Annotated
bibliography
Cookies, personalization and Internet privacy
by Alayne Moody
November 21, 2001
Aardsma, T. L. (2001). Standardizing privacy practices with P3P technology. Inside the Internet, 8(2), 4-6.
This is an explanation of the workings of P3P -- the next big privacy-protecting technology to arrive online. To take advantage of this new system, Aardsma says Internet users must have a program that shares his or her information-sharing preferences (a.k.a., ruleset) with the P3P-enabled site. The program then compares the Web site policy with the users' preferences and notifies the user of the results.
Ambroz, J. (2001). Common cookies: Who owns your Web audience? Folio : The Magazine for Magazine Management, 30(11), 16, 19.
This article examines the issue of cookies from the industry perspective, specifically, it addresses the question: Who owns the user information generated by cookie tracking, ad companies or Web site managers? Privacy issues are discussed.
Anonymous. (2001). Privacy on the Web. Wireless Review, 18(10), 56.
This writer is concerned about the privacy implications of wireless Internet and location-based services, particularly in terms of information shared across networks.
Anonymous. (2001). Protecting your privacy. Fortune, 142(12), 27-28.
This author calls personalization the "dark side of Web." He says it passes as customer service when in fact Web sites are stealing personal information and using it for their own benefit. He also says that information theft is also a way in which consumers information gets into the wrong hands. Web site privacy policies are identified as the best safeguard available to online shoppers.
Baekkelund, C., et al. (1998, December 10). A framework for privacy protection. Retrieved October 24, 2001 from the World Wide Web: http://www.cyber.law.harvard.edu/ltac98/privacy.html
The authors describe how the personal information of Web users ends up in the hands of direct marketers. This explains how people who have expressed an interest in a certain product online end up getting bombarded with ads for similar products a short time later.
Berners-Lee, T. (1999). Weaving the web. New York: HarperCollins.
The inventor of the World Wide Web discusses threats to users’ privacy and the implications of such invasions. For example, he describes the controversy surrounding cookies and click-streaming software. Berners-Lee suggests how the Web can be employed to fix the privacy problem.
Borrus, A. (2001, October 15). Backseat for Net Privacy. Business Week, 3753, 57.
Despite George W. Bush’s campaign 2000 claim that he was a privacy-rights person, his administration is reneging on a previous call for tough new Internet privacy laws.
Butterfield, F. (1999, May 20). Pornography cited in ouster of Harvard Divinity School dean. The New York Times, pp. A21.
In 1998, the dean of the Divinity School at Harvard was asked to step down because a computer technician servicing a university-owned computer in the dean’s home discovered thousands of pornographic files which had been downloaded from the Web.
Cohen, J. E. (1996). A right to read anonymously: A closer look at "copyright management" in cyberspace. Connecticut Law Review, 28, 981, 1019.
The author explores the implications of systems of monitoring consumption of copyrighted material online. A comparison is made to state laws that prohibit release of public library patron records and video rentals to illustrate how the protection of personal reading and movie viewing habits is not extended to the Web.
Cronin, M. (2000). Privacy and electronic commerce. In N. Imparato (Ed.) Public policy and the Internet: privacy, taxes, and contract. Stanford, CA: Hoover Institution Press.
Cronin explores three essential questions: 1) Does the responsibility of ensuring privacy lie with the individual and the Web sites they choose to visit or does it lie with some regulatory agency? 2) Does the United States’ approach of corporate self-regulation put us on a collision course with the European Union, which has government regulation of the Internet, and 3) Would privacy protections lead to a boom in online business by increasing consumer confidence, or would it limit competition and stymie entrepreneurialism.
Federal Trade Commission. (1998, June). Privacy on-line: A report to Congress. Washington, DC: U.S. Government Printing Office.
This is a comprehensive look at the issues involved in online privacy, particularly as they regard minors.
Freudenheim, M. (1998, August 12). Medicine at the click of a mouse: Online health files are convenient. Are they private? The New York Times, p. D1.
The author explores how putting personal medical information online benefits patients and practitioners while also raising important questions about privacy.
Glover, K. D. (2001). Which way Internet privacy? Financial Executive, 17(5), 22-25.
The future of legislation that protects consumers' privacy online is uncertain. This article says that Washington insiders who once referred to such legislation as "inevitable" and "substantial" now talk of caution, sobriety and incremental protection. The author concludes that industry self-regulation might be the answer to privacy concerns.
