Julia Ive,Vishal Yadav,Mariia Ignashina,Matthew Rand,Paulina Bondaronek

2024-11-27

Abstract:Introduction: The use of chatbots is becoming increasingly important across various aspects of daily life. However, the privacy concerns associated with these communications have not yet been thoroughly addressed. The aim of this study was to investigate user awareness of privacy risks in chatbot interactions, the privacy-preserving behaviours users practice, and how these behaviours relate to their awareness of privacy threats, even when no immediate threat is perceived. Methods: We developed a novel "privacy-safe" setup to analyse user behaviour under the guarantees of anonymization and non-sharing. We employed a mixed-methods approach, starting with the quantification of broader trends by coding responses, followed by conducting a qualitative content analysis to gain deeper insights. Results: Overall, there was a substantial lack of understanding among users about how chatbot providers handle data (27% of the participants) and the basics of privacy risks (76% of the participants). Older users, in particular, expressed fears that chatbot providers might sell their data. Moreover, even users with privacy knowledge do not consistently exhibit privacy-preserving behaviours when assured of transparent data processing by chatbots. Notably, under-protective behaviours were observed among more expert users. Discussion: These findings highlight the need for a strategic approach to enhance user education on privacy concepts to ensure informed decision when interacting with chatbot technology. This includes the development of tools to help users monitor and control the information they share with chatbots

Human-Computer Interaction

Martin Hasal,Jana Nowaková,Khalifa Ahmed Saghair,Hussam Abdulla,Václav Snášel,Lidia Ogiela

DOI: https://doi.org/10.1002/cpe.6426

2021-06-03

Concurrency and Computation: Practice and Experience

Abstract:Chatbots are artificial communication systems becoming increasingly popular and not all their security questions are clearly solved. People use chatbots for assistance in shopping, bank communication, meal delivery, healthcare, cars, and many other actions. However, it brings an additional security risk and creates serious security challenges which have to be handled. Understanding the underlying problems requires defining the crucial steps in the techniques used to design chatbots related to security. There are many factors increasing security threats and vulnerabilities. All of them are comprehensively studied, and security practices to decrease security weaknesses are presented. Modern chatbots are no longer rule-based models, but they employ modern natural language and machine learning techniques. Such techniques learn from a conversation, which can contain personal information. The paper discusses circumstances under which such data can be used and how chatbots treat them. Many chatbots operate on a social/messaging platform, which has their terms and conditions about data. The paper aims to present a comprehensive study of security aspects in communication with chatbots. The article could open a discussion and highlight the problems of data storage and usage obtained from the communication user—chatbot and propose some standards to protect the user.

Nazar Waheed,Muhammad Ikram,Saad Sajid Hashmi,Xiangjian He,Priyadarsi Nanda

DOI: https://doi.org/10.48550/arXiv.2205.08252

2022-05-17

Cryptography and Security

Abstract:Web-based chatbots provide website owners with the benefits of increased sales, immediate response to their customers, and insight into customer behaviour. While Web-based chatbots are getting popular, they have not received much scrutiny from security researchers. The benefits to owners come at the cost of users' privacy and security. Vulnerabilities, such as tracking cookies and third-party domains, can be hidden in the chatbot's iFrame script. This paper presents a large-scale analysis of five Web-based chatbots among the top 1-million Alexa websites. Through our crawler tool, we identify the presence of chatbots in these 1-million websites. We discover that 13,515 out of the top 1-million Alexa websites (1.59%) use one of the five analysed chatbots. Our analysis reveals that the top 300k Alexa ranking websites are dominated by Intercom chatbots that embed the least number of third-party domains. LiveChat chatbots dominate the remaining websites and embed the highest samples of third-party domains. We also find that 850 (6.29%) of the chatbots use insecure protocols to transfer users' chats in plain text. Furthermore, some chatbots heavily rely on cookies for tracking and advertisement purposes. More than two-thirds (68.92%) of the identified cookies in chatbot iFrames are used for ads and tracking users. Our results show that, despite the promises for privacy, security, and anonymity given by the majority of the websites, millions of users may unknowingly be subject to poor security guarantees by chatbot service providers

