2. @decirella - Account-based Literacy - CLA April 30, 2013
David Cirella
New York Institute of Technology, Manhattan Library
@decirella
cirella.org
3. Account-Based Literacy Goals
Provide patrons with knowledge to:
Keep their privacy safe
Keep their online accounts safe
Keep their data safe
@decirella - Account-based Literacy - CLA April 30, 2013
5. Characteristics
Online services that require some
contribution on the part of the user
Creating an account
Entering personal information
Contributing content
@decirella - Account-based Literacy - CLA April 30, 2013
6. Characteristics
Creating an account
Username, email, password
Entering personal information
Name, address, email, phone number,
hobbies, likes
Contributing content
Personal photos, text, videos, comments,
location
@decirella - Account-based Literacy - CLA April 30, 2013
9. What Do These Have in Common?
Apple, Facebook, Yahoo mail, Tumblr,
Twitter, Microsoft, Evernote, Nationwide
insurance, Zappos, State of South Carolina,
Dropbox, Sony, Sega, Citigroup, last.fm,
Hotmail, AOL, Gawker Media, Monster.com,
Comcast, MSN, SBC Global, Verizon, TJ Max,
BellSouth, Living Social, Overdrive, Amazon,
Google, Pinterest, Peoples, Bank of America,
Ebay, Paypal, Flickr, and Live.com
@decirella - Account-based Literacy - CLA April 30, 2013
All require the creation
of a personal account &
the contribution of
personal information
10. What Do These Have in Common?
Apple, Facebook, Yahoo mail, Tumblr, Twitter,
Microsoft, Evernote, Nationwide insurance,
Zappos, State of South Carolina, Dropbox, Sony,
Sega, Citigroup, last.fm, Hotmail, AOL, Gawker
Media, Monster.com, Comcast, MSN, SBC
Global, Verizon, TJ Max, BellSouth, Living Social,
Overdrive, Amazon, Google, Pinterest, Peoples,
Bank of America, Ebay, Paypal, Flickr, and
Live.com
@decirella - Account-based Literacy - CLA April 30, 2013
These are the services
our patrons want to
learn and use
11. These serivces have already been
breached
@decirella - Account-based Literacy - CLA April 30, 2013
12. 2011 breach of Sony's PlayStation network
resulted in 100 million accounts being
exposed
@decirella - Account-based Literacy - CLA April 30, 2013
13. Password hashes belonging to 6 million
LinkedIn users were leaked, more than 90
percent of passwords were cracked in just six
days.
@decirella - Account-based Literacy - CLA April 30, 2013
14. LivingSocial.com, a site that offers daily
coupons on restaurants, spas, and other
services, has suffered a security breach that
has exposed names, e-mail addresses and
password data for up to 50 million of its users
@decirella - Account-based Literacy - CLA April 30, 2013
15. Why?
We are increasingly living online
We are sharing increasingly personal parts of
our lives online
We are being pulled into these services from
all directions
We will forever be tied to our actions,
usernames, and content online
@decirella - Account-based Literacy - CLA April 30, 2013
16. Why?
@decirella - Account-based Literacy - CLA April 30, 2013
Two-thirds of online American adults (67%)
are Facebook users
http://pewinternet.org/Commentary/2012/March/Pew-Internet-Social-Networking-full-detail.aspx
More than 71% of social networking users
ages 18-29 have changed the privacy settings
on their profile to limit what they share with
others online.
http://pewinternet.org/Reports/2010/Reputation-Management.aspx
18. Why?
@decirella - Account-based Literacy - CLA April 30, 2013
Reputation management has now become a
defining feature of online life for many
internet users, especially the young.
http://pewinternet.org/Reports/2010/Reputation-Management.aspx
19. Why?
Data is fragile
Data is deeply personal
Data stored by a third party is not as
important to them as it is to you
It may not be profitable for facebook to keep your
photos safe forever
@decirella - Account-based Literacy - CLA April 30, 2013
20. Why Us?
We are educators
We can teach cutting edge technology
Libraries are a place of last resort
We owe it to our patrons to arm them with
the tools needed to protect themselves
@decirella - Account-based Literacy - CLA April 30, 2013
21. Why Now?
All mainstream services operate on an
account-based model
Account-based services motivate many to
start using computers
Motivate many to seek out instruction
@decirella - Account-based Literacy - CLA April 30, 2013
22. Why Now?
Mobile
Non-traditional computer users adopting
mobile, tablet, ereader- platforms
Area of heaviest intergration is mobile
@decirella - Account-based Literacy - CLA April 30, 2013
23. Why Now?
Cyberbullying
78% of teens now have a cell phone, and almost
half (47%) of them own smartphones. That
translates into 37% of all teens who have
smartphones, up from just 23% in 2011.
