Enforcing privacy in e-commerce by balancing anonymity and trust

De Montfort University Open Research Archive

Show simple item record

dc.contributor.author Bella, Giampaolo en
dc.contributor.author Giustolisi, Rosario en
dc.contributor.author Riccobene, Salvatore en
dc.date.accessioned 2012-04-04T10:41:48Z
dc.date.available 2012-04-04T10:41:48Z
dc.date.issued 2011
dc.identifier.citation Bella, G., Giustolisi, R. and Riccobene, S. (2011) Enforcing privacy in e-commerce by balancing anonymity and trust. Computers & Security, 30, (8), pp. 705-718 en
dc.identifier.issn 0167-4048
dc.identifier.uri http://hdl.handle.net/2086/5882
dc.description.abstract Privacy is a major concern in e-commerce. There exist two main paradigms to protect the customer’s privacy: one relies on the customer’s trust that the network will conform to his privacy policy, the other one insists on the customer’s anonymity. A new paradigm is advanced here as a natural balance between these two. It sees the customer act using his real identity but only circulate cover data that conceal the resources he requires. Privacy enforcement is thus shifted from the customer’s identity to his purchase preferences. The new paradigm is suitable for scenarios such as eBay purchases where trust that a network sticks to a privacy policy is problematic, while anonymity is either forbidden or impossible. The computation of cover data is done by a node other than the customer in order to minimize impact on the customer. That node will therefore see the customer’s private data that are used to compute the cover. This demands some technology to prevent the node from exposing private data. An existing protocol developed for self-enforcing privacy in the area of e-polls is thoroughly analysed and found somewhat weak in terms of fairness among its participants. A stronger version is designed and adopted, together with an innovative differential-privacy preserving function, in the new privacy paradigm. The strengthened e-poll protocol and the new differential-privacy preserving function, which strictly speaking only are side contributions of this paper, each appear as important as the new e-commerce privacy paradigm. en
dc.language.iso en en
dc.publisher Elsevier Ltd en
dc.subject self-enforcing privacy en
dc.subject differential privacy en
dc.subject customer privacy en
dc.subject security protocol en
dc.subject E-polling en
dc.subject Pollster en
dc.title Enforcing privacy in e-commerce by balancing anonymity and trust en
dc.type Article en
dc.identifier.doi http://dx.doi.org/10.1016/j.cose.2011.08.005
dc.researchgroup Software Technology Research Laboratory (STRL) en
dc.peerreviewed Yes en
dc.ref2014.selected 1367395509_1010680226037_11_2

Files in this item

Files Size Format View

There are no files associated with this item.

This item appears in the following Collection(s)

Show simple item record