Jing Yang,Yen-Lin Chen,Lip Yee Por,Chin Soon Ku

DOI: https://doi.org/10.3390/app13116355

2023-05-23

Applied Sciences

Abstract:Chatbots have become increasingly popular in recent years, but they also present security risks and vulnerabilities that need to be addressed. This systematic literature review examines the existing research relating to information security in chatbots, identifying the potential threats, proposed solutions, and future directions for research. The review finds that chatbots face various security threats, including malicious input, user profiling, contextual attacks, and data breaches, and that solutions such as blockchain technology, end-to-end encryption, and organizational controls can be used to mitigate these concerns. The review also highlights the importance of maintaining user trust and addressing privacy concerns for the successful adoption and continued use of chatbots. A taxonomy developed in this review provides a useful framework for categorizing the articles and their findings. The review concludes by identifying future research directions that include developing more sophisticated authentication and authorization mechanisms, exploring the use of privacy-enhancing technologies, and improving the detection and prevention of security threats, among others. This review contributes to the growing body of literature on information security in chatbots and can guide future research and practice in this field.

materials science, multidisciplinary,engineering,chemistry,physics, applied

Hongxu Su,Cheng Xiang,Bharath Ramesh

DOI: https://doi.org/10.31585/jbba-7-1-(3)2024

2024-02-28

Abstract:The development of cutting-edge large language models such as ChatGPT has sparked global interest in the transformative potential of chatbots to automate language tasks. However, alongside the remarkable advancements in natural language processing, concerns about user privacy and data security have become prominent challenges that need immediate attention. In response to these critical concerns, this article presents a novel approach that addresses the privacy and security issues in chatbot applications. We propose a secure and privacy-preserving framework for chatbot systems by leveraging the power of decentralised federated learning (DFL) and secure multi-party computation (SMPC). Our DFL framework leverages blockchain smart contracts for participant selection, orchestrating the training process on user data while keeping the data local, and model distribution. After each round of local training by the participants, the blockchain network securely aggregates the model updates using SMPC, ensuring that participants’ raw model parameters are not exposed to others. The global model is encrypted and stored in hypermedia protocols such as the InterPlanetary File System. Participants decrypt the global model updates using their private keys to further fine-tune their models. Iterative training rounds are executed through the blockchain network, with participants updating the model collaboratively using SMPC. Experiments show that our approach achieves comparable performance to centralised models while offering significant improvements in privacy and security. This article presents a ground-breaking solution to privacy and security challenges in chatbots, and we hope our approach will foster trust and encourage broader adoption of chatbot technology with privacy at the forefront.

Dzung Pham,Jade Sheffey,Chau Minh Pham,Amir Houmansadr

2024-07-12

Abstract:AI-powered chatbots (ChatGPT, Claude, etc.) require users to create an account using their email and phone number, thereby linking their personally identifiable information to their conversational data and usage patterns. As these chatbots are increasingly being used for tasks involving sensitive information, privacy concerns have been raised about how chatbot providers handle user data. To address these concerns, we present ProxyGPT, a privacy-enhancing system that enables anonymous queries in popular chatbot platforms. ProxyGPT leverages volunteer proxies to submit user queries on their behalf, thus providing network-level anonymity for chatbot users. The system is designed to support key security properties such as content integrity via TLS-backed data provenance, end-to-end encryption, and anonymous payment, while also ensuring usability and sustainability. We provide a thorough analysis of the privacy, security, and integrity of our system and identify various future research directions, particularly in the area of private chatbot query synthesis. Our human evaluation shows that ProxyGPT offers users a greater sense of privacy compared to traditional AI chatbots, especially in scenarios where users are hesitant to share their identity with chatbot providers. Although our proof-of-concept has higher latency than popular chatbots, our human interview participants consider this to be an acceptable trade-off for anonymity. To the best of our knowledge, ProxyGPT is the first comprehensive proxy-based solution for privacy-preserving AI chatbots. Our codebase is available at <a class="link-external link-https" href="https://github.com/dzungvpham/proxygpt" rel="external noopener nofollow">this https URL</a>.

