Table of Contents

Terminology

Privacy: What Are We Actually Talking About? A Multidisciplinary Approach Philip Schutz Michael Friedewald 1

Implementability of the Identity Management Part in Pfitzmann/Hansen's Terminology for a Complex Digital World Manuela Berg Katrin Borcea-Pfitzmann 15

Privacy Metrics

Towards a Formal Language for Privacy Options Stefan Berthold 27

Using Game Theory to Analyze Risk to Privacy: An Initial Insight Lisa Rajbhandari Einar Arthur Snekkenes 41

A Taxonomy of Privacy and Security Risks Contributing Factors Ebenezer Paintsil Lothar Fritsch 52

Ethical, Social, and Legal Aspects

ETICA Workshop on Computer Ethics: Exploring Normative Issues Bernd Carsten Stahl Catherine Flick 64

Contextualised Concerns: The Online Privacy Attitudes of Young Adults Michael Dowd 78

Data Protection, Privacy and Identity: Distinguishing Concepts and Articulating Rights Norberto Nuno Gomes de Andrade 90

Data Protection and Identity Management

Oops - We Didn't Mean to Do That! - How Unintended Consequences Can Hijack Good Privacy and Security Policies Thomas P. Keenan 108

Supporting Semi-automated Compliance Control by a System Design Based on the Concept of Separation of Concerns Sebastian Haas Ralph-Herkenhoner Denis Royer Ammar Alkassar Hermann de Meer Günter Müller 120

Security Levels for Web Authentication Using Mobile Phones Anna Vapen Nahid Shahmehri 130

eID Cards and eID Interoperability

Challenges of eID Interoperability: The STORK Project (Keynote) Herbert Leitold 144

Necessary Processing of Personal Data: The Need-to-Know Principle and Processing Data from the New German Identity Card Harold Zwingelberg 151

A Smart Card Based Solution for User-Centric Identity Management Jan Vossaert Pieter Verhaeghe Bart De Decker Vincent Naessens 164

Emerging Technologies

The Uncanny Valley Everywhere? On Privacy Perception and Expectation Management (Keynote) Bibi van den Berg 178

50 Ways to Break R.FID Privacy Ton van Deursen 192

Privacy for eGovernment and AAL Applications

The Limits of Control - (Governmental) Identity Management from a Privacy Perspective Stefan Strauβ 206

Privacy Concerns in a Remote Monitoring and Social Networking Platform for Assisted Living Peter Rothenpieler Claudia Becker Stefan Fischer 219

Social Networks and Privacy Privacy

Settings in Social Networking Sites: Is It Fair? Aleksandra Kuczerawy Fanny Coudert 231

Privacy Effects of Web Bugs Amplified by Web 2.0 Jaromir Dobias 244

Privacy Policies

A Conceptual Model for Privacy Policies with Consent and Revocation Requirements Marco Casassa Mont Siani Pearson Sadie Creese Michael Goldsmith Nick Papanicolaou 258

Applying Formal Methods to Detect and Resolve Ambiguities in Privacy Requirements loannis Agrafiotis Sadie Creese Michael Goldsmith Nick Papanikolaou 271

A Decision Support System for Design for Privacy Siani Pearson Azzedine Benameur 283

A Multi-privacy Policy Enforcement System Kaniz Fatema David W. Chadwick Stijn Lievens 297

Usable Privacy

Designing Usable Online Privacy Mechanisms: What Can We Learn from Real World Behaviour? Periambal L. Coopamootoo Debi Ashenden 311

PrimeLife Checkout - A Privacy-Enabling e-Shopping User Interface Ulrich König 325

Towards Displaying Privacy Information with Icons Leif-Erik Holtz Katharina Nocun Marit Hansen 338

Obituary

Andreas Pfitzmann 1958-2010: Pioneer of Technical Privacy Protection in the Information Society Hannes Federrath Marit Hansen Michael Waidner 349

Author Index 353