scholarly journals Assessment of current practices in creating and using passwords as a control mechanism for information access

2007 ◽  
Vol 9 (2) ◽  
Author(s):  
P. L. Wessels ◽  
L. P. Steenkamp
Keyword(s):  
Control Mechanism ◽  
Personal Information ◽  
Information Access ◽  
Sensitive Information ◽  
Access To Information ◽  
Network Servers ◽  
Critical Issues ◽  
Data Files ◽  
Gain Access ◽  
Current Practices

One of the critical issues in managing information within an organization is to ensure that proper controls exist and are applied in allowing people access to information. Passwords are used extensively as the main control mechanism to identify users wanting access to systems, applications, data files, network servers or personal information. In this article, the issues involved in selecting and using passwords are discussed and the current practices employed by users in creating and storing passwords to gain access to sensitive information are assessed. The results of this survey conclude that information managers cannot rely only on users to employ proper password control in order to protect sensitive information. 

scholarly journals A Method for Information Grabbing, Bypassing Security and Detecting Web Application Vulnerabilities

2018 ◽  
Vol 7 (4.36) ◽  
pp. 762
Author(s):  
B. J. Santhosh Kumar ◽  
B. R. Pushpa
Keyword(s):  
Web Application ◽  
Personal Information ◽  
False Negative ◽  
Social Networking Site ◽  
Sensitive Information ◽  
Legitimate User ◽  
Advanced Search ◽  
Audio Video ◽  
Text Images ◽  
Gain Access

A single file on web contains text, images, audio, video and formatting instructions enclosed within a script. Website files are hosted on servers. The Servers “serve” those files to individual users upon request. Anonymous user with minimum user credentials can request on behalf of legitimate user to grab sensitive, confidential and personal information without legitimate users knowledge.[3] The proposed method makes use of URL as input for finding web vulnerabilities. Testing of proposed method is conducted to evaluate the performance based on the accuracy received. Performance is evaluated based on false negative and false positive results. Experiment is also conducted for web vulnerability assessment and penetration testing. The proposed method also checks for information grabbing from web using Google dork. Google dork helps to enter a network without permission and/or gain access to unauthorized information. Advanced search strings called Google dork queries used to locate sensitive information. This paper describes the method for web application vulnerabilities detection by using google dork, bypass first level security in any web and hack username and password in social networking site.  

Enforcing Privacy on the Semantic Web

2008 ◽  
pp. 3713-3727
Author(s):  
Abdelmounaam Rezgui ◽  
Athman Rouguettaya ◽  
Zaki Malik
Keyword(s):  
Web Services ◽  
Semantic Web ◽  
Information Disclosure ◽  
Personal Information ◽  
Information Access ◽  
Reputation Management ◽  
Sensitive Information ◽  
Web Environment ◽  
Accessible Information ◽  
And Storage

Over the past few years there has been a huge influx of web accessible information. Information access and storage methods have grown considerably. Previously unknown or hard-to-get information is now readily available to us. The World Wide Web has played an important role in this information revolution. Often, sensitive information is exchanged among users, Web services, and software agents. This exchange of information has highlighted the problem of privacy. A large number of strategies employed to preserve people’s privacy require users to define their respective privacy requirements and make decisions about the disclosure of their information. Personal judgments are usually made based on the sensitivity of the information and the reputation of the party to which the information is to be disclosed. In the absence of a comprehensive privacy preserving mechanism, no guarantees about information disclosure can be made. The emerging Semantic Web is expected to make the challenge more acute in the sense that it would provide a whole infrastructure for the automation of information processing on the Web. On the privacy front, this means that privacy invasion would net more quality and sensitive personal information. In this chapter, we describe a reputation-based approach to automate privacy enforcement in a Semantic Web environment. We propose a reputation management system that monitors Web services and collects, evaluates, updates, and disseminates information related to their reputation for the purpose of privacy protection.

Enforcing Privacy on the Semantic Web

2004 ◽  
pp. 177-197
Author(s):  
Abdelmounaam Rezgui ◽  
Athman Rouguettaya ◽  
Zaki Malik
Keyword(s):  
Web Services ◽  
Semantic Web ◽  
Information Disclosure ◽  
Personal Information ◽  
Information Access ◽  
Reputation Management ◽  
Sensitive Information ◽  
Web Environment ◽  
Accessible Information ◽  
And Storage

Over the past few years there has been a huge influx of web accessible information. Information access and storage methods have grown considerably. Previously unknown or hard-to-get information is now readily available to us. The World Wide Web has played an important role in this information revolution. Often, sensitive information is exchanged among users, Web services, and software agents. This exchange of information has highlighted the problem of privacy. A large number of strategies employed to preserve people’s privacy require users to define their respective privacy requirements and make decisions about the disclosure of their information. Personal judgments are usually made based on the sensitivity of the information and the reputation of the party to which the information is to be disclosed. In the absence of a comprehensive privacy preserving mechanism, no guarantees about information disclosure can be made. The emerging Semantic Web is expected to make the challenge more acute in the sense that it would provide a whole infrastructure for the automation of information processing on the Web. On the privacy front, this means that privacy invasion would net more quality and sensitive personal information. In this chapter, we describe a reputation-based approach to automate privacy enforcement in a Semantic Web environment. We propose a reputation management system that monitors Web services and collects, evaluates, updates, and disseminates information related to their reputation for the purpose of privacy protection.

scholarly journals Patients’ moral attitudes toward electronic health records: Survey study with vignettes and statements

2021 ◽  
Vol 27 (1) ◽  
pp. 146045822098003
Author(s):  
Tania Moerenhout ◽  
Ignaas Devisch ◽  
Laetitia Cooreman ◽  
Jodie Bernaerdt ◽  
An De Sutter ◽  
...  
Keyword(s):  
Electronic Health Records ◽  
De Novo ◽  
Information Access ◽  
Survey Study ◽  
Sensitive Information ◽  
Patient Portal ◽  
Care Providers ◽  
Health Records ◽  
Electronic Health ◽  
Moral Attitudes

Patient access to electronic health records gives rise to ethical questions related to the patient-doctor-computer relationship. Our study aims to examine patients’ moral attitudes toward a shared EHR, with a focus on autonomy, information access, and responsibility. A de novo self-administered questionnaire containing three vignettes and 15 statements was distributed among patients in four different settings. A total of 1688 valid questionnaires were collected. Patients’ mean age was 51 years, 61% was female, 50% had a higher degree (college or university), and almost 50% suffered from a chronic illness. Respondents were hesitant to hide sensitive information electronically from their care providers. They also strongly believed hiding information could negatively affect the quality of care provided. Participants preferred to be informed about negative test results in a face-to-face conversation, or would have every patient decide individually how they want to receive results. Patients generally had little experience using patient portal systems and expressed a need for more information on EHRs in this survey. They tended to be hesitant to take up control over their medical data in the EHR and deemed patients share a responsibility for the accuracy of information in their record.

Smishing Detection: Using Artificial Intelligence

2021 ◽  
Vol 9 (8) ◽  
pp. 2218-2224
Author(s):  
Samyak Sadanand Shravasti
Keyword(s):  
Artificial Intelligence ◽  
Short Message Service ◽  
Personal Information ◽  
Critical Issue ◽  
Cyber Attacks ◽  
Sensitive Information ◽  
Short Message ◽  
Proposed Model ◽  
Message Service ◽  
A Company

Abstract: Phishing occurs when people's personal information is stolen via email, phone, or text communications. In Smishing Short Message Service (SMS) is used for cyber-attacks, Smishing is a type of theft of sensitive information. People are more likely to give personal information such as account details and passwords when they receive SMS messages. This data could be used to steal money or personal information from a person or a company. As a result, Smishing is a critical issue to consider. The proposed model uses an Artificial Intelligence to detect smishing. Analysing a SMS and successfully detecting Smishing is possible. Finally, we evaluate and analyse our proposed model to show its efficacy. Keywords: Phishing, Smishing, Artificial Intelligence, LSTM, RNN

scholarly journals A Study on Extent of Awareness Among College Students in Security and Privacy Issues in Social Media

2021 ◽  
pp. 676-682
Author(s):  
Dr. J. Padmavathi ◽  
Sirvi Ashok Kumar Mohanlal
Keyword(s):  
College Students ◽  
Social Media ◽  
Social Networking Sites ◽  
Personal Information ◽  
Security And Privacy ◽  
Sensitive Information ◽  
Social Media Networks ◽  
Area Of Interest ◽  
Unrestricted Access ◽  
Privacy Issues

Today Social Media is an integral part of many people’s lives. Most of us are users of one or many of these such as Facebook, Twitter, Instagram, LinkedIn etc. Social media networks are the most common platform to communicate with our friends, family and share thoughts, photos, videos and lots of other information in the common area of interest. Privacy has become an important concern in social networking sites. Users are not aware of the privacy risks involved on social media sites and they share their sensitive information on social network sites. While these platforms are free and offer unrestricted access to their services, they puzzle the users with many issues such as privacy, security, data harvesting, content censorship, leaking personal information etc. This paper aims at analyzing, the major users of social media networks, namely, the college students. It was intended to assess the extent the consumers’ are aware of the risks of free usage and how to mitigate against these privacy issues.

Self-disclosure, Privacy and the Internet

2012 ◽  
Author(s):  
Adam N. Joinson ◽  
Carina B. Paine
Keyword(s):  
Personal Information ◽  
New Technology ◽  
Computer Mediated Communication ◽  
Research Literature ◽  
The Internet ◽  
Mediated Communication ◽  
Self Disclosure ◽  
Challenges And Opportunities ◽  
Critical Issues ◽  
Product And Process

This article examines the extant research literature on self-disclosure and the Internet, in particular by focusing on disclosure in computer-mediated communication and web-based forms – both in surveys and in e-commerce applications. It also considers the links between privacy and self-disclosure, and the unique challenges (and opportunities) that the Internet poses for the protection of privacy. Finally, the article proposes three critical issues that unite the ways in which we can best understand the links between privacy, self-disclosure, and new technology: trust and vulnerability, costs and benefits, and control over personal information. Central to the discussion is the notion that self-disclosure is not simply the outcome of a communication encounter: rather, it is both a product and process of interaction, as well as a way of regulating interaction dynamically. By adopting a privacy approach to understanding disclosure online, it becomes possible to consider not only media effects that encourage disclosure, but also the wider context and implications of such communicative behaviours.

DNA Cryptography

2018 ◽  
pp. 703-728
Author(s):  
Pradipta Roy ◽  
Debarati Dey ◽  
Debashis De ◽  
Swati Sinha
Keyword(s):  
Data Transmission ◽  
Communication Channel ◽  
Personal Information ◽  
Public Communication ◽  
Secret Message ◽  
Sensitive Information ◽  
Computational Tool ◽  
Medical Report ◽  
Dna Cryptography ◽  
Random Nature

In today's world, sensitive information like secret message, financial transaction, medical report, personal information is transferred over public communication channel. Since the advancement of communication begins, data security becomes a massive problem. The increasing rate of eavesdropping over communication channel leads the introduction of cryptography algorithm for data transmission. Different traditional cryptographic technique is adopted worldwide for protected data transmission. The recent advancement on this field is DNA based cryptography. This chapter describes the application of DNA as computational tool after the exposure of its capability was discovered by Leonard M. Adleman in 1994. Its random nature also helps the cryptography algorithm to become unbreakable. Conventional cryptography methods are sometimes susceptible to attack by the intruder. Therefore the idea of using codon based DNA as a computational tool is used in this cryptography method as an alternative method that fetches new hope in communication technology.

The Dutch Participation Society Needs Open Data, but What is Meant by Open?

2017 ◽  
pp. 304-322
Author(s):  
Roel During ◽  
Marcel Pleijte ◽  
Rosalie I. van Dam ◽  
Irini E. Salverda
Keyword(s):  
Social Action ◽  
Web Sites ◽  
Information Exchange ◽  
Personal Information ◽  
Open Data ◽  
Data Access ◽  
Representative Democracy ◽  
Sensitive Information ◽  
Data Governance ◽  
Societal Benefit

Open data and citizen-led initiatives can be both friends and foes. Where it is available and ‘open', official data not only encourages increased public participation but can also generate the production and scrutiny of new material, potentially of benefit to the original provider and others, official or otherwise. In this way, official open data can be seen to improve democracy or, more accurately, the so-called ‘participative democracy'. On the other hand, the public is not always eager to share their personal information in the most open ways. Private and sometimes sensitive information however is required to initiate projects of societal benefit in difficult times. Many citizens appear content to channel personal information exchange via social media instead of putting it on public web sites. The perceived benefits from sharing and complete openness do not outweigh any disadvantages or fear of regulation. This is caused by various sources of contingency, such as the different appeals on citizens, construed in discourses on the participation society and the representative democracy, calling for social openness in the first and privacy protection in the latter. Moreover, the discourse on open data is an economic argument fighting the rules of privacy instead of the promotion of open data as one of the prerequisites for social action. Civil servants acknowledge that access to open data via all sorts of apps could contribute to the mushrooming of public initiatives, but are reluctant to release person-related sensitive information. The authors will describe and discuss this dilemma in the context of some recent case studies from the Netherlands concerning governmental programmes on open data and citizens' initiatives, to highlight both the governance constraints and uncertainties as well as citizens' concerns on data access and data sharing. It will be shown that openness has a different meaning and understanding in the participation society and representative democracy: i.e. the tension surrounding the sharing of private social information versus transparency. Looking from both sides at openness reveals double contingency: understanding and intentions on this openness invokes mutual enforcing uncertainties. This double contingency hampers citizens' eagerness to participate. The paper will conclude with a practical recommendation for improving data governance.

Sign in / Sign up

Export Citation Format

Share Document