Featured Research

from universities, journals, and other organizations

When friends create enemies: Facebook's mutual-friends feature may create security risks, privacy concerns

Date:
May 30, 2013
Source:
University of Pittsburgh
Summary:
Often revered for bringing people together, the mutual-friends feature on Facebook actually creates myriad security risks and privacy concerns according to a new study.

The mutual-friends feature on social networks such as Facebook, which displays users' shared friendships, might not be so "friendly."

Often revered for bringing people together, the mutual-friends feature on Facebook actually creates myriad security risks and privacy concerns according to a University of Pittsburgh study published in Computers & Security. The study demonstrates that even though users can tailor their privacy settings, hackers can still find private information through mutual-friends features.

"Oftentimes, mutual-friends features have not been created in tandem with privacy setting designs, and inadequate thought with regards to security and privacy issues has been given," said James Joshi, principal investigator of the study and associate professor of information assurance and security in Pitt's School of Information Sciences. "With such a huge user base in such systems, a minor privacy breach can have a significant impact."

Together with his colleagues -- Mohd Anwar, a former faculty member in Pitt's School of Information Sciences and now assistant professor at North Carolina A&T State University, and Lei Jin, a PhD candidate in Pitt's School of Information Sciences -- Joshi examined three different types of attacks on social network users using an offline Facebook dataset containing 63,731 users from the New Orleans regional network. This dataset (chosen because it was open to the public) also included more than a million friend links.

Using computer simulation programs, the researchers first demonstrated a "friend exposure" attack, exploring how many private friends an "attacker" could find of a specific target user. The attacks were tested on 10 randomly chosen user groups with sizes ranging between 500 and 5,000 individuals, as well as sample groups that were computer generated based on shared interests across user profiles. The same process was used for the "distant neighbor exposure attack," through which the attacker's goal was to identify private distant neighbors from the initial target. These distant neighbors indicate users that are friends of friends of the target user (two degrees of separation) or even friends of friends of friends of the target user (three degrees of separation).

Finally, the team initiated a "hybrid attack," in which an attacker tried to identify both the target's private friends and distant neighbors.

They found that an attacker identified more than 60 percent of a target's private friends in the "mutual-friend based attack." Likewise, an attacker could find, on average, 67 percent of a target's private distant neighbors by using 100 compromised user accounts.

"Being able to see mutual friends may allow one to find out important and private social connections of a targeted user," said Joshi. "An attacker can infer such information as political affiliations or private information that could be socially embarrassing. More importantly, the information that's gathered could be used, in combination with other background information about the targeted user, to create false identities that appear even more authentic than the actual user."

"It is important to understand all possible privacy threats to users of social networking sites so that appropriate mechanisms can be developed. This work of ours is an effort to comprehensively understand such threats related to the mutual-friend feature so that appropriate measures can be taken."

Joshi cites the need for better privacy-protection settings to mitigate the problem -- but those that can also be easily navigated by users.


Story Source:

The above story is based on materials provided by University of Pittsburgh. Note: Materials may be edited for content and length.


Journal Reference:

  1. Lei Jin, James B.D. Joshi, Mohd Anwar. Mutual-friend based attacks in social network systems. Computers & Security, 2013; 37: 15 DOI: 10.1016/j.cose.2013.04.003

Cite This Page:

University of Pittsburgh. "When friends create enemies: Facebook's mutual-friends feature may create security risks, privacy concerns." ScienceDaily. ScienceDaily, 30 May 2013. <www.sciencedaily.com/releases/2013/05/130530132437.htm>.
University of Pittsburgh. (2013, May 30). When friends create enemies: Facebook's mutual-friends feature may create security risks, privacy concerns. ScienceDaily. Retrieved July 25, 2014 from www.sciencedaily.com/releases/2013/05/130530132437.htm
University of Pittsburgh. "When friends create enemies: Facebook's mutual-friends feature may create security risks, privacy concerns." ScienceDaily. www.sciencedaily.com/releases/2013/05/130530132437.htm (accessed July 25, 2014).

Share This




More Science & Society News

Friday, July 25, 2014

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

New Painkiller Designed To Discourage Abuse: Will It Work?

New Painkiller Designed To Discourage Abuse: Will It Work?

Newsy (July 24, 2014) The FDA approved Targiniq ER on Wednesday, a painkiller designed to keep users from abusing it. Like any new medication, however, it has doubters. Video provided by Newsy
Powered by NewsLook.com
Condemned Man's US Execution Takes Nearly Two Hours

Condemned Man's US Execution Takes Nearly Two Hours

AFP (July 24, 2014) America's death penalty debate raged Thursday after it took nearly two hours for Arizona to execute a prisoner who lost a Supreme Court battle challenging the experimental lethal drug cocktail. Duration: 00:55 Video provided by AFP
Powered by NewsLook.com
Bill Gates: Health, Agriculture Key to Africa's Development

Bill Gates: Health, Agriculture Key to Africa's Development

AFP (July 24, 2014) Health and agriculture development are key if African countries are to overcome poverty and grow, US software billionaire Bill Gates said Thursday, as he received an honourary degree in Ethiopia. Duration: 00:36 Video provided by AFP
Powered by NewsLook.com
China's Ageing Millions Look Forward to Bleak Future

China's Ageing Millions Look Forward to Bleak Future

AFP (July 24, 2014) China's elderly population is expanding so quickly that children struggle to look after them, pushing them to do something unexpected in Chinese society- move their parents into a nursing home. Duration: 02:07 Video provided by AFP
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:

Breaking News:
from the past week

In Other News

... from NewsDaily.com

Science News

    Health News

      Environment News

        Technology News



          Save/Print:
          Share:

          Free Subscriptions


          Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

          Get Social & Mobile


          Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

          Have Feedback?


          Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
          Mobile: iPhone Android Web
          Follow: Facebook Twitter Google+
          Subscribe: RSS Feeds Email Newsletters
          Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins