraud and device poisoning are other additional threats encountered in the application of e-SIM. Generally, the entire process of fraud invasion and victimization influence the victim’s business decisions of the affected individuals. Protections focuses on the embedded SIM provides greater security in addition to a re-programmable technological system, unlike the physical SIM card. The subscriber's personal information is not contained within the e-SIM but with the service providers, thus enhancing its effectiveness. An e-SIM enables the consumers to effectively shift carriers between the T-Mobile and Sprint without physical movement, thus supportive of security systems. Despite the security measures put into place, e-SIM like any other SIM card experiences information theft. Therefore, the service providers should encounter the emerging fraudster effects by proper monitoring of the network system to enable security restrictions. The system should induce strict conditions that enable the evaluation and differentiation between the IoT and the non-IoT devices during their operation.

Download Full-text

Development of Personal Information Privacy Concerns Evaluation

Encyclopedia of Information Science and Technology, Fourth Edition ◽

10.4018/978-1-5225-2255-3.ch421 ◽

2018 ◽

pp. 4862-4871

Author(s):

Anna Rohunen ◽

Jouni Markkula

Keyword(s):

Service Providers ◽

Personal Information ◽

Personal Data ◽

Future Research ◽

Privacy Concerns ◽

The Public ◽

Data Intensive ◽

Information Privacy Concerns ◽

Evaluation Instruments ◽

Information And Communication

Personal data is increasingly collected with the support of rapidly advancing information and communication technology, which raises privacy concerns among data subjects. In order to address these concerns and offer the full benefits of personal data intensive services to the public, service providers need to understand how to evaluate privacy concerns in evolving service contexts. By analyzing the earlier used privacy concerns evaluation instruments, we can learn how to adapt them to new contexts. In this article, the historical development of the most widely used privacy concerns evaluation instruments is presented and analyzed regarding privacy concerns' dimensions. Privacy concerns' core dimensions, and the types of context dependent dimensions, to be incorporated into evaluation instruments are identified. Following this, recommendations on how to utilize the existing evaluation instruments are given, as well as suggestions for future research dealing with validation and standardization of the instruments.

Download Full-text

Adataink biztonságban - adatainkban a biztonság?

Információs Társadalom ◽

10.22503/inftars.xvii.2017.1.3 ◽

2017 ◽

Vol 17 (1) ◽

pp. 45

Author(s):

Endre Győző Szabó ◽

Balázs Révész

Keyword(s):

European Union ◽

Data Security ◽

Personal Information ◽

Personal Data ◽

The Other ◽

Legal Regulations ◽

The European Union ◽

Privacy And Security ◽

Personal Data Protection ◽

Common Field

A magánélet és a biztonság népszerű ellentétpárként tűnhet fel az adatvédelmi gondolkodásban. Leegyszerűsítve olvashatjuk sokszor, hogy ha bizonyos feltételek hiányoznak, aránytalanul nagy áldozatot hozhatunk a személyes magánszféra, a privacy oldalán a biztonság érdekében, és magánszféránk túlzott feláldozása a biztonság oltárán visszafordíthatatlan folyamathoz és orwelli világhoz vezet. Más, a biztonság szempontjait mindenek felettinek hirdető érvelésben viszont a személyes adatok védelmére való hivatkozást alkotmányjogi bűvészkedésnek csúfolják és igyekeznek kisebbíteni a magánszféra-védelem egyébként méltányolandó értékeit. A magánélet és a személyes adatok védelmének pedig nagy a tétje, az adatok illetéktelenek részére való kiszolgáltatása, rosszhiszemű felhasználása egzisztenciákat, családokat tehet tönkre, boldogulási lehetőségeket hiúsíthat meg, ha a védelem alacsony szintre süllyed. Másrészről pedig az információszerzés, illetve előzetes adatgyűjtés a különböző bűnelkövetések, terrorcselekmények előkészületi cselekményei is egyben. Azzal, ha a személyes adataink, magánszféránk védelmében ésszerű lépéseket teszünk, élünk a jog és a technológia adta védelmi lehetőségekkel, adatainkat nemcsak az államtól és a piaci szereplőktől, de a bűnözőktől is elzárjuk, és ezzel mindannyiunk biztonságát szolgáljuk. Egy terület tehát biztosan létezik, ahol a biztonság és magánszféra mezsgyéje összeér: az adatbiztonságé és ezzel összefüggésben a tudatos, felelős felhasználói attitűdé, aminek azonban sokszor az emberi tényező a gátja. Jelen tanulmányban a magánszféra és biztonság kérdéskörének komplexitásáról szólunk, és közös nevezőt keresünk az adatkezelések nézőpontjából, kitérve az új adatvédelmi rendelet (GDPR) magánszféránkat és biztonságunkat egyaránt szolgáló leendő jogintézményeinek bemutatására is. --- Data in security – security in our data? Privacy and security may be deemed as a popular dichotomy. It is often argued that even if security is vital, we might sacrifice too much of our privacy in return. This may be irreversible when it comes to the intrusiveness of surveillance. On the other hand, it is also sometimes argued that the importance of personal data protection deserves less attention than security. There is much at stake when it comes to privacy and the protection of personal data. Misuse of personal information may damage families’ lives and ruin people’s livelihoods, thus this may all have significant repercussions for society as a whole – this is the price to be paid if protection is at a low level. Using sophisticated measures that technology and legal regulations can provide, privacy can be protected. Data security is a common field for the protection of privacy and security – crucial for both endeavours to make people’s lives better. This essay describes the complexity of issues related to privacy and security, while also taking new legislation of the European Union into account.

