research-article

Content cloaking: preserving privacy with Google Docs and other web applications

Authors:

Gabriele D'Angelo,

Fabio Vitali, and

Stefano ZacchiroliAuthors Info & Claims

SAC '10: Proceedings of the 2010 ACM Symposium on Applied Computing

March 2010

Pages 826 - 830

https://doi.org/10.1145/1774088.1774259

Published: 22 March 2010 Publication History

Abstract

Web office suites such as Google Docs offer unparalleled collaboration experiences in terms of low software requirements, ease of use, data ubiquity, and availability. When the data holder (Google, Microsoft, etc.) is not perceived as trusted though, those benefits are considered at stake with important privacy requirements. Content cloaking is a lightweight, cryptographic, client-side solution to protect content from data holders while using web office suites and other "Web 2.0", AJAX-based, collaborative applications.

References

[1]

N. Borisov, I. Goldberg, and E. A. Brewer. Off-the-record communication, or, why not to use PGP. In ACM WPES, pages 77--84, 2004.

Digital Library

[2]

M. Campbell-Kelly. Historical reflections. the rise, fall, and resurrection of software as a service. Commun. ACM, 52(5):28--30, 2009.

Digital Library

[3]

S. Chong, K. Vikram, and A. C. Myers. Sif: enforcing confidentiality and integrity in web applications. In USENIX Security Symposium, pages 1--16. 2007.

Digital Library

[4]

S. Chopra and L. White. Privacy and artificial agents, or, is google reading my email? In IJCAI, pages 1245--1250, 2007.

Digital Library

[5]

M. Christodorescu. Private use of untrusted web servers via opportunistic encryption. In W2SP 2008: Web 2.0 Security and Privacy 2008. IEEE, 2008.

[6]

D. Crockford. The application/json media type for JavaScript object notation (JSON). RFC 4627. 2006.

[7]

S. Dekeyser and R. Watson. Extending Google Docs to collaborate on research papers. Technical report, University of Southern Queensland, Australia, 2006.

[8]

E. Gargano. Privacy e Web 2.0: una soluzione sicura per utilizzare Google Documents e Mozilla Firefox. Master's thesis, University of Bologna, 2007.

[9]

J. Garrett. AJAX: A new approach to web applications. http://www.adaptivepath.com/ideas/essays/archives/000385.php, 2005.

[10]

S. Ghemawat, H. Gobioff, and S. T. Leung. The Google file system. In ACM SOSP, pages 29--43, 2003.

Digital Library

[11]

Google Docs blog. On yesterday's email. http://googledocs.blogspot.com/2009/03/on-yesterdays-email.html, Mar. 2009.

[12]

R. C. Jammalamadaka, R. Gamboni, S. Mehrotra, K. Seamons, and N. Venkatasubramanian. iDataGuard: an interoperable security middleware for untrusted internet data storage. In ACM Middleware Conference, pages 36--41. 2008.

Digital Library

[13]

B. Leuf and W. Cunningham. The Wiki Way: Quick Collaboration on the Web. Addison-Wesley. 2001.

Digital Library

[14]

NIST. Advanced Encryption Standard (AES). Federal Information Processing Standards 197, Nov. 2001.

[15]

T. O'Reilly. What Is Web 2.0: Design Patterns and Business Models for the Next Generation of Software. Communications and Strategies, 65(1):17--38, 2007.

[16]

A. Rezgui, M. Ouzzani, A. Bouguettaya, and B. Medjahed. Preserving privacy in web services. In ACM WIDM, pages 56--62. 2002.

Digital Library

[17]

O. Tene. What Google knows: Privacy and internet search engines. Utah Law Review, 2008. Forthcoming. Available at http://ssrn.com/abstract=1021490.

[18]

Writely and Google Inc. Google Docs. http://docs.google.com.

Cited By

Gröber LMrowczynski RVijay NMuller DDabrowski AKrombholz KCalandrino JTroncoso C(2023)To cloud or not to cloudProceedings of the 32nd USENIX Conference on Security Symposium10.5555/3620237.3620377(2491-2508)Online publication date: 9-Aug-2023
https://dl.acm.org/doi/10.5555/3620237.3620377
Arora SAtrey P(2021)Secure Collaborative Editing Using Secret Sharing2021 IEEE International Workshop on Information Forensics and Security (WIFS)10.1109/WIFS53200.2021.9648395(1-6)Online publication date: 7-Dec-2021
https://doi.org/10.1109/WIFS53200.2021.9648395
Mohsin HBahjat H(2019)Anti-screenshot Keyboard for Web-Based Application Using CloakingProceedings of the 8th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT’18), Vol.110.1007/978-3-030-21005-2_45(473-478)Online publication date: 11-Jul-2019
https://doi.org/10.1007/978-3-030-21005-2_45
Show More Cited By

Index Terms

Content cloaking: preserving privacy with Google Docs and other web applications

Recommendations

Secure Integration of Web Content and Applications on Commodity Mobile Operating Systems
ASIA CCS '17: Proceedings of the 2017 ACM on Asia Conference on Computer and Communications Security

A majority of today's mobile apps integrate web content of various kinds. Unfortunately, the interactions between app code and web content expose new attack vectors: a malicious app can subvert its embedded web content to steal user secrets; on the ...
Read More
What's the difference? Learning collaboratively using iPads in conventional classrooms