Cryptography and Security

Ece Gumusel,Kyrie Zhixuan Zhou,Madelyn Rose Sanfilippo

2024-02-15

Abstract:This study presents a unique framework that applies and extends Solove (2006)'s taxonomy to address privacy concerns in interactions with text-based AI chatbots. As chatbot prevalence grows, concerns about user privacy have heightened. While existing literature highlights design elements compromising privacy, a comprehensive framework is lacking. Through semi-structured interviews with 13 participants interacting with two AI chatbots, this study identifies 9 privacy harms and 9 privacy risks in text-based interactions. Using a grounded theory approach for interview and chatlog analysis, the framework examines privacy implications at various interaction stages. The aim is to offer developers, policymakers, and researchers a tool for responsible and secure implementation of conversational AI, filling the existing gap in addressing privacy issues associated with text-based AI chatbots.

Human-Computer Interaction,Computers and Society

Yunsan Guo,Jian Wang,Runfan Wu,Zeyu Li,Lingyun Sun

DOI: https://doi.org/10.1007/s42486-022-00106-5

2022-01-01

Abstract:Trust is an important factor influencing user acceptance of high-tech products. As the artificial intelligence and natural language processing develop, all kinds of conversational agents (chatbot) have appeared around us. These chatbots are able to provide people with convenient services such as ordering food, stock recommendations, fund diagnostics. However, it is still not clear how to make users feel chatbot trustworthy. In this study, we aimed to explore a set of design principles to build trust between users and conversational agents. Based on extensive research on trust, we proposed five design semantics and 10 design principles, and verified their effectiveness through experiments. The result of experiment suggest that our design principles can improve users’ trust towards chatbot, thus provided guidance and suggestions for designing more trustworthy chatbots in the future.

Chaochen Qian,Xiaochun Xiao,Siming Chen,Xueping Wang

DOI: https://doi.org/10.1109/anthology.2013.6784955

2013-01-01

Abstract:Social Networking Sites (SNS) such as Facebook and MySpace have attracted millions of users because of their ability to combine individuals by social graphs. Nonetheless, considerable amount of users are suffering from their poor privacy settings. It is partly due to their lack of the awareness of privacy. To most normal users, the too exhausting privacy settings on SNS is another important reason. Moreover, even friends cannot be trusted all the time, and the privacy issues involving friends have actually been serious. In this paper1, we propose a novel approach of grouping friends to improve the privacy policy. We introduce a closeness degree model to quantify relationship between one user and his friends, based on which all the friends can be categorized automatically and dynamically. With some further statistical inference and analysis, our approach reflects the users' tendency of disclosing personal data as well as their original privacy preferences.

Ke Li,Hong Li,Hongsong Zhu,Limin Sun,Hui Wen

DOI: https://doi.org/10.1109/IPCCC47392.2019.8958775

2019-01-01

Abstract:Instant Messaging has been widely applied for both corporate use and personal use in recent years. Major Instant Messaging service providers adopt the Push Technology to ensure the immediacy of message forwarding, which efficiently provides a great convenience for user. However, the immediacy feature causes side-channel information leakage even if some protection measures has been implemented, such as information encryption strategy. In particular, we observe that senders' traffic flows have a strong temporal correlation with those of corresponding recipients, since the messages are forwarded to recipients as soon as they are received by servers. Based on the observation, attackers can infer real-time communications between pairwise users and even the social connections of users. In this paper, we present a methodology framework to validate this side-channel information leakage, which identifies users of real-time communications by matching the pairwise time sequences of traffic flows. We evaluate the method on the collected real-world data. The experimental results show that users' communications can be identified with a high accuracy, and 6 groups of users are inferred to have strong connections based on the data collected from a local area networks.