Gralla, P. (1999). The complete idiot’s guide to protecting yourself on line. Indianapolis, IN: Que.
As the title implies, this book gives readers tips on how to keep private information private online.
Grewlich, K. W. (1999). Governance in "cyberspace": Access and public interest in global communications. Boston: Kluwer Law International.
Grewlich suggests regulatory measures for protecting privacy online.
Gurley, J. W. (2001). From wired to wiretapped. Fortune, 144(7), 214-215.
In response to reports that the Sept. 11 terrorists communicated with each other using the Internet, some politicians have called for a ban on forms of encryption that government officials are unable to decode. This kind of Internet surveillance raises concerns about civil liberties as well as questions about whether the plan is even feasible or effective.
Hansell, S. (1998, August 16). Big Web sites to track steps of users. The New York Times, p. A1.
The author explains how prominent Web sites, such as Lycos-Tripod, started tracking and storing users’ site preferences to be able to create targeted advertisements.
Harding, W. T. (2001). Cookies and web bugs: What they are ahd how they work together. Information Systems Management, 18(3), 17-24.
Harding answers some fundamental questions about cookies and Web bugs and provides several examples. He also discusses the threats to privacy and the power potentially yielded through the synchronization of Web bugs and cookies.
Hemingway, R. (1999, May 21). Porn, the Harvard dean, and tech support. Salon. Retrieved October 24, 2001 from the World Wide Web: http://www.salon.com/tech/feature/1999/05/21/tech_support/index1.html
A co-worker of the technician who "snitched" on the dismissed dean criticizes his colleagues action. Writing under a pseudonym, the author describes the kind of personal information he is exposed to as a part of his daily routine. He explains how cookies enable technicians to see a history of visited Web sites and how a program called Gatekeeper enabled him to view email messages, etrade transactions and Web downloads of network users as they were taking place.
Hintz, T. R. (2001, August). Internet privacy. Resource, 8(8), 16-17.
This article points out that Internet users' browsing habits can be tracked and their personal information disseminated by Web vendors. It suggests ways to prevent or reduce the risk of privacy breaches.
Jennings, C., & Fena, L. (2000). The hundredth window: Protecting your privacy and security in the age of the Internet. New York: Free Press.
Authors expose how Web sites operators use personal information of their visitors. They provide tips for how people can protect their privacy online and they discuss future threats to privacy. For example, Jennings and Fena recommend never exchanging data unless you are getting something of value in return, such as a free subscription to a magazine.
Lawton, G. (2001). Is technology meeting the privacy challenge? Computer, 34(9), 16-18.
Lawton says that technology has been unable to keep up with the demand for online privacy. He discusses Internet privacy standards and current protective measures. He mentions anonymizers, auditing practices and management tools.
Martin Jr., D. M. (2001). The privacy practices of Web browser extensions. Communications of the ACM, 44(2), 45-50.
Martin looks at the privacy disclosure and data flow characteristics of browser extension software.
Masci, D. (1999). Internet privacy. In S.L. Stencel (Ed.). Issues for debate in American public policy: Selections from the CQ researcher. Washington, DC: Congressional Quarterly.
The author defines the problem of Internet privacy by using examples and statistics reflecting the widespread practice of sharing or selling users’ private information. Masci discusses cookies, medical records and children’s privacy and he explains how users can protect their information. He concludes with an examination of whether government should implement privacy standards.
McDermott-Lucey, J. (2001, September 24). Identity theft risks: Businesses beware. National Underwriter, 105(39), 25-28.
The Internet has lead to an increase in the crime of identity theft. This article discusses some of the insurance products that have been designed to protect policyholders from identity fraud. It also touches on the efforts the insurance industry has made to help individuals minimize their susceptibility.
Mendels, P. (1998, July 4). Internet sites for children raise concerns on privacy. The New York Times, p. D3.
Internet sites directed at children pose a risk to young users’ privacy. The author takes a look at the conflict surrounding this allegation.
O’Harrow Jr., R. (1998, March 8). Data firms getting too personal? The Washington Post, p. A1.
This article reveals the ease with which the data warehousing industry is able to collect personal information about almost anyone.
Pareigat, T. (2001). Maintaining customer confidence online: Is your Web site's privacy policy what it should be? ABA Bank Compliance, 22(3), 24-25.
Pareigat urges banks to post comprehensive privacy policies on their Web sites even though there are no laws or regulations requiring them to do so. He says the policies will cultivate customer trust and grow banks' online commerce.