Download Full-text

The Right to Privacy and the Protection of Personal Data in a Digital Era and the Age of Information

Advances in Human and Social Aspects of Technology - Human Rights and Risks in the Digital Era ◽

10.4018/978-1-4666-0891-7.ch004 ◽

2012 ◽

pp. 34-45

Author(s):

William Bülow ◽

Misse Wester

Keyword(s):

Empirical Evidence ◽

Personal Information ◽

Personal Data ◽

Modern Society ◽

Right To Privacy ◽

Policy Makers ◽

The Right To Privacy ◽

Digital Era ◽

The Individual ◽

The Right

As information technology is becoming an integral part of modern society, there is a growing concern that too much data containing personal information is stored by different actors in society and that this could potentially be harmful for the individual. The aim of this contribution is to show how the extended use of ICT can affect the individual’s right to privacy and how the public perceives risks to privacy. Three points are raised in this chapter: first, if privacy is important from a philosophical perspective, how is this demonstrated by empirical evidence? Do individuals trust the different actors that control their personal information, and is there a consensus that privacy can and should be compromised in order to reach another value? Second, if compromises in privacy are warranted by increased safety, is this increased security supported by empirical evidence? Third, the authors will argue that privacy can indeed be a means to increase the safety of citizens and that the moral burden of ensuring and protecting privacy is a matter for policy makers, not individuals. In conclusion, the authors suggest that more nuanced discussion on the concepts of privacy and safety should be acknowledged and the importance of privacy must be seen as an important objective in the development and structure of ICT uses.

Download Full-text

International Transfers of Personal Data

Information Communication Technology Law, Protection and Access Rights ◽

10.4018/978-1-61520-975-0.ch018 ◽

2011 ◽

pp. 292-315

Author(s):

Sam De Silva

Keyword(s):

Data Protection ◽

Explicit Knowledge ◽

Personal Information ◽

Personal Data ◽

Legal Compliance ◽

Global Nature ◽

The Individual ◽

The Uk ◽

Data Controller ◽

International Transfers

Developments in technology and the global nature of business means that personal information about individuals in the UK may often be processed overseas, frequently without the explicit knowledge or consent of those individuals. This raises issues such as the security of such data, who may have access to it and for what purposes and what rights the individual may have to object. The Data Protection Act 1998 provides a standard of protection for personal data, including in respect of personal data that is being transferred outside of the UK. Chapter 18 focus on how a UK data controller (the organisation that controls how and why personal data is processed and is therefore legally responsible for compliance) can fulfil its business and operational requirements in transferring personal data outside the EEA, whilst ensuring legal compliance.

