07:15 PM

Facebook Launches Friendship Pages, Raises Privacy Concerns

The new feature can show the relationship between two Facebook friends through the public information they've shared between each other through Wall posts, photos and more.

Facebook has raised privacy concerns again among some users by launching a feature that can show the relationship between two friends through the public information they've shared between each other.

Called "Friendship Pages," the feature, which is being rolled out gradually, would be accessible through a link under relevant Wall posts, relationship stories and the main photo on a person's profile page. Clicking the link would launch a standalone page that would include public Wall posts between the two people, photos in which both are tagged, events they have RSVP'd for together, mutual friends and mutual "likes."

Friendship Pages could only be retrieved by someone who is a friend with at least one of the two people and who has permission to view both their profiles. "When it's between two people who share a lot, the page really starts to reflect their friendship," Wayne Kao, the Facebook software engineer who developed the feature, said on the company's blog Thursday.

The new feature did draw concerns from some Facebook users. "While I'm all for innovation, privacy should come first," Rob Ahnemann, said on the comments section of Kao's blog. "If you introduce a new feature, notify the community when it arrives. (And) give a clear opt-in or opt-out button."

Others, however, felt the privacy concerns were overblown. "If you don't appreciate new applications because you perceive them a threat to the privacy of your golden gem of a Facebook profile, you are free to leave Facebook and no one will miss you," Amanda Meyer said.

Nearly every feature Facebook introduces is looked at through the privacy prism. Because Facebook's business is about helping people communicate, plan get-togethers and share photos and video of friends and family, the site cannot ignore the impact any new feature will have on privacy. Facebook's record on privacy is spotty and concerns over the handling of its 500 million users' personal information is under scrutiny by Congress.

To avoid having personal information seen by strangers or acquaintances, Facebook users need to carefully choose the people they allow into their social network, Augie Ray, analyst for Forrester Research, told InformationWeek. "Whom you follow and whom you friend are part of the privacy equation."


Facebook Places A Bet Against Google

Facebook Places Privacy First

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Current Issue
Dark Reading Tech Digest September 7, 2015
Some security flaws go beyond simple app vulnerabilities. Have you checked for these?
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2015-10-08
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

Published: 2015-10-08
Cybozu Garoon 3.x through 3.7.5 and 4.x through 4.0.3 mishandles authentication requests, which allows remote authenticated users to conduct LDAP injection attacks, and consequently bypass intended login restrictions or obtain sensitive information, by leveraging certain group-administration privile...

Published: 2015-10-08
The REST interface in Cisco Unified Communications Manager IM and Presence Service 11.5(1) allows remote attackers to cause a denial of service (SIP proxy service restart) via a crafted HTTP request, aka Bug ID CSCuw31632.

Published: 2015-10-08
Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0), 7.3(101.0), and 7.4(1.19) allow remote attackers to cause a denial of service (device outage) by sending malformed 802.11i management data to a managed access point, aka Bug ID CSCub65236.

Published: 2015-10-06
libstagefright in Android before 5.1.1 LMY48T allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file, aka internal bug 21335999.

Dark Reading Radio
Archived Dark Reading Radio
What can the information security industry do to solve the IoT security problem? Learn more and join the conversation on the next episode of Dark Reading Radio.