95% of teens use the internet.
http://pewinternet.org/Reports/2013/Teens-and-Tech.asp
@decirella - Account-based Literacy - CLA April 30, 2013
24. Why Now?
An average PC can try on average 8.2 billion
password combinations each second
Leaks over of over 100 million real-world
passwords allows programmers to write faster
cracking algorithms
(http://arstechnica.com/security/2012/08/passwords-under-assault/)
@decirella - Account-based Literacy - CLA April 30, 2013
26. Account-based Literacy Training
Three Goals
1. Protecting accounts (reputation)
2. Protecting privacy
3. Preserving data
@decirella - Account-based Literacy - CLA April 30, 2013
27. Protecting Accounts
Avoid password reuse
Unique passwords must be used with each
account
Avoid cascading account breaches in the event of
a compromise
@decirella - Account-based Literacy - CLA April 30, 2013
28. The average Web user maintains 25 separate
accounts but uses just 6.5 passwords to
protect them.
@decirella - Account-based Literacy - CLA April 30, 2013
https://research.microsoft.com/pubs/74164/www2007.pdf)
29. Protecting Accounts
Use strong passwords.
Avoid simple words found in the dictionary
Use uppercase, lowercase, numbers, symbols
Passwords that are longer in length are also less
vulnerable to attack.
Ideally 20 characters or more with po0RspEllEng
grAmm.eeRthe
@decirella - Account-based Literacy - CLA April 30, 2013
30. Protecting Accounts
Pass phrase not password
puppy@Grandmas4vacation
23 characters long
Numbers, symbols, mixed case
Easy to remember, hard to guess
@decirella - Account-based Literacy - CLA April 30, 2013
32. Protecting Accounts
2 Factor Authentication
Use your password and temporary passcode
delivered to your mobile phone
@decirella - Account-based Literacy - CLA April 30, 2013
33. Protecting Accounts
Password Keepers- lockers
Software/services that store all your passwords
under one “lock” and key
Enables the easy use of very strong, complex,
unique password without burden
Browser and mobile integrationlastpass
@decirella - Account-based Literacy - CLA April 30, 2013
35. Protecting Privacy
Hierarchy of privilege regarding personal
information
Consider what the service is
what information is needed
how it’s likely to be used
@decirella - Account-based Literacy - CLA April 30, 2013
37. Protecting Privacy
Data mining / Account linking
Third-party data miners link online accounts
together into a coherent, single profile
@decirella - Account-based Literacy - CLA April 30, 2013
38. Preserving Data
Danger of data loss
Keep personal backup copies of any data held in
online services
Make backup copies of others data that you want
to keep (photos you appear in but are not part of
your account)
@decirella - Account-based Literacy - CLA April 30, 2013
39. Preserving Data
Mobile
Devices that exclusively rely on account-based
services but have no simple backup option.
Data created in mobile apps is often held online
and accessed by user accounts. Patrons must be
aware of and use data export tools to keep local
backup copies of all valuable data.
@decirella - Account-based Literacy - CLA April 30, 2013
40. Implementation
Get patrons thinking about these issues
Develop good habits
Not zero sum- every little bit helps
@decirella - Account-based Literacy - CLA April 30, 2013
41. Implementation
Appropriate for inclusion in all types of
computer instruction
Relate to specific services and applications
All types of users
@decirella - Account-based Literacy - CLA April 30, 2013
42. Implementation
Public Library
Integrate related topics: internet basics, social
networking, and job searching
Connect with youth and parents as relating to
cyberbullying
Academic Library
Integrate with dropbox, google doc instruction,
blackboard, turn it in
@decirella - Account-based Literacy - CLA April 30, 2013
44. Thank You
@decirella - Account-based Literacy - CLA April 30, 2013
@decirella
cirella.org
Account-Based Literacy
A New Focus in Library Computer Instruction
CLA April 30, 2013