Be a Savvy Web Surfer: A Consumer Online
Privacy Guide By Harvey S. Jacobs, Esq.,
http://www.internet-law-firm.com/ (A cookie-free site)
How can I check my privacy settings?
To access these settings on the Internet Explorer browser, all you need to do is: (1) right click on the Web browser icon; (2) left click on Properties; (3) left click on Custom Level; (4) scroll down to the Cookies settings. You then have three options: Disable, Enable, or Prompt.
In Netscape Navigator, you need to: (1) click on Edit; (2) click on Preferences; and (3) click on the category Advanced. You will see four options: Accept All, Accept with limitations, Disable and Warn Me.
What are “cookies” anyway?
Cookies are small computer files that are placed on your computer when you visit a Web site, or click a banner ad or even when your mouse rolls or hovers over a certain portion of a Web site. They are relatively small in size and typically do not have any material effect on your computer’s performance, but for heavy Internet users they can take up valuable hard drive space.
These small files do however contain large consequences. They are designed to collect information about you, and your surfing habits. Some information is as basic as, have you been to the site before, to the very complex “big brother” variety of cookie which can collect information on what page you came from, what page you left for, how much time you spent on each section of each page. There are even reported cookies that attach themselves to your browser and follow you from page to page and report your entire Web journey back to a central data collection point.
Are ALL cookies bad?
Not at all. Many cookies store information that are quite useful to you such as your name, log in name and or password, and other information that you otherwise would have to repeatedly type in to access a given Web site. These useful little cookies can save you enormous amounts of time.
Many surfers welcome the use of cookies to store their preferences on certain sites, such as travel reservation sites. For example, you can store your travel profile in a cookie so that when you go to make an airline or hotel reservation, the site will automatically know what your first choice of airline or hotel chain is, whether you want smoking or non-smoking accommodations, and whether you prefer window or aisle. Sites such as Amazon.com have elevated the cookie to a “high art form” such that when you login it remembers your prior purchases, where you have browsed, the type of books you like and assembles a recommended reading list for your inspection every time you log on.
Then what’s so bad about cookies?
Cookies can be used to piece together many bits of unrelated information which, when assembled, can generate an all-too-personal profile of your online activities. Companies such as Double-Click amass vast amounts of market data on your every move on the Web and sell that assembled data to marketing managers anxious to sell you just the right product, at just the right time, at just the right price.
The real privacy problems arise when this data is then “mined,” which means associated with other databases which you never thought would be used to assemble your online profile. For example, a health insurance company could buy the e-mail addresses and potentially even the names and addresses of all people who have accessed Web sites dealing with breast cancer. The insurance company could then cross check those e-mail addresses against their existing policy holders to determine which of their covered beneficiaries has accessed such information on the Internet. That list could potentially be further “mined” to see if any of those policy holders who checked breast cancer Web sites also checked into cigarette sites or even if they purchased cigarettes online. With this association of seemingly harmless bits of information, you can see that an insurance company could assemble and use that information at policy renewal times to potentially deny medical coverage or to greatly increase the cost of health insurance based on its perceptions gathered from Web and other data of the high risk tendencies of its policy holders.
This kind of situation could also have a negative impact if data is mined by an employer or potential employer, landlord or credit card company.
This type of nightmare scenario may have recently been addressed in federal legislation which now places certain nominal limits on the use and sharing of health and financial information contained in your insurance company and other financial institutions’ databases. Many of you have been receiving unintelligible little pieces of fine print forms in your monthly statements asking you if you wish to opt out or opt in. These forms cannot be ignored. If you wish to protect your privacy you must read them, attempt to understand them and mail them back to your companies. If you fail to do so the default is that these companies CAN SHARE your personal financial information.
What can the average Web surfer do?
Understand what cookies are
Make sure your browser’s security settings are at your desired risk level
Purge-delete your cookies from time to time
AVOID providing personal information in the first place. If you know you may be surfing on dubious sites, create a new screen name and e-mail address and use that for those surfing sessions, then delete that screen name and e-mail address.
Never reply to spam (unsolicited sales pitches by e-mail)
Never use the REMOVE ME features that spammers offer – they only serve to verify to the spammer that they are reaching a viable e-mail address and you will be rewarded with ten times more spam mail (try it sometime with a dummy e-mail account and see all the spam that follows)
Unless absolutely necessary, never provide truthful personal information in online surveys or forms (respondents claiming to have high net worth, or high disposable income are more likely to receive more and more offers and will be more attractive to spammers)
MOST important: be vigilant!