Download Full-text

Internet Privacy from the Individual and Business Perspectives

Multimedia Technologies ◽

10.4018/978-1-59904-953-3.ch098 ◽

2008 ◽

pp. 1360-1365

Author(s):

Tziporah Stern

Keyword(s):

Personal Information ◽

Personal Data ◽

The Internet ◽

Right To Privacy ◽

Internet Privacy ◽

Data Files ◽

Community Networking ◽

The Individual

People have always been concerned about protecting personal information and their right to privacy. It is an age-old concern that is not unique to the Internet. People are concerned with protecting their privacy in various environments, including healthcare, the workplace and e-commerce. However, advances in technology, the Internet, and community networking are bringing this issue to the forefront. With computerized personal data files: a. retrieval of specific records is more rapid; b. personal information can be integrated into a number of different data files; and c. copying, transporting, collecting, storing, and processing large amounts of information are easier.

Download Full-text

Safety Measures for Social Computing in Wiki Learning Environment

International Journal of Information Security and Privacy ◽

10.4018/jisp.2012040101 ◽

2012 ◽

Vol 6 (2) ◽

pp. 1-15 ◽

Cited By ~ 2

Author(s):

Ahmed Patel ◽

Mona Taghavi ◽

Joaquim Celestino Júnior ◽

Rodziah Latih ◽

Abdullah Mohd Zin

Keyword(s):

Collaborative Learning ◽

Social Computing ◽

Personal Information ◽

Personal Data ◽

Security Measures ◽

Safety Measures ◽

Digital Forensic ◽

Great Idea ◽

Computing Environments ◽

Different Levels

Wikis are social networking systems that allow users to freely intermingle at different levels of communication such as collaborative learning, chatting, and group communications. Although a great idea and goal, it’s particularly vulnerable due to its features of open medium and lack of clear plan of defense. Personal data can be misused for virtual insulting, resulting in misuse of personal information for financial gains or creating misuses. Wikis are an example of social computing of collaborative learning, joint editing, brain storming, and virtual socializing, which is a ripe environment for hacking, deception, abuse, and misuse. Thus, wiki needs comprehensive security measures which include privacy, trust, security, audit, and digital forensics to protect users and system resources. This paper identifies and explores the needs of secure social computing and supporting information systems as places for interaction, data collection, and manipulation for wikis. It does this by reviewing the literature and related works in proposing a safety measure framework for a secure and trustworthy medium together with privacy, audit, and digital forensic investigative functions in wiki environments. These then can aid design and usage in social computing environments with the proviso to give comfort and confidence to users without worrying about abuse and cybercrime perpetrated activities.

Download Full-text

RFID Technology and its Impact on Privacy

Socioeconomic and Legal Implications of Electronic Intrusion ◽

10.4018/978-1-60566-204-6.ch005 ◽

2009 ◽

pp. 89-107 ◽

Cited By ~ 1

Author(s):

Tatiana-Eleni Sinodinou

Keyword(s):

Data Processing ◽

Personal Information ◽

Personal Data ◽

Legal Framework ◽

Special Focus ◽

Information Transparency ◽

Rfid Tag ◽

Rfid System ◽

The Individual ◽

The Right

The present chapter explores privacy issues posed by the use of RFID systems and applications. The existing legal framework for data protection is analyzed in order to discover how general privacy safeguarding principles should be applied in the case of RFIDs, with special focus on the main areas which are going to experience widespread use of such applications. The structure of the chapter is based on a chronological order which follows the consecutive phases of contact and interaction between the individual and the RFID tag. The implementation of a tag to a product or in the human body establishes the first point of contact of the individual with the RFID tag. This stage of data processing is examined in the first part of the chapter. In more particular, this part deals with the application of general principles of fair processing, such as information transparency, the debate about the necessity to require the prior consent of the individual (possible opt-in and opt-out solutions) and the precondition of a clearly defined purpose of the data processing. The symbiosis of the person with the tag is examined in the second part. Indeed, privacy concerns are equally significant during the phase of processing of personal information, even if processing is conducted lawfully, either based on the legal ground of the individual’s consent or justified on another legal basis. The requirement of data quality and the obligation to secure the RFID system against unauthorized interceptions or alterations of data by third parties constitute essential guarantees of fair data processing. Privacy protection in the activation phase of the tag is also ensured by the obligation to inform the tagged individual every time a reading takes place and by the right to verify the accuracy of the tag data, whether stored from the beginning or added at a later date. Finally, the last part of the chapter examines the legal regime of separation between the person and the tag. This phase refers to the termination of the processing either by act of the data subject or by act of the RFID system controller. The focus is given to the exercise of the right to object to the processing of personal data through RFID devices. In this context practical solutions, such as the “tag kill” or “tag sleep” command should be taken into consideration in order to the make the exercise of the right to object feasible.