Zhigang Kan,Linbo Qiao,Hao Yu,Liwen Peng,Yifu Gao,Dongsheng Li

DOI: https://doi.org/10.48550/arXiv.2306.08223

2023-06-14

Cryptography and Security

Abstract:Large Language Models (LLMs) are gaining increasing attention due to their exceptional performance across numerous tasks. As a result, the general public utilize them as an influential tool for boosting their productivity while natural language processing researchers endeavor to employ them in solving existing or new research problems. Unfortunately, individuals can only access such powerful AIs through APIs, which ultimately leads to the transmission of raw data to the models' providers and increases the possibility of privacy data leakage. Current privacy-preserving methods for cloud-deployed language models aim to protect privacy information in the pre-training dataset or during the model training phase. However, they do not meet the specific challenges presented by the remote access approach of new large-scale language models. This paper introduces a novel task, "User Privacy Protection for Dialogue Models," which aims to safeguard sensitive user information from any possible disclosure while conversing with chatbots. We also present an evaluation scheme for this task, which covers evaluation metrics for privacy protection, data availability, and resistance to simulation attacks. Moreover, we propose the first framework for this task, namely privacy protection through text sanitization. Before sending the input to remote large models, it filters out the sensitive information, using several rounds of text sanitization based on privacy types that users define. Upon receiving responses from the larger model, our framework automatically restores privacy to ensure that the conversation goes smoothly, without intervention from the privacy filter. Experiments based on real-world datasets demonstrate the efficacy of our privacy-preserving approach against eavesdropping from potential attackers.

Rahime Belen Saglam,Jason R. C. Nurse,Duncan Hodges,Jason R.C. Nurse

DOI: https://doi.org/10.48550/arXiv.2107.03959

2021-07-08

Computers and Society

Abstract:Through advances in their conversational abilities, chatbots have started to request and process an increasing variety of sensitive personal information. The accurate disclosure of sensitive information is essential where it is used to provide advice and support to users in the healthcare and finance sectors. In this study, we explore users' concerns regarding factors associated with the use of sensitive data by chatbot providers. We surveyed a representative sample of 491 British citizens. Our results show that the user concerns focus on deleting personal information and concerns about their data's inappropriate use. We also identified that individuals were concerned about losing control over their data after a conversation with conversational agents. We found no effect from a user's gender or education but did find an effect from the user's age, with those over 45 being more concerned than those under 45. We also considered the factors that engender trust in a chatbot. Our respondents' primary focus was on the chatbot's technical elements, with factors such as the response quality being identified as the most critical factor. We again found no effect from the user's gender or education level; however, when we considered some social factors (e.g. avatars or perceived 'friendliness'), we found those under 45 years old rated these as more important than those over 45. The paper concludes with a discussion of these results within the context of designing inclusive, digital systems that support a wide range of users.

Zhixiong Chen,Zhihui Lu,Abhishek Sane,Anthony Bhimsain

DOI: https://doi.org/10.1109/cscloud-edgecom49738.2020.00022

2020-01-01

Abstract:This paper is to identify conversational bots using blockchain technology, a first step to address trustworthy challenging when social media applications are mixed with human users and social bots. Internet persona or account user profile for social bots usually is hardly being used to distinguish conversational bots from other human users. PASS (Personal Archive Service System) using blockchain technology has built in the Proof of X mechanism. The usage of such built in feature into bot identification makes users aware of bot interaction which could mitigate the threat of disinformation by social bots. Moreover, in practice, we add feedback bot score, called syn points in the registration, verification and monitor lifecycle.

Dillys Larbi,Elia Gabarron,Paolo Zanaboni,Rolf Wynn,Eirik Årsand,Kerstin Denecke

DOI: https://doi.org/10.3233/SHTI240809

2024-08-22

Abstract:Background and objective: Social media physical activity chatbots use both chatbots and social media platforms for physical activity promotion and, thus, could face privacy and security challenges inherent in both technologies. This study aims to provide an overview of physical activity chatbot interventions delivered via social media platforms, specifically focusing on security and privacy measures. Methods: We conducted a scoping review on this topic across 4 databases: PubMed, PsycINFO, ACM Digital Library, and IEEE Xplore. We extracted and summarised information on the author, population, country of study, social media platform, intervention, data processed (i.e. gathered or stored), and security/privacy measures. Results: Out of 1299 identified articles, 12 were included in the analysis reporting about 9 different chatbots. Although all chatbots applied data processing methods, only a few considered anonymisation. One paper stated compliance with the General Data Protection Regulations. Other studies enforced some verification procedures before chatbot use. Conclusion: Current research fails to adequately report security considerations in social media physical activity chatbot design. However, integration of chatbots into social media platforms seems to be declining, possibly due to security concerns.

