TY - GEN
T1 - Cryptagram
T2 - 1st ACM Conference on Online Social Networks, COSN 2013
AU - Tierney, Matt
AU - Spiro, Ian
AU - Bregler, Christoph
AU - Subramanian, Lakshminarayanan
PY - 2013
Y1 - 2013
N2 - While Online Social Networks (OSNs) enable users to share photos easily, they also expose users to several privacy threats from both the OSNs and external entities. The current privacy controls on OSNs are far from adequate, resulting in inappropriate flows of information when users fail to understand their privacy settings or OSNs fail to implement policies correctly. OSNs may further complicate privacy expectations when they reserve the right to analyze uploaded photos using automated face identification techniques. In this paper, we propose the design, implementation and evaluation of Cryptagram, a system designed to enhance online photo privacy. Cryptagram enables users to convert photos into encrypted images, which the users upload to OSNs. Users directly manage access control to those photos via shared keys that are independent of OSNs or other third parties. OSNs apply standard image transformations (JPEG compression) to all uploaded images so Cryptagram provides an image encoding and encryption mechanism that is tolerant to these transformations. Cryptagram guarantees that the recipient with the right credentials can completely retrieve the original image from the transformed version of the uploaded encrypted image while the OSN cannot infer the original image. Cryptagram's browser extension integrates seamlessly with preexisting OSNs, including Facebook and Google+, and currently has over 400 active users.
AB - While Online Social Networks (OSNs) enable users to share photos easily, they also expose users to several privacy threats from both the OSNs and external entities. The current privacy controls on OSNs are far from adequate, resulting in inappropriate flows of information when users fail to understand their privacy settings or OSNs fail to implement policies correctly. OSNs may further complicate privacy expectations when they reserve the right to analyze uploaded photos using automated face identification techniques. In this paper, we propose the design, implementation and evaluation of Cryptagram, a system designed to enhance online photo privacy. Cryptagram enables users to convert photos into encrypted images, which the users upload to OSNs. Users directly manage access control to those photos via shared keys that are independent of OSNs or other third parties. OSNs apply standard image transformations (JPEG compression) to all uploaded images so Cryptagram provides an image encoding and encryption mechanism that is tolerant to these transformations. Cryptagram guarantees that the recipient with the right credentials can completely retrieve the original image from the transformed version of the uploaded encrypted image while the OSN cannot infer the original image. Cryptagram's browser extension integrates seamlessly with preexisting OSNs, including Facebook and Google+, and currently has over 400 active users.
KW - online social media
KW - photo privacy
UR - http://www.scopus.com/inward/record.url?scp=84887316403&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84887316403&partnerID=8YFLogxK
U2 - 10.1145/2512938.2512939
DO - 10.1145/2512938.2512939
M3 - Conference contribution
AN - SCOPUS:84887316403
SN - 9781450320849
T3 - COSN 2013 - Proceedings of the 2013 Conference on Online Social Networks
SP - 75
EP - 87
BT - COSN 2013 - Proceedings of the 2013 Conference on Online Social Networks
PB - Association for Computing Machinery
Y2 - 7 October 2013 through 8 October 2013
ER -