Rosen, J. (2000). The unwanted gaze: The destruction of privacy in America. New York: Random House.
Jeffrey Rosen observes that privacy has diminished in America, largely due to computer technology and the Internet. He argues that privacy is important because it protects us from being judged out of context by a public with a short attention span and propensity to confuse knowledge with information. Rosen suggests ways of reconstructing privacy so that technology and law become less invasive. He also describes technologies and Web sites – such as encryption by Pretty Good Privacy Co., secure email by ZipLip.com, proxy Web service by Anonymizer, and pseudonym and encryption service by Zero-Knowledge.com – which protect Internet privacy.
Schwartau, W. (2000). CyberShock: Surviving hackers, phreakers, identity thieves, Internet terrorists and weapons of mass disruption. New York : Thunder's Mouth Press.
In addition to a chapter about DefCon, the largest underground internet security (a.k.a. hacker) convention on the planet, which happens to be hosted in Las Vegas, Schwartau discusses how hackers violate users’ privacy and some of the reasons why hackers have no trouble doing so. For one, Schwatau says, companies are not required by law to protect consumers’ personal information. The author provides numerous tips on how to protect your identity, privacy and security.
Steeves, V. (2000). Privacy, Free Speech and Community: Applying Human Rights Law to Cyberspace. In S. Hick, E.F. Halpin, & E. Hoskins (Eds.) Human rights and the Internet. New York: St. Martin's Press.
Steeves analyzes the difficulties involved in applying traditional privacy frameworks to the online environment. Two tripping points for demarcating privacy online include: 1) There is no reasonable expectation of privacy online, and 2) People typically associate unwanted surveillance as that coming from government, not business.
Stepanek, M. (2000, December 11). Who's Prying Now? Business Week, 3711, 80.
Hospitals have the opportunity to profit off the digital patient data. Some hospitals sell the information to marketers or present it as an asset when negotiating business deals. Stepanek says these practices jeopordize patient privacy.
Tavani, H. (1996). Computer and privacy. Retrieved October 24, 2001 from the Mississippi State Univesity Web site on the World Wide Web: http://cyberethics.cbi.msstate.edu/biblio/part8.htm
Tavani has put together a bibliography covering all aspects of computing, ethics and social responsibility. The "Computer and privacy" citations are listed under the following subheads: Personal Privacy and the Information Age, Privacy Legislation And Data Regulation, Databanks: Accuracy, Access And The Sale Of Personal Information, and Record Matching, Surveillance, Encryption And Social Control.
Tedeschi, B. (2000, February 7). Critics press legal assault on tracking of Web users. The New York Times, p. C1.
This article talks about how the merger of DoubleClick Inc. -- the Internet’s largest advertising firm -- and Abacus Direct -- a database containing information about millions of direct mail catalog receivers – might affect Internet privacy. The concern is that consumers online and offline buying habits could be compiled into a single marketing database.
U.S. Senate Committee on the Judiciary. (1999, April 21). Privacy in the Digital Age: Discussion of issues surrounding the Internet. Washington, DC: U.S. Government Printing Office.
Senators, industry leaders, and interest group representatives discuss Internet privacy. Industry reps talk about steps they are taking to protect users’ privacy. Senators propose policy measures that would balance the need for freedom of information with the desire for industry and technological autonomy and user privacy.
U.S. General Accounting Office. (2001, April). Internet privacy: Implementation of federal guidance for agency use of "cookies." Washington, DC: U.S. Government Printing Office.
The U.S. G.A.O. addresses the question of whether and how government agency Web sites should use cookies. It recommends that agencies move toward the use of session cookies, however it also advises a reference to cookie use in the sites’ privacy policies.
Weise, E. (1998, June 24). Revealing secrets about privacy on the Web. USA Today.
The author explains what vendors and digital data mongers can and can’t learn about Web site visitors.
Weise, E. (2001, April 10). Privacy options are a blur Cookies, ads don't spark the old outrage. USA Today.
Weiss wades through public opinion about privacy options online. She refers to surfers who surfers who apparently do not think that cookies are a big concern.
The World Wide Web Consortium. (2000). Platform for privacy preferences platform. Retrieved October 24, 2001 from the World Wide Web: http://www.w3.org/P3P/
This Web site includes detailed descriptions of P3P as well as articles and conference papers offering information, commentary and criticism of the system. Also, several general media articles are cited and Web sites that are at some stage of compliance are listed.