Every day we publish an impressive amount of information about ourselves online: Pictures, videos, tweets, posts, and check-ins. These (big) data tell the story of our public lives and, at first, are seemingly innocuous. Nonetheless, they reveal a great deal of information about the things that we wished to remain private too. The goal of this work is to demonstrate how an attacker can exploit these data to jeopardize our privacy. In particular, we focus on Happn, a location-based dating app that counts millions of users worldwide. Happn's goal is to let us find other users in our surroundings. It shows us their first name, age, and gender, their pictures, and their short bio. In addition, it tells us their approximate distance from our current location. By exploiting this information we show how an attacker (a stalker, a data broker, an advertisement company, etc.) can expose the private lives of Happn users and pinpoint their geographic position accurately and in real-time. In fact, we demonstrate how he can get even more detailed knowledge about the users by targeting all the population from a specific region (a city or a country) to discover their daily routines, where they work, where they live, and where they have fun. Finally, we show how to find out the social relationships between the Happn users: Uncovering who their friends, colleagues, relatives, and flatmates are.

Uncovering Hidden Social Relationships Through Location-Based Services: The Happn Case Study / Di Luzio, Adriano; Mei, Alessandro; Stefa, Julinda. - STAMPA. - (2018), pp. 802-807. (Intervento presentato al convegno IEEE INFOCOM 2018 BigSecurity 2018: The International Workshop on Security and Privacy in Big Data tenutosi a Honolulu, USA) [10.1109/INFCOMW.2018.8406866].

Uncovering Hidden Social Relationships Through Location-Based Services: The Happn Case Study

Adriano Di Luzio;Alessandro Mei;Julinda Stefa
2018

Abstract

Every day we publish an impressive amount of information about ourselves online: Pictures, videos, tweets, posts, and check-ins. These (big) data tell the story of our public lives and, at first, are seemingly innocuous. Nonetheless, they reveal a great deal of information about the things that we wished to remain private too. The goal of this work is to demonstrate how an attacker can exploit these data to jeopardize our privacy. In particular, we focus on Happn, a location-based dating app that counts millions of users worldwide. Happn's goal is to let us find other users in our surroundings. It shows us their first name, age, and gender, their pictures, and their short bio. In addition, it tells us their approximate distance from our current location. By exploiting this information we show how an attacker (a stalker, a data broker, an advertisement company, etc.) can expose the private lives of Happn users and pinpoint their geographic position accurately and in real-time. In fact, we demonstrate how he can get even more detailed knowledge about the users by targeting all the population from a specific region (a city or a country) to discover their daily routines, where they work, where they live, and where they have fun. Finally, we show how to find out the social relationships between the Happn users: Uncovering who their friends, colleagues, relatives, and flatmates are.
2018
IEEE INFOCOM 2018 BigSecurity 2018: The International Workshop on Security and Privacy in Big Data
Location based services; privacy
04 Pubblicazione in atti di convegno::04b Atto di convegno in volume
Uncovering Hidden Social Relationships Through Location-Based Services: The Happn Case Study / Di Luzio, Adriano; Mei, Alessandro; Stefa, Julinda. - STAMPA. - (2018), pp. 802-807. (Intervento presentato al convegno IEEE INFOCOM 2018 BigSecurity 2018: The International Workshop on Security and Privacy in Big Data tenutosi a Honolulu, USA) [10.1109/INFCOMW.2018.8406866].
File allegati a questo prodotto
File Dimensione Formato  
Stefa_Uncovering_2018.pdf

solo gestori archivio

Tipologia: Documento in Post-print (versione successiva alla peer review e accettata per la pubblicazione)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 1.2 MB
Formato Adobe PDF
1.2 MB Adobe PDF   Contatta l'autore
Stefa_Uncovering_2018.pdf

solo gestori archivio

Tipologia: Versione editoriale (versione pubblicata con il layout dell'editore)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 1.19 MB
Formato Adobe PDF
1.19 MB Adobe PDF   Contatta l'autore

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11573/1101255
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 4
  • ???jsp.display-item.citation.isi??? 1
social impact