IEEE Security & Privacy, Год журнала: 2023, Номер 22(1), С. 53 - 62
Опубликована: Дек. 11, 2023
We outline privacy concerns and challenges associated with adopting virtual reality technologies in established social contexts using the theory of contextual integrity, examining information flows within between real environments that could violate existing norms.
Язык: Английский
Journal of Network and Computer Applications, Год журнала: 2024, Номер 231, С. 103989 - 103989
Опубликована: Авг. 2, 2024
The metaverse is a nascent concept that envisions virtual universe, collaborative space where individuals can interact, create, and participate in wide range of activities. Privacy the critical concern as evolves immersive experiences become more prevalent. privacy problem refers to challenges concerns surrounding personal information data within Virtual Reality (VR) environments shared VR becomes accessible. Metaverse will harness advancements from various technologies such Artificial Intelligence (AI), Extended (XR) Mixed (MR) provide personalized services its users. Moreover, enable experiences, relies on collection fine-grained user leads issues. Therefore, before potential be fully realized, related must addressed. This includes safeguarding users' control over their data, ensuring security information, protecting in-world actions interactions unauthorized sharing. In this paper, we explore future metaverses are expected face, given reliance AI for tracking users, creating XR MR facilitating interactions. thoroughly analyze technical solutions differential privacy, Homomorphic Encryption, Federated Learning discuss sociotechnical issues regarding privacy.
Язык: Английский
Процитировано
11
Proceedings on Privacy Enhancing Technologies, Год журнала: 2023, Номер 2023(4), С. 238 - 256
Опубликована: Авг. 3, 2023
Fifty study participants playtested an innocent-looking "escape room" game in virtual reality (VR). Within just a few minutes, adversarial program had accurately inferred over 25 of their personal data attributes, from anthropometrics like height and wingspan to demographics age gender. As notoriously data-hungry companies become increasingly involved VR development, this experimental scenario may soon represent typical user experience. Since the Cambridge Analytica scandal 2018, adversarially-designed gamified elements have been known constitute significant privacy threat conventional social platforms. In work, we present case how metaverse environments can similarly be adversarially constructed covertly infer dozens attributes seemingly-anonymous users. While existing research largely focuses on passive observation, argue that because individuals subconsciously reveal information via motion response specific stimuli, active attacks pose outsized risk environments.
Язык: Английский
Процитировано
19
2022 IEEE Conference on Virtual Reality and 3D User Interfaces Abstracts and Workshops (VRW), Год журнала: 2024, Номер unknown, С. 493 - 500
Опубликована: Март 16, 2024
Virtual
reality
(VR)
and
"metaverse"
systems
have
recently
seen
a
resurgence
in
interest
investment
as
major
technology
companies
continue
to
enter
the
space.
However,
recent
studies
demonstrated
that
motion
tracking
"telemetry"
data
used
by
nearly
all
VR
applications
is
uniquely
identifiable
fingerprint
scan,
raising
significant
privacy
concerns
surrounding
metaverse
technologies.
In
this
paper,
we
propose
new
"deep
masking"
approach
scalably
facilitates
real-time
anonymization
of
telemetry
data.
Through
large-scale
user
study
Язык: Английский
Процитировано
4
Опубликована: Март 8, 2025
Язык: Английский
Процитировано
0
Computer Animation and Virtual Worlds, Год журнала: 2025, Номер 36(2)
Опубликована: Март 1, 2025
ABSTRACT In this paper, we present an approach to build a biometric system capable of identifying subjects based on gait. The experiments were carried out with proprietary gait corpus collected from 100 subjects. the data acquisition process, used commercially available perception neuron body suit equipped motion sensors and dedicated entertainment in VR domain. Classification was performed using two variants CNN architecture evaluated cross‐day validation. A novelty presented exploration research areas related usage synthetically generated samples. Experiments conducted for types preprocessing—a low‐pass filtering signals 3rd‐ or 1st‐order Butterworth filter. For first variant, synthetic samples by long short‐term memory‐mixture density network (LSTM‐MDN) model allowed us increase F1‐score 0.928 0.966. Meanwhile, second case 0.970 0.978 F1‐score.