Yangyi Chen,Tongxin Li,Xiaofeng Wang,Kai Chen,Xinhui Han

DOI: https://doi.org/10.1145/2810103.2813652

2015-01-01

Abstract:In this paper, we report the first large-scale, systematic study on the security qualities of emerging push-messaging services, focusing on their app-side service integrations. We identified a set of security properties different push-messaging services (e.g., Google Cloud Messaging) need to have, and automatically verified them in different integrations using a new technique, called Seminal. Seminal is designed to extract semantic information from a service's sample code, and leverage the information to evaluate the security qualities of the service's SDKs and its integrations within different apps. Using this tool, we studied 30 leading services around the world, and scanned 35,173 apps. Our findings are astonishing: over 20% apps in Google Play and 50% apps in mainstream Chinese app markets are riddled with security-critical loopholes, putting a huge amount of sensitive user data at risk. Also, our research brought to light new types of security flaws never known before, which can be exploited to cause serious confusions among popular apps and services (e.g., Facebook, Skype, Yelp, Baidu Push). Taking advantage of such confusions, the adversary can post his content to the victim's apps in the name of trusted parties and intercept her private messages. The study highlights the serious challenges in securing push-messaging services and an urgent need for improving their security qualities.

Xiaohan Zhang,Yang Wang,Xin Zhang,Ziqi Huang,Lei Zhang,Min Yang

DOI: https://doi.org/10.48550/arXiv.2306.08391

2023-06-14

Cryptography and Security

Abstract:Nowadays the app-in-app paradigm is becoming increasingly popular, and sub-apps have become an important form of mobile applications. WeChat, the leading app-in-app platform, provides millions of sub-apps that can be used for online shopping, financing, social networking, etc. However, privacy issues in this new ecosystem have not been well understood. This paper performs the first systematic study of privacy over-collection in sub-apps (denoted as SPO), where sub-apps actually collect more privacy data than they claim in their privacy policies. We propose a taxonomy of privacy for this ecosystem and a framework named SPOChecker to automatically detect SPO in real-world sub-apps. Based on SPOChecker, we collect 5,521 popular and representative WeChat sub-apps and conduct a measurement study to understand SPO from three aspects: its landscape, accountability, and defense methods. The result is worrisome, that more than half of all studied sub-apps do not provide users with privacy policies. Among 2,511 sub-apps that provide privacy policies, 489 (19.47%) of them contain SPO. We look into the detailed characteristics of SPO, figure out possible reasons and the responsibilities of stakeholders in the ecosystem, and rethink current defense methods. The measurement leads to several insightful findings that can help the community to better understand SPO and protect privacy in sub-apps.

Aman Priyanshu,Supriti Vijay,Ayush Kumar,Rakshit Naidu,Fatemehsadat Mireshghallah

DOI: https://doi.org/10.48550/arXiv.2305.15008

2023-05-24

Computation and Language

Abstract:LLM-powered chatbots are becoming widely adopted in applications such as healthcare, personal assistants, industry hiring decisions, etc. In many of these cases, chatbots are fed sensitive, personal information in their prompts, as samples for in-context learning, retrieved records from a database, or as part of the conversation. The information provided in the prompt could directly appear in the output, which might have privacy ramifications if there is sensitive information there. As such, in this paper, we aim to understand the input copying and regurgitation capabilities of these models during inference and how they can be directly instructed to limit this copying by complying with regulations such as HIPAA and GDPR, based on their internal knowledge of them. More specifically, we find that when ChatGPT is prompted to summarize cover letters of a 100 candidates, it would retain personally identifiable information (PII) verbatim in 57.4% of cases, and we find this retention to be non-uniform between different subgroups of people, based on attributes such as gender identity. We then probe ChatGPT's perception of privacy-related policies and privatization mechanisms by directly instructing it to provide compliant outputs and observe a significant omission of PII from output.

