Virtual individual servers as privacy-preserving proxies for mobile devices

People increasingly generate content on their mobile devices and upload it to third-party services such as Facebook and Google Latitude for sharing and backup purposes. Although these services are convenient and useful, their use has important privacy implications due to their centralized nature and their acquisitions of rights to user-contributed content. This paper argues that people's interests would be be better served by uploading their data to a machine that they themselves own and control. We term these machines Virtual Individual Servers (VISs) because our preferred instantiation is a virtual machine running in a highly-available utility computing infrastructure. By using VISs, people can better protect their privacy because they retain ownership of their data and remain in control over the software and policies that determine what data is shared with whom. This paper also describes a range of applications of VIS proxies. It then presents our initial implementation and evaluation of one of these applications, a decentralized framework for mobile social services based on VISs. Our experience so far suggests that building such applications on top of the VIS concept is feasible and desirable.

[1]  Sonja Buchegger,et al.  A case for P2P infrastructure for social networks - opportunities & challenges , 2009, 2009 Sixth International Conference on Wireless On-Demand Network Systems and Services.

[2]  M. Hansen,et al.  Participatory Sensing , 2019, Internet of Things.

[3]  Roy Want,et al.  The Personal Server: Changing the Way We Think about Ubiquitous Computing , 2002, UbiComp.

[4]  Romit Roy Choudhury,et al.  Realtime location privacy via mobility prediction: creating confusion at crossroads , 2009, HotMobile '09.

[5]  Mahadev Satyanarayanan,et al.  The case for cyber foraging , 2002, EW 10.

[6]  H. Lim,et al.  Vis-à-Vis : Online Social Networking via Virtual Individual Ser vers , 2008 .

[7]  Ling Liu,et al.  Location Privacy in Mobile Systems: A Personalized Anonymization Model , 2005, 25th IEEE International Conference on Distributed Computing Systems (ICDCS'05).

[8]  R. Cáceres,et al.  Mobile Social Services via Virtual Individual Servers , 2008 .

[9]  Brian D. Noble,et al.  LoKey: Leveraging the SMS Network in Decentralized, End-to-End Trust Establishment , 2006, Pervasive.

[10]  Ramón Cáceres,et al.  Vis-à-Vis: Privacy-preserving online social networking via Virtual Individual Servers , 2011, 2011 Third International Conference on Communication Systems and Networks (COMSNETS 2011).

[11]  Antony I. T. Rowstron,et al.  Pastry: Scalable, Decentralized Object Location, and Routing for Large-Scale Peer-to-Peer Systems , 2001, Middleware.

[12]  Deborah Estrin,et al.  PEIR, the personal environmental impact report, as a platform for participatory sensing systems research , 2009, MobiSys '09.

[13]  Hui Xiong,et al.  Preserving privacy in gps traces via uncertainty-aware path cloaking , 2007, CCS '07.

[14]  James Aspnes,et al.  Skip graphs , 2003, SODA '03.

[15]  Mike Hibler,et al.  An integrated experimental environment for distributed systems and networks , 2002, OPSR.

[16]  Refik Molva,et al.  Privacy preserving social networking through decentralization , 2009, 2009 Sixth International Conference on Wireless On-Demand Network Systems and Services.

[17]  Miguel Castro,et al.  Scalable Application-Level Anycast for Highly Dynamic Groups , 2003, Networked Group Communication.