Язык: Английский
Процитировано
0
JMIR XR and spatial computing., Год журнала: 2024, Номер 1, С. e59409 - e59409
Опубликована: Сен. 1, 2024
Abstract Background Virtual reality (VR) is a type of extended (XR) technology that seeing increasing adoption in health care. There robust evidence articulating how consumer-grade VR presents significant cybersecurity and privacy risks due to the often ubiquitous wide range data collection user monitoring, as well unique impact attacks immersive nature technology. However, little known about these translate use systems care settings. Objective The objective this scoping review identify potential associated with clinical XR systems, focus on VR, mitigations for them. Methods followed PRISMA-ScR (Preferred Reporting Items Systematic reviews Meta-Analyses extension Scoping Reviews), publications were reviewed using Covidence software. Google Scholar database was searched predefined search terms. inclusion criteria articles restricted relevant primary studies published from 2017 2024. Furthermore, reviews, abstracts, viewpoints, opinion pieces, low-quality excluded. Additionally, publication statistics, topic, technology, cyber threats, risk mitigation extracted. These synthesized analyzed STRIDE (spoofing, tampering, repudiation, information disclosure, denial service, elevation privilege) framework, enterprise management National Institute Standards Technology Cybersecurity Framework, developing threat taxonomies. Results returned 482 matched criteria. After title abstract screening, 53 extracted full-text review, which 29 included analysis. Of these, majority last 4 years had VR. greatest identified components disclosure by tampering when mapped against framework. strategies provide confidentiality integrity can potentially address threats. Only 3 papers mention context none threats or have been studied setting. Conclusions This where personal health-related may be inferred usage data, breaching confidentiality, most posited systems. manipulation highlighted, could safety launched compromised system. Many but must first assessed their effectiveness suitability services. services should consider governance each individual application based threshold perceived benefits. Finally, it also important note limited quality scope Scholar.
Язык: Английский
Процитировано
3
2022 IEEE Symposium on Security and Privacy (SP), Год журнала: 2024, Номер 17, С. 1554 - 1572
Опубликована: Май 19, 2024
Recent years have seen a sharp increase in the number of underage users virtual reality (VR), where security and privacy (S&P) risks such as data surveillance self-disclosure social interaction been increasingly prominent.Prior work shows children largely rely on parents to mitigate S&P their technology use.Therefore, understanding parents' knowledge, perceptions, practices is critical for identifying gaps parents, designers, policymakers enhance children's S&P.While empirical knowledge substantial other consumer technologies, it remains unknown context VR.To address gap, we conducted in-depth semi-structured interviews with 20 under age 18 who use VR at home.Our findings highlight generally lack awareness due perception that still its infancy.To protect interactions VR, currently primarily active strategies verbal education about S&P.Passive using parental controls are not commonly used among our interviewees, mainly perceived technical constraints.Parents also multi-stakeholder ecosystem must be established towards more support VR.Based findings, propose actionable recommendations stakeholders, including educators, companies, governments.• RQ1: What perceptions VR? • RQ2: risk mitigation RQ3: expectations toward stakeholders future S&P-enhancing features VR?To RQs, recruited whose
Язык: Английский
Процитировано
3
Applied System Innovation, Год журнала: 2024, Номер 7(3), С. 45 - 45
Опубликована: Май 28, 2024
Extended Reality (XR) is increasingly gaining momentum in industries such as retail, health, and education. To protect users’ personal data, establishing a secure authentication system for XR devices becomes essential. Recently, the focus on methods has been limited. further our understanding of this topic, we surveyed schemes, particularly systems deployed settings. In survey, focused reviewing evaluating papers published during last decade (between 2014 2023). We compared knowledge-based authentication, physical biometrics, behavioral multi-model terms accuracy, security, usability. also highlighted benefits drawbacks those methods. These highlights will direct future Human–computer Interaction (HCI) security research to develop secure, reliable, practical systems.
Язык: Английский
Процитировано
2
2022 IEEE Conference on Virtual Reality and 3D User Interfaces Abstracts and Workshops (VRW), Год журнала: 2024, Номер unknown, С. 477 - 484
Опубликована: Март 16, 2024
Motion tracking "telemetry" data lies at the core of nearly all modern virtual reality (VR) and metaverse experiences. While generally presumed innocuous, recent studies have demonstrated that motion actually has potential to uniquely identify VR users. In this study, we go a step further, showing variety private user information can be inferred just by analyzing recorded from devices. We conducted large-scale survey users (N=1,006) with dozens questions ranging background demographics behavioral patterns health information. then obtained samples each playing game "Beat Saber," attempted infer their responses using head hand patterns. Using simple machine learning models, over 40 personal attributes could accurately consistently alone. Despite significant observed leakage, there remains limited awareness privacy implications data, highlighting pressing need for privacy-preserving mechanisms in multi-user applications.
Язык: Английский
Процитировано
2
arXiv (Cornell University), Год журнала: 2022, Номер unknown
Опубликована: Янв. 1, 2022
Fifty study participants playtested an innocent-looking "escape room" game in virtual reality (VR). Within just a few minutes, adversarial program had accurately inferred over 25 of their personal data attributes, from anthropometrics like height and wingspan to demographics age gender. As notoriously data-hungry companies become increasingly involved VR development, this experimental scenario may soon represent typical user experience. Since the Cambridge Analytica scandal 2018, adversarially designed gamified elements have been known constitute significant privacy threat conventional social platforms. In work, we present case how metaverse environments can similarly be constructed covertly infer dozens attributes seemingly anonymous users. While existing research largely focuses on passive observation, argue that because individuals subconsciously reveal information via motion response specific stimuli, active attacks pose outsized risk environments.
Язык: Английский
Процитировано
9