There are many benefits of Web surfing and enormous amounts of valuable information online, but you must be constantly aware that you are NOT alone out there in cyberspace.
© 2001 by Harvey S. Jacobs, Esq.
Article by Isaac Ferreira, visit www.onlinetransmissions.com for related articles.
| DISCLAIMER: The content provided in this article is not warranted or guaranteed by Developer Shed, Inc. The content provided is intended for entertainment and/or educational purposes in order to introduce to the reader key ideas, concepts, and/or product reviews. As such it is incumbent upon the reader to employ real-world tactics for security and implementation of best practices. We are not liable for any negative consequences that may result from implementing any information covered in our articles or tutorials. If this is a hardware review, it is not recommended to open and/or modify your hardware. |
More How To Articles
More By Developer Shed
 developerWorks - FREE Tools!
|
As businesses grow increasingly dependent upon Web applications to provide services to customers, employees and partners, these complex applications become more difficult to secure. Although traditional security solutions protect Internet infrastructure layers, they do not guard against HTTP and HTML attacks. Many organizations that conduct security testing still deploy applications that allow attackers to manipulate their logic and wreak havoc on their business. To mitigate this risk, development and delivery teams must address Web application security throughout the lifecycle, addressing the many layers detailed in this paper.
FREE! Go There Now!
|
|
|
|
Effective governance for lean development isn’t about command and control. Instead, the focus is on enabling the right behaviors and practices through collaborative and supportive techniques. Hear from Scott Ambler on how it is far more effective to motivate people to do the right thing than it is to force them to do so. Learn how to form a lightweight, collaboration-based framework that reflects the realities of modern IT organizations.
FREE! Go There Now!
|
|
|
|
This whitepaper presents the benefits of successfully introducing static analysis into your organization using IBM Rational Software Analyzer. Additionally, it identifies some common pitfalls that can hinder the effective use of static analysis tooling as well as presents 10 simple strategies designed to help you quickly realize the value of static analysis using Rational Software Analyzer.
FREE! Go There Now!
|
|
|
|
CakePHP is a stable production-ready, rapid-development aid for building Web sites in PHP. This "Cook up Web sites fast with CakePHP" series shows you how to build an online product catalog using CakePHP.
FREE! Go There Now!
|
|
|
|
Download a free trial version of IBM Rational Developer for System z, software that can help you deliver core development capabilities; the power of Java Platform, Enterprise Edition (Java EE); and rapid application development support to diverse enterprise application development teams. With comprehensive development tools to help create, deploy and maintain traditional enterprise and composite applications, Rational Developer for System z enables developers with different technical backgrounds to easily participate in important technology projects.
FREE! Go There Now!
|
|
|
|
Download a free trial version of IBM Rational Developer for System i V7.1, which provides a complete development environment for traditional i5/OS application development. IBM Rational Developer for System i is a new eclipse-based workstation offering for i5/OS application development that provides a comprehensive Integrated Development Environment for edit/compile/debug of traditional RPG/COBOL/C/C++ i5/OS applications.
FREE! Go There Now!
|
|
|
|
Visit IBM developerWorks to download a free trial version of WebSphere Extended Deployment Compute Grid, which lets you schedule, execute, and monitor batch jobs. Because online transaction processing and batch jobs execute simultaneously on the same server resources, you can avoid costly duplication of resources. Compute Grid supports job types of Java transactional batch, compute-intensive and a new type called "native execution", which enables non-Java workloads to run on distributed end points.
FREE! Go There Now!
|
|
|
|
Learn how to implement a build management system that uses and extends your existing automation technologies. This tutorial shows, step-by-step, how to install and configure IBM Rational Build Forge to manage builds for Jakarta Tomcat from source code.
FREE! Go There Now!
|
|
|
|
In this webcast, you'll get an introduction to the eXtreme Transaction Processing (XTP) features of WebSphere Extended Deployment and the common architectural traits required by XTP applications. See how WebSphere Extended Deployment's ObjectGrid feature provides a state-of-the-art infrastructure for hosting XTP applications.
FREE! Go There Now!
|
|
|
|
IBM Lotus Notes 8 provides a wide range of developers the ability to provide customized, integrated user interfaces via composite applications and via custom sidebar and toolbar plug-ins. This webcast provides you with tips and techniques to use with out-of-the-box capabilities of Lotus Notes 8, and survey how you can share useful components within your own company and within a larger community.
FREE! Go There Now!
|
|
|
|
All FREE IBM® developerWorks Tools!
|
