Privacy enhancing technologies : Second International Workshop, PET 2002, San Francisco, CA, USA, April 14-15, 2002 : revised papers

The second Privacy Enhancing Technologies workshop (PET2002), held April 14-15, 2002 in San Francisco, California, continued the enthusiasm and quality of the ?rst workshop in July 2000 (then called "Designing Privacy Enhancing Technologies: Design Issues in Anonymity and Unobservability," LNCS 2009). The workshop focused on the design and realization of anonymity and an- censorship services for the Internet and other communication networks. For c- venienceitwasheldattheCathedralHillHoteljustpriortotheTwelfthConf- ence on Computers, Freedom, and Privacy (CFP2002), but it was not formally a?liated with that conference. There were 48 submissions of which we accepted 17. The program committee listed on the next page made the di?cult decisions on which papers to accept, with additional reviewing help from Oliver Berthold, Sebastian Clauss, Lorrie Cranor, Stefan K.. opsell, Heinrich Langos, Nick Mathewson, and Sandra Ste- brecher. Thanks to all who helped and apologies to anyone we have overlooked. Thanks also to everyone who contributed a submission. Besides the contributed papers we were honored to have an invited talk by someone who as much as anyone could be said to have started the entire technology ?eld of anonymity and privacy: David Chaum. The talk covered his recently developed voting technology based on visual secret sharing, and as if thatweren'tenough,alsodescribednewprimitivesforelectroniccash.Therewas also a lively rump session, covering a variety of new and upcoming technologies.

Privacy-Enhancing Technologies for the Internet, II: Five Years Later.- Detecting Web Bugs with Bugnosis: Privacy Advocacy through Education.- Private Authentication.- Towards an Information Theoretic Metric for Anonymity.- Towards Measuring Anonymity.- Platform for Enterprise Privacy Practices: Privacy-Enabled Management of Customer Data.- Privacy Enhancing Profile Disclosure.- Privacy Enhancing Service Architectures.- Dummy Traffic against Long Term Intersection Attacks.- Protecting Privacy during On-Line Trust Negotiation.- Prototyping an Armored Data Vault.- Preventing Interval-Based Inference by Random Data Perturbation.- Fingerprinting Websites Using Traffic Analysis.- A Passive Attack on the Privacy of Web Users Using Standard Log Information.- Covert Messaging through TCP Timestamps.- Almost Optimal Private Information Retrieval.- Unobservable Surfing on the World Wide Web: Is Private Information Retrieval an Alternative to the MIX Based Approach?.