Risk
4/10/2008
04:38 PM
Connect Directly
RSS
E-Mail
50%
50%
Repost This

U.S. Adults Wary Of Web-Use Tracking

Survey respondents were uncomfortable when Web sites used visitors' online activity to tailor advertisements or content based on their hobbies or interests.

A majority of U.S. adults are uncomfortable with Web sites using a person's online activity to deliver customized content, a study released Thursday showed.

However, Harris Interactive found that people became more comfortable after they were presented with Web-site privacy and security policies recommended by the Federal Trade Commission.

Based on a nationwide survey of more than 2,500 U.S. adults, the study found that six in 10 respondents were skeptical when Web sites like those from Google, Yahoo, and Microsoft used visitors' online activity to tailor advertisements or content based on their hobbies or interests. A quarter of the respondents were "not at all comfortable," and 34% were "not very comfortable."

The remaining 41% were split between the 7% of people who were "very comfortable," and the 34% who said they were "somewhat comfortable."

Columbia University professor and study designer Alan F. Westin said the study showed a disconnection between Web sites and Web users. The former argues that users are likely to consider free e-mail accounts, the lessening of irrelevant ads, and other benefits as worth the trade-off of having their activities tracked. "Though our question flagged this position, 59% of current online users clearly do not accept it," Westin said in a statement.

Researchers found a change in attitude after the FTC-recommended privacy/security policies were introduced. The recommendations include greater disclosure on use of data and consumer control, limited data retention, and opt-in consent for material changes to existing privacy promises and for use of sensitive data.

If these conditions were applied, then 55% of the respondents to Harris' survey said they would be more comfortable with Web companies using information from visitors' activities.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2012-3946
Published: 2014-04-24
Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops do not occur for "a small percentage" of the packets, aka Bug ID CSCty73682.

CVE-2012-5723
Published: 2014-04-24
Cisco ASR 1000 devices with software before 3.8S, when BDI routing is enabled, allow remote attackers to cause a denial of service (device reload) via crafted (1) broadcast or (2) multicast ICMP packets with fragmentation, aka Bug ID CSCub55948.

CVE-2013-6738
Published: 2014-04-24
Cross-site scripting (XSS) vulnerability in IBM SmartCloud Analytics Log Analysis 1.1 and 1.2 before 1.2.0.0-CSI-SCALA-IF0003 allows remote attackers to inject arbitrary web script or HTML via an invalid query parameter in a response from an OAuth authorization endpoint.

CVE-2014-0188
Published: 2014-04-24
The openshift-origin-broker in Red Hat OpenShift Enterprise 2.0.5, 1.2.7, and earlier does not properly handle authentication requests from the remote-user auth plugin, which allows remote attackers to bypass authentication and impersonate arbitrary users via the X-Remote-User header in a request to...

CVE-2014-2391
Published: 2014-04-24
The password recovery service in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 makes an improper decision about the sensitivity of a string representing a previously used but currently invalid password, which allows remote attackers to obtain potent...

Best of the Web