Download Full-text

Intelligent Compressor Design in a Network-Centric Environment

Volume 1: 21st Computers and Information in Engineering Conference ◽

10.1115/detc2001/cie-21667 ◽

2001 ◽

Author(s):

Peter J. Röhl ◽

Raymond M. Kolonay ◽

Michael J. Paradis ◽

Michael W. Bailey

Keyword(s):

Computer Architecture ◽

Service Providers ◽

Software Tools ◽

Security Measures ◽

Compressor Blades ◽

Element Analysis ◽

Engineering Software ◽

Compressor Rotor ◽

Master Model ◽

The Individual

Abstract The concept of a federation of distributed devices on a network which enter the federation through a process of “discover and join”, by which they register with a service request broker and publish the services which they perform is applied to engineering software tools. A highly flexible computer architecture is developed, leveraging emerging web technologies like Sun Microsystems’ Jini™, RMI, JavaSpaces, in which engineering software tools like CAD, CAE, PDM, optimization, cost modeling, etc. act as distributed service providers and service requestors. The individual services communicate via so-called context models, which are abstractions of the master model data of a particular product. A human user interacts with the framework through a thin client like a web browser from anywhere in the world, where proper security measures to prevent unauthorized access to proprietary data is maintained. The paradigm of the CAD Master Model is extended with the introduction of the Intelligent Master Model (IMM), which, in addition to the what, captures the why and how of a design through the use of knowledge-based engineering tools. The framework is applied to the intelligent scaling and detailed finite element analysis of a compressor rotor and compressor blades. A KBE system scales the compressor rotor based on high-level information like mass flow and resulting flowpath geometry. The scaled geometry is validated through detailed high-fidelity stress analysis of critical features, which is associatively linked to the scaled master geometry.

Download Full-text

Internet Privacy from the Individual and Business Perspectives

Encyclopedia of Multimedia Technology and Networking ◽

10.4018/978-1-59140-561-0.ch068 ◽

2011 ◽

pp. 475-479

Author(s):

Tziporah Stern

Keyword(s):

Personal Information ◽

Personal Data ◽

The Internet ◽

Right To Privacy ◽

Internet Privacy ◽

Data Files ◽

Community Networking ◽

The Individual

Download Full-text

Development of Personal Information Privacy Concerns Evaluation

Advanced Methodologies and Technologies in System Security, Information Privacy, and Forensics - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-5225-7492-7.ch015 ◽

2019 ◽

pp. 180-190

Author(s):

Anna Rohunen ◽

Jouni Markkula

Keyword(s):

Service Providers ◽

Personal Information ◽

Personal Data ◽

Future Research ◽

Privacy Concerns ◽

The Public ◽

Data Intensive ◽

Information Privacy Concerns ◽

Evaluation Instruments ◽

Information And Communication

Personal data is increasingly collected with the support of rapidly advancing information and communication technology, which raises privacy concerns among data subjects. In order to address these concerns and offer the full benefits of personal data-intensive services to the public, service providers need to understand how to evaluate privacy concerns in evolving service contexts. By analyzing the earlier privacy concerns evaluation instruments, we can learn how to adapt them to new contexts. In this chapter, the historical development of the most widely used privacy concerns evaluation instruments is presented and analyzed regarding privacy concerns' dimensions. Privacy concerns' core dimensions and the types of context dependent dimensions to be incorporated into evaluation instruments are identified. Following this, recommendations on how to utilize the existing evaluation instruments are given, as well as suggestions for future research dealing with validation and standardization of the instruments.

Download Full-text