In order to provide customers with a sense of security regarding the protection of their personal data, companies sign on to a “seal” programme, where rules designed by the seal issuer in accordance to underlying laws must be adhered to. A user can verify online that a specific organisation adheres to a published privacy policy. This paper argues that the verifications means these programmes use are vulnerable to DNS spoofing attacks and present a privacy policy verification (“seal”) scheme, which is not vulnerable to attack. It is also argued that there are disadvantages in operating seal schemes that attempt to publicly certify compliance levels with a self‐regulatory privacy protection model. On the contrary, these disadvantages are softened when used in a regulatory model that has adopted comprehensive laws to ensure privacy protection.
Article navigation
1 September 2004
This article was originally published in
Information Management & Computer Security
Research Article|
September 01 2004
Towards secure sealing of privacy policies Available to Purchase
Kostas Moulinos;
Kostas Moulinos
Hellenic Data Protection Authority, Athens, Greece
Search for other works by this author on:
John Iliadis;
John Iliadis
Department of Information and Communication Systems Engineering, University of the Aegean Research Unit, Athens, Greece
Search for other works by this author on:
Vassilis Tsoumas
Vassilis Tsoumas
Department of Informatics, Athens University of Economics and Business, Athens, Greece
Search for other works by this author on:
Publisher: Emerald Publishing
Online ISSN: 1758-5805
Print ISSN: 0968-5227
© Emerald Group Publishing Limited
2004
Information Management & Computer Security (2004) 12 (4): 350–361.
Citation
Moulinos K, Iliadis J, Tsoumas V (2004), "Towards secure sealing of privacy policies". Information Management & Computer Security, Vol. 12 No. 4 pp. 350–361, doi: https://doi.org/10.1108/09685220410553569
Download citation file:
Sign in
Don't already have an account? Register
ICE Member Sign In
Log inPurchased this content as a guest? Enter your email address to restore access.
Please enter valid email address.
Email address must be 94 characters or fewer.
Pay-Per-View Access
$41.00
Rental
This article is also available for rental through DeepDyve.
255
Views
Suggested Reading
The dimensionality of customer privacy concern on the internet
Online Information Review (August,2007)
Trust, privacy, and security in electronic business: the case of the GCC countries
Information Management & Computer Security (May,2006)
Will self‐regulation work in protecting online privacy?
Online Information Review (August,2003)
The importance of perceived trust, security and privacy in online trading systems
Information Management & Computer Security (June,2009)
A review and future research directions of secure and trustworthy mobile agent‐based e‐marketplace systems
Information Management & Computer Security (July,2010)
Related Chapters
Cybersecurity and Ensuring Privacy in Digital Finance
Digital Finance and Metaverse in Banking: Decoding a Virtual Reality towards Financial Inclusion and Sustainable Development
Revolutionizing Healthcare in the Metaverse: A Blockchain-Powered Approach to Privacy and Decentralization
Metaverse Dynamics: Exploring the Intersection of Technology, Business Transformation, and User Experience
Recommended for you
These recommendations are informed by your reading behaviors and indicated interests.