Yu-li Liu,Wenjia Yan,Bo Hu,Zhi Lin,Yunya Song

DOI: https://doi.org/10.1080/10447318.2023.2238974

IF: 4.92

2023-08-16

International Journal of Human-Computer Interaction

Abstract:Chatbots have been widely adopted to support online customer service and supplement human agents. However, online data transmission may involve privacy issues and arouse users' privacy concerns. In order to understand the privacy management mechanism when interacting with chatbots and human agents, we designed a cross-national comparative study and conducted online experiments in China and the United States based on Communication Privacy Management (CPM) theory. The results show that privacy concerns and boundary linkage played different mediation roles between agent identity and the intention to disclose as well as the intention to use the service. Information sensitivity had a significant moderating effect on the mechanism. Our research contributes to a better understanding of personal boundary management in the context of human-machine interaction.

computer science, cybernetics,ergonomics

Mugheez Asif,Abdul Manan,Abdul Moiz ur Rehman,Mamoona Naveed Asghar,Muhammad Umair

2024-08-08

Abstract:In today's contemporary digital landscape, chatbots have become indispensable tools across various sectors, streamlining customer service, providing personal assistance, automating routine tasks, and offering health advice. However, their potential remains underexplored in the realm of network security, particularly for intrusion detection. To bridge this gap, we propose an architecture chatbot specifically designed to enhance security within edge networks specifically for intrusion detection. Leveraging advanced machine learning algorithms, this chatbot will monitor network traffic to identify and mitigate potential intrusions. By securing the network environment using an edge network managed by a Raspberry Pi module and ensuring ethical user consent promoting transparency and trust, this innovative solution aims to safeguard sensitive data and maintain a secure workplace, thereby addressing the growing need for robust network security measures in the digital age.

Cryptography and Security,Artificial Intelligence

Wei Peng,Hee Rin Lee,Sue Lim

DOI: https://doi.org/10.2196/60712

2024-10-11

Abstract:Background: Older adults, a population particularly susceptible to misinformation, may experience attempts at health-related scams or defrauding, and they may unknowingly spread misinformation. Previous research has investigated managing misinformation through media literacy education or supporting users by fact-checking information and cautioning for potential misinformation content, yet studies focusing on older adults are limited. Chatbots have the potential to educate and support older adults in misinformation management. However, many studies focusing on designing technology for older adults use the needs-based approach and consider aging as a deficit, leading to issues in technology adoption. Instead, we adopted the asset-based approach, inviting older adults to be active collaborators in envisioning how intelligent technologies can enhance their misinformation management practices. Objective: This study aims to understand how older adults may use chatbots' capabilities for misinformation management. Methods: We conducted 5 participatory design workshops with a total of 17 older adult participants to ideate ways in which chatbots can help them manage misinformation. The workshops included 3 stages: developing scenarios reflecting older adults' encounters with misinformation in their lives, understanding existing chatbot platforms, and envisioning how chatbots can help intervene in the scenarios from stage 1. Results: We found that issues with older adults' misinformation management arose more from interpersonal relationships than individuals' ability to detect misinformation in pieces of information. This finding underscored the importance of chatbots to act as mediators that facilitate communication and help resolve conflict. In addition, participants emphasized the importance of autonomy. They desired chatbots to teach them to navigate the information landscape and come to conclusions about misinformation on their own. Finally, we found that older adults' distrust in IT companies and governments' ability to regulate the IT industry affected their trust in chatbots. Thus, chatbot designers should consider using well-trusted sources and practicing transparency to increase older adults' trust in the chatbot-based tools. Overall, our results highlight the need for chatbot-based misinformation tools to go beyond fact checking. Conclusions: This study provides insights for how chatbots can be designed as part of technological systems for misinformation management among older adults. Our study underscores the importance of inviting older adults to be active co-designers of chatbot-based interventions.