Since its release in 2010, Apple's iPad has attracted much attention as an affordable and flexible learning tool for all levels of education. A number of trials have been undertaken exploring the device's efficacy for specific purposes, such as ...
Read More
A trust-aware tag-based privacy control for eHealth 2.0
SIGITE '11: Proceedings of the 2011 conference on Information technology education

Healthcare social networking is an emerging web 2.0 application that promise to bring about a whole revolution in the way that health care is delivered. In healthcare social networks, health information requires extra protection as its disclosure can ...
Read More

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

SAC '10: Proceedings of the 2010 ACM Symposium on Applied Computing

March 2010

2712 pages

ISBN:9781605586397

DOI:10.1145/1774088

Conference Chairs:
Sung Y. Shin
South Dakota State University
,
Sascha Ossowski
University Rey Juan Carlos, Spain
,
Michael Schumacher
University of Applied Sciences Western Switzerland, Switzerland
,
Program Chairs:
Mathew J. Palakal
Indiana University Purdue University
,
Chih-Cheng Hung
Southern Polytechnic State University

Copyright © 2010 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGAPP: ACM Special Interest Group on Applied Computing

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 22 March 2010

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

Seventh Framework Programme

Conference

SAC'10

Sponsor:

SIGAPP

SAC'10: The 2010 ACM Symposium on Applied Computing

March 22 - 26, 2010

Sierre, Switzerland

Acceptance Rates

SAC '10 Paper Acceptance Rate 364 of 1,353 submissions, 27%;

Overall Acceptance Rate 1,650 of 6,669 submissions, 25%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

15
Total Citations
View Citations
573
Total Downloads

Downloads (Last 12 months)5
Downloads (Last 6 weeks)1

Other Metrics

View Author Metrics

Citations

Cited By

Gröber LMrowczynski RVijay NMuller DDabrowski AKrombholz KCalandrino JTroncoso C(2023)To cloud or not to cloudProceedings of the 32nd USENIX Conference on Security Symposium10.5555/3620237.3620377(2491-2508)Online publication date: 9-Aug-2023
https://dl.acm.org/doi/10.5555/3620237.3620377
Arora SAtrey P(2021)Secure Collaborative Editing Using Secret Sharing2021 IEEE International Workshop on Information Forensics and Security (WIFS)10.1109/WIFS53200.2021.9648395(1-6)Online publication date: 7-Dec-2021
https://doi.org/10.1109/WIFS53200.2021.9648395
Mohsin HBahjat H(2019)Anti-screenshot Keyboard for Web-Based Application Using CloakingProceedings of the 8th International Conference on Sciences of Electronics, Technologies of Information and Telecommunications (SETIT’18), Vol.110.1007/978-3-030-21005-2_45(473-478)Online publication date: 11-Jul-2019
https://doi.org/10.1007/978-3-030-21005-2_45
D'Angelo GDi Iorio AZacchiroli S(2018)Spacetime Characterization of Real-Time Collaborative EditingProceedings of the ACM on Human-Computer Interaction10.1145/32743102:CSCW(1-19)Online publication date: 1-Nov-2018
https://dl.acm.org/doi/10.1145/3274310
Felsch DMainka CMladenov VSchwenk JKarri RSinanoglu OSadeghi AYi X(2017)SECRETProceedings of the 2017 ACM on Asia Conference on Computer and Communications Security10.1145/3052973.3052982(835-848)Online publication date: 2-Apr-2017
https://dl.acm.org/doi/10.1145/3052973.3052982
Papagiannis IWatcharapichat PMuthukumaran DPietzuch P(2016)BrowserFlowProceedings of the 17th International Middleware Conference10.1145/2988336.2988345(1-13)Online publication date: 28-Nov-2016
https://dl.acm.org/doi/10.1145/2988336.2988345
Sinha TSrikanth VSain MLee HShyamasundar RShastri LJanakiram DPadmanabhuni S(2013)Trends and research directions for privacy preserving approaches on the cloudProceedings of the 6th ACM India Computing Convention10.1145/2522548.2523138(1-12)Online publication date: 22-Aug-2013
https://dl.acm.org/doi/10.1145/2522548.2523138
Beato FIon IČapkun SPreneel BLangheinrich MBertino ESandhu RBauer LPark J(2013)For some eyes onlyProceedings of the third ACM conference on Data and application security and privacy10.1145/2435349.2435351(1-12)Online publication date: 18-Feb-2013
https://dl.acm.org/doi/10.1145/2435349.2435351
Yeh SSu MChen HLin C(2013)An efficient and secure approach for a cloud collaborative editingJournal of Network and Computer Applications10.1016/j.jnca.2013.05.01236:6(1632-1641)Online publication date: 1-Nov-2013
https://dl.acm.org/doi/10.1016/j.jnca.2013.05.012
Jammalamadaka RGamboni RMehrotra SSeamons KVenkatasubramanian N(2013)A middleware approach for outsourcing data securelyComputers and Security10.1016/j.cose.2012.07.00532:C(252-266)Online publication date: 1-Feb-2013
https://dl.acm.org/doi/10.1016/j.cose.2012.07.005
Show More Cited By

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents