“Okay, whatever”: An evaluation of cookie consent interfaces
Many websites have added cookie consent interfaces to meet regulatory consent
requirements. While prior work has demonstrated that they often use dark patterns—design …
requirements. While prior work has demonstrated that they often use dark patterns—design …
Freely given consent? studying consent notice of third-party tracking and its violations of gdpr in android apps
Adopted in May 2018, the European Union's General Data Protection Regulation (GDPR)
requires the consent for processing users' personal data to be freely given, specific …
requires the consent for processing users' personal data to be freely given, specific …
" Get in Researchers; We're Measuring Reproducibility": A Reproducibility Study of Machine Learning Papers in Tier 1 Security Conferences
D Olszewski, A Lu, C Stillman, K Warren… - Proceedings of the …, 2023 - dl.acm.org
Reproducibility is crucial to the advancement of science; it strengthens confidence in
seemingly contradictory results and expands the boundaries of known discoveries …
seemingly contradictory results and expands the boundaries of known discoveries …
[PDF][PDF] Withdrawing is believing? detecting inconsistencies between withdrawal choices and third-party data collections in mobile apps
Popular privacy regulations such as General Data Protection Regulation (GDPR) often allow
consumers to withdraw from providing data, eg, the famous right to opt-out. Modern …
consumers to withdraw from providing data, eg, the famous right to opt-out. Modern …
A US-UK usability evaluation of consent management platform cookie consent interface design on desktop and mobile
Websites implement cookie consent interfaces to obtain users' permission to use non-
essential cookies, as required by privacy regulations. We extend prior research evaluating …
essential cookies, as required by privacy regulations. We extend prior research evaluating …
RuleKeeper: GDPR-aware personal data compliance for web frameworks
Pressured by existing regulations such as the EU GDPR, online services must advertise a
personal data protection policy declaring the types and purposes of collected personal data …
personal data protection policy declaring the types and purposes of collected personal data …
[PDF][PDF] Automated Large-Scale Analysis of Cookie Notice Compliance
A Bouhoula, K Kubicek, A Zac, C Cotrini… - USENIX Security …, 2023 - usenix.org
Privacy regulations such as the General Data Protection Regulation (GDPR) require
websites to inform EU-based users about non-essential data collection and to request their …
websites to inform EU-based users about non-essential data collection and to request their …
Everybody's Looking for SSOmething: A large-scale evaluation on the privacy of OAuth authentication on the web
Y Dimova, T Van Goethem… - Proceedings on Privacy …, 2023 - petsymposium.org
The management of many different login credentials can be tricky for the average web user.
OAuth eases this process by invoking identity providers (IdPs) as intermediaries, which …
OAuth eases this process by invoking identity providers (IdPs) as intermediaries, which …
User-controlled privacy: taint, track, and control
We develop the first language-based, Privacy by Design approach that provides support for
a rich class of privacy policies. The policies are user-defined, rather than programmer …
a rich class of privacy policies. The policies are user-defined, rather than programmer …
Cookiegraph: Understanding and detecting first-party tracking cookies
As third-party cookie blocking is becoming the norm in mainstream web browsers,
advertisers and trackers have started to use first-party cookies for tracking. To understand …
advertisers and trackers have started to use first-party cookies for tracking. To understand …