Privacy: What Developers and IT Professionals Should Know - Softcover

Cannon, J. C.

9780321617774: Privacy: What Developers and IT Professionals Should Know

Softcover

ISBN 10: 0321617770 ISBN 13: 9780321617774

Publisher: Addison-Wesley Professional, 2004

When you are on a Web site you don't know well, and you are asked to complete an online form, if you are like most people you immediately weigh in your mind issues of how private the information you provide will be kept. Studies have shown that 64% of consumers have left a Web site because of concerns about privacy, and that online retailers lose $6.2 billion a year in sales because of privacy issues. Lack of privacy conditions in building an application or a web site is a liability; conversely, a web site where the consumer feels that their privacy will be guarded is a competitive advantage. In our securityconscious world privacy is a topic of concern right up there with identity theft and spam. Yet until now there has not been one source of information for developers on how to develop applications and web sites that will take into consideration privacy concerns. JC Cannon draws upon the experience he has learned from his role in the corporate privacy group at Microsoft to give developers a complete guide to including privacy in their development process.It covers topics such as spam, digital rights management, the Platform for Privacy Preferences (P3P) project, and protecting database data.

"synopsis" may belong to another edition of this title.

From the Back Cover:

Praise for J.C. Cannon's Privacy

"A wonderful exploration of the multifaceted work being done to protect the privacy of users, clients, companies, customers, and everyone in between."

–Peter Wayner, author of Translucent Databases

"Cannon provides an invaluable map to guide developers through the dark forest created by the collision of cutting-edge software development and personal privacy."

–Eric Fredericksen, Sr. Software Engineer, PhD., Foundstone, Inc.

"Cannon's book is the most comprehensive work today on privacy for managers and developers. I cannot name any technical areas not covered. No practitioners should miss it."

–Ray Lai, Principal Engineer, Sun Microsystems, Inc., co-author of Core Security Patterns and author of J2EE Platform Web Services

"Every developer should care deeply about privacy and this is the best book I've read on the subject. Get it, read it, and live it."

–Keith Ballinger, Program Manager, Advanced Web Services, Microsoft

"J.C. Cannon's book demonstrates that information and communication technology can contribute in a significant way to restoring individual privacy and raises more awareness of the complexity and importance of this societal problem."

–Dr. John J. Borking, Former Commissioner and Vice-President of the Dutch Data Protection Authority

"If you are planning, implementing, coding, or managing a Privacy campaign in your company or your personal computing, there is no more relevant reference. J.C. Cannon nails the issues."

–Rick Kingslan, CISSP, Microsoft MVP-Windows Server: Directory Services and Right Management, West Corporation

"It's often been said that security is a process, not a product. Privacy is no different! Unlike other privacy books, J.C. Cannon's book has something valuable to convey to everyone involved in the privacy process, from executives to designers and developers, many of whom aren't thinking about privacy but should be."

–Keith Brown, Co-founder of Pluralsight and author of The .NET Developer's Guide to Windows Security and Programming Windows Security

"J.C. Cannon's new book on electronic privacy is an important addition to the available works in this emerging field of study and practice. Through many humorous (and occasionally frightening) examples of privacy gone wrong, J.C. helps you better understand how to protect your privacy and how to build privacy awareness into your organization and its development process. Keenly illustrating both the pros and cons of various privacy-enhancing and potentially privacy-invading technologies, J.C.'s analysis is thorough and well-balanced. J.C. also explains many of the legal implications of electronic privacy policies and technologies, providing an invaluable domestic and international view."

–Steve Riley, Product Manager, Security Business and Technology Unit, Windows Division, Microsoft

"Privacy concerns are pervasive in today's high-tech existence. The issues covered by this book should be among the foremost concerns of developers and technology management alike."

–Len Sassaman, Security Architect, Anonymizer, Inc.

You're responsible for your customers' private information. If you betray their trust, it can destroy your business. Privacy policies are no longer enough. You must make sure your systems truly protect privacy–and it isn't easy. That's where this book comes in.

J.C. Cannon, Microsoft's top privacy technology strategist, covers every facet of protecting customer privacy, both technical and organizational. You'll learn how to systematically build privacy safeguards into any application, Web site, or enterprise system, in any environment, on any platform. You'll discover the best practices for building business infrastructure and processes that protect customer privacy. You'll even learn how to help your customers work with you in protecting their own privacy. Coverage includes

How privacy and security relate–and why security isn't enough
Understanding your legal obligations to protect privacy
Contemporary privacy policies, privacy-invasive technologies, and privacy-enhancing solutions
Auditing existing systems to identify privacy problem areas
Protecting your organization against privacy intrusions
Integrating privacy throughout the development process
Developing privacy-aware applications: a complete sample application
Building a team to promote customer privacy: staffing, training, evangelization, and quick-response
Protecting data and databases via role-based access control
Using Digital Rights Management to restrict customer information
Privacy from the customer's standpoint: spam avoidance, P3P, and other tools and resources

Whether you're a manager, IT professional, developer, or security specialist, this book delivers all the information you need to protect your customers–and your organization.

About the Author:

J. C. Cannon is a privacy strategist in the Corporate Privacy Group at Microsoft. He works as a technical strategist for the team, focusing on ways to apply technology to applications that will give consumers better control over their privacy and enable developers to create privacy-aware applications. J. C. works closely with Microsoft product groups and Microsoft research, and gives presentations to developers from other companies on building privacy in to their applications. Prior to this role, J. C. was a program manager for Active Directory for two and a half years. In this role, he worked with developers and independent software vendors on integration strategies for Active Directory and applications. He has written several white papers on Active Directory integration, which are on MSDN, and has given presentations on Active Directory integration techniques at major Microsoft conferences.

Before coming to Microsoft in 1998, he spent ten years as a software consultant helping companies integrate Microsoft technologies into their applications and businesses. Previous to becoming a consultant, J. C. worked as a software developer for companies in the United States, England, France, and Sweden. J. C. started his career in software in 1979 after ending his six-year career in the U.S. Navy, where he fixed avionics for A6 aircraft. Three of those years were spent working on the flight deck of aircraft carriers. J. C. received his Bachelor of Science degree in mathematics from the University of Texas at Dallas.

"About this title" may belong to another edition of this title.