From the Back Cover
Introducing the long-awaited first step to personal privacy on the Web!
Privacy on the Internet is a very complicatedand delicatesubject. It is about making sure that sites are honest with the people using their services, and providing the end user with the choice of whether or not to share information with the original server.
The Platform for Privacy Preferences Project (P3P), an emerging industry standards set developed by the World Wide Web Consortium (W3C), provides a simple way for users to gain more control over the use of personal information on the Web sites they visit. By using P3P to encode privacy policies in XML format, browsers can interpret whether a Web site meets an individuals privacy standards and alert the user when a site does not.
Written by experts, this is the first book to show systems architects how to embed and design a Web site that is compliant with P3P. The authors provide detailed descriptions of the P3P standard and its parameters, as well as guidelines, explanations, and P3P how-to examples that you can follow. In addition to the detailed example of how to encode a Web sites P3P policy with XML and a complete XML tutorial appendix, youll also learn valuable information such as:
- Vulnerabilities and threats to Internet security
- The lowdown on log files, cookies, spam, Web bugs, and tracking
- P3P policies and policy reference files
- P3P and the mobile Internet
About the Author
HELENA LINDSKOG is Privacy Manager at Ericsson Service Networks and Applications, and is the inventor of a number of Ericsson patents. She is also involved in standardization, and is part of the W3C P3P working group. She has published many papers and given frequent presentations around privacy-related problems, and is often consulted as an expert by the European Commission.
STEFAN LINDSKOG is a lecturer at the department of computer science at Karlstad University in Sweden. His research focuses on computer and network security, especially methods for analysis and categorization of intrusions and vulnerabilities. He is a member of IEEE and ISSEA.