1
Maritza Johnson• Ph.D. candidate in Computer Science
• Research
Computer security and human factors
• Paper
Computer security research with human subjects
2
Computer Security
• Protect systems and information from abuse and unwanted access
• Ensure systems remain accessible and productive for intended use and users
3
Information Security
4
Anonymity & Personally Identifiable Information
5
Anonymity & Personally Identifiable Information
6
Anonymizing a Dataset
8
AOL Searcher #4417749
9
Availability
• Ownership
• Data loss
10
Access Control
• Who has access?
• What are they permitted to do?
• Authentication
11
Usable Security
12
Human subjects research?
13
Passwords
• Must be unique
• Do NOT write it down
• Should not be guessable by acquaintances
• Include letters AND numbers
• Include at least one number BETWEEN the first and last character
• Contain no symbols (!, %, #, etc.)
14
Online Consent
15
Textured Agreement
17
API
• Application programming interface
• Facebook, Myspace, Twitter, Flickr, iPhone apps
18
API
• Application programming interface
• Facebook, Myspace, Twitter, Flickr, iPhone apps
21
API Best Practices
22
Summary• Data anonymization
• Storage
• Internet research beyond surveys
• Application programming interfaces
23
Contact:Maritza [email protected]://www.cs.columbia.edu/~maritzaj/