Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Browser extension allows users to express their email privacy expectations

New email privacy project relies on people's respect for social norms rather than enforcing them with technology

A team of privacy researchers and product designers from Europe and the U.S. have released a browser-based implementation of Privicons, a project that aims to provide users with a simple method of expressing their expectations of privacy when sending email.

Privicons is a set of icons accompanied by short descriptions that can be appended to email in order to instruct recipients about how to handle a message or its content.

There are a total of six icons, each with a special significance, that can be represented as graphics or ASCII art. This makes them suitable for email in both HTML and text-only formats.

The instructions accompanying the icons are: don't attribute (anonymous), keep private, keep internal, don't print, please share, and delete after reading or a specified number of days.

The use of such icons in email communication was first proposed in November 2010, but it took one year for the project to materialize.

The first implementation consists of a browser extension for Google Chrome that works with Gmail. However, its developers also plan to release a Firefox add-on to serve the same purpose in the near future.

Once the Chrome extension is installed, the option to add privicons will be available on the Gmail window for composing messages. The button is located next to the one for attaching files, but it doesn't seem to be present in the new Gmail interface that's being rolled out by Google.

The icons and corresponding instructions are added on separate lines at the beginning of the email messages, together with links to additional information. Their ASCII representation is also added to the subject line.

The Privicons project stands apart from other email privacy efforts because it relies on user choice instead of technological enforcement. The people who support the project strongly believe that, given the chance, most users will respect the instructions expressed through these icons because they are similar to other social norms.

In fact, user choice is so important for the project, that developers who create email user agents are instructed in an Internet draft submitted to the Internet Engineering Task Force (IETF) to provide the option of overruling Privicons if they choose to implement the standard.

"Privicons embraces the concept of code-based norms approach," the developers said in their proposal. "The approach is grounded in reminder over hard-coded solutions that indiscriminately restrict speech," they added.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Google, IETF, Internet Engineering Task Force
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: privacy, security
Latest Blog Posts
Whitepapers
  • OVUM Report: Governance Risk and Compliance-- GRC usage and buying trends in the ANZ markets
    The existence of an established and stable governance risk and compliance strategy is extremely important to public and private sector organisations as they strive to meet an evergrowing range of regulatory demands. Given the current constraints, it is one of the few areas where the vast majority of organisations intend to either maintain or in many cases increase spending. Read more.
    Learn more »
  • Endpoint Buyers Guide
    It takes more than antivirus to stop today’s advanced threats. Protecting corporate assets requires a complete security solution that includes anti-malware, host-based intrusion prevention (HIPS), web protection, patch assessment, application and device control, network access control, data loss prevention, firewall and other capabilities. In short, you need an endpoint protection solution. We examine the top vendors according to market share and industry analysis: Kaspersky Lab, McAfee, Sophos, Symantec and Trend Micro. Each vendor’s solutions are evaluated according to: Product features and capabilities, Effectiveness, Performance, Usability, Data protection, and Technical support.
    Learn more »
  • Restore control, Reinforce security & Reduce Cost
    Uncontrolled print environments and practices present a serious risk to the profit and security of your organisation. IT is under pressure to protect sensitive information, secure devices, and improve the way they manage the entire fleet. To gain better control, your organisation needs to implement plans that meet industry regulations while also increasing productivity, lowering costs, and providing users with more flexible imaging and printing solutions. Read more.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments