IoT & wearable privacy

Paper session

会議の名前
CHI 2020
I'm All Eyes and Ears: Exploring Effective Locators for Privacy Awareness in IoT Scenarios
要旨

With the proliferation of IoT devices, there are growing concerns about being sensed or monitored by these devices unawares, especially in places perceived as private. We explore the design space of IoT locators to help people physically find nearby IoT devices. We first conducted a survey to understand people's willingness, current practices, and challenges in finding IoT devices. Our survey findings motivated us to design and implement low-cost locators (visual, auditory, and contextualized pictures) to help people find nearby devices. Through an iterative design process and two rounds of experiments, we found that these locators greatly reduced people's search time over a baseline of no locators. Many participants found the visual and auditory locators enjoyable. Some participants also appropriated the use of our system for other purposes, e.g., to learn about new IoT devices, instead of for privacy awareness.

キーワード
Privacy awareness
Locator
Internet of Things
著者
Yunpeng Song
Xi'an Jiaotong University, Xi'an, China
Yun Huang
University of Illinois at Urbana-Champaign, Champaign, IL, USA
Zhongmin Cai
Xi'an Jiaotong University, Xi'an, China
Jason I. Hong
Carnegie Mellon University, Pittsburgh, PA, USA
DOI

10.1145/3313831.3376585

論文URL

https://doi.org/10.1145/3313831.3376585

Informing the Design of Privacy-Empowering Tools for the Connected Home
要旨

Connected devices in the home represent a potentially grave new privacy threat due to their unfettered access to the most personal spaces in people's lives. Prior work has shown that despite concerns about such devices, people often lack sufficient awareness, understanding, or means of taking effective action. To explore the potential for new tools that support such needs directly we developed Aretha, a privacy assistant technology probe that combines a network disaggregator, personal tutor, and firewall, to empower end-users with both the knowledge and mechanisms to control disclosures from their homes. We deployed Aretha in three households over six weeks, with the aim of understanding how this combination of capabilities might enable users to gain awareness of data disclosures by their devices, form educated privacy preferences, and to block unwanted data flows. The probe, with its novel affordances—and its limitations—prompted users to co-adapt, finding new control mechanisms and suggesting new approaches to address the challenge of regaining privacy in the connected home.

キーワード
Technology Probe
Privacy-Empowering Technology
Network Disaggregator
著者
William Seymour
University of Oxford, Oxford, United Kingdom
Martin J. Kraemer
University of Oxford, Oxford, United Kingdom
Reuben Binns
University of Oxford, Oxford, United Kingdom
Max Van Kleek
University of Oxford, Oxford, United Kingdom
DOI

10.1145/3313831.3376264

論文URL

https://doi.org/10.1145/3313831.3376264

動画
Understanding Fitness Tracker Users' Security and Privacy Knowledge, Attitudes and Behaviours
要旨

Personal data collected by fitness trackers can leave users open to security and privacy threats, often without their knowledge. Using an online survey with 212 fitness tracker users, we asked questions to understand participants' knowledge, attitudes and behaviours related to security and privacy, associated with the use of their fitness trackers. We found that users do little to protect their data. While they seem confident about the type of data being collected, they are unsure about how it is being used. Understandably, users are more comfortable sharing their data with friends and work colleagues. We also found that users differentiate between the types of data they are willing to share, suggesting a need for improved sharing preferences. When considering scenarios describing data uses with security and privacy implications, participants recognized that many scenarios were plausible but frequently felt that the scenarios were unlikely to occur. Overall, our findings lead us to believe that fitness tracker users require a greater awareness of the collection, ownership, storage, and sharing practices related to the tracking of their data.

キーワード
Fitness Trackers
Privacy
Online
Survey
Data Sharing
著者
Sandra Gabriele
York University, Toronto, ON, Canada
Sonia Chiasson
Carleton University, Ottawa, ON, Canada
DOI

10.1145/3313831.3376651

論文URL

https://doi.org/10.1145/3313831.3376651

Informing the Design of a Personalized Privacy Assistant for the Internet of Things
要旨

Internet of Things (IoT) devices create new ways through which personal data is collected and processed by service providers. Frequently, end users have little awareness of, and even less control over, these devices' data collection. IoT Personalized Privacy Assistants (PPAs) can help overcome this issue by helping users discover and, when available, control the data collection practices of nearby IoT resources. We use semi-structured interviews with 17 participants to explore user perceptions of three increasingly more autonomous potential implementations of PPAs, identifying benefits and issues associated with each implementation. We find that participants weigh the desire for control against the fear of cognitive overload. We recommend solutions that address users' differing automation preferences and reduce notification overload. We discuss open issues related to opting out from public data collections, automated consent, the phenomenon of user resignation, and designing PPAs with at-risk communities in mind.

キーワード
Internet of Things
Personalized Privacy Assistants
Inteviews
著者
Jessica Colnago
Carnegie Mellon University, Pittsburgh, PA, USA
Yuanyuan Feng
Carnegie Mellon University, Pittsburgh, PA, USA
Tharangini Palanivel
Carnegie Mellon University, Pittsburgh, PA, USA
Sarah Pearman
Carnegie Mellon University, Pittsburgh, PA, USA
Megan Ung
Carnegie Mellon University, Pittsburgh, PA, USA
Alessandro Acquisti
Carnegie Mellon University, Pittsburgh, PA, USA
Lorrie Faith Cranor
Carnegie Mellon University, Pittsburgh, PA, USA
Norman Sadeh
Carnegie Mellon University, Pittsburgh, PA, USA
DOI

10.1145/3313831.3376389

論文URL

https://doi.org/10.1145/3313831.3376389

Will Deleting History Make Alexa More Trustworthy? Effects of Privacy and Content Customization on User Experience of Smart Speakers
要旨

"Always-on" smart speakers have raised privacy and security concerns, to address which vendors have introduced customizable privacy settings. But, does the act of customizing one's privacy preferences have any effects on user experience and trust? To address this question, we developed an app for Amazon Alexa and conducted a user study (N = 90). Our data show that the affordance to customize privacy settings enhances trust and usability for regular users, while it has adverse effects on power users. In addition, only enabling privacy-setting customization without allowing content customization negatively affects trust among users with higher privacy concerns. When they can customize both content and privacy settings, user trust is highest. That is, while privacy customization may cause reactance among power users, allowing privacy-concerned individuals to simultaneously customize content can help to alleviate the resultant negative effect on trust. These findings have implications for designing more privacy-sensitive and trustworthy smart speakers.

受賞
Honorable Mention
キーワード
Customization, privacy concern, power usage, security
smart speaker(s), voice assistant(s)
著者
Eugene Cho
Pennsylvania State University, University Park, PA, USA
S. Shyam Sundar
Pennsylvania State University, University Park, PA, USA
Saeed Abdullah
Pennsylvania State University, University Park, PA, USA
Nasim Motalebi
Pennsylvania State University, State College, PA, USA
DOI

10.1145/3313831.3376551

論文URL

https://doi.org/10.1145/3313831.3376551