Get documents about "Ms. Lunt's presentation - ppt - Terra Incognita
Document Sample
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
Technology and Privacy
Teresa Lunt
Palo Alto Research Center
In collaboration with Victoria Bellotti, Richard Chow, Glenn
Durfee, Philippe Golle, Diana Smetters, Jessica Staddon, and
others…
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
Hot Privacy Technology Research
• Identity management and access
control Voter Registration
– Credentials, reputation, pseudonyms, Name
unlinkability, phishing
Street address
• Data privacy, data mining and …
inference control Gender
– Census data, medical data ZIP code
• Location privacy Date of Birth
– Location-based cell-phone services,
friend locator
Gender
• Usable privacy ZIP code
– Privacy policy languages, automatic Date of Birth
negotiation
• Anonymous communication Cancer Type
– Web-browsing, censorship resistant
publishing, voting
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE Patient Records
29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
Hot Privacy Technology Research
• Privacy in ubiquitous computing
environments
– Sensors, RFID tags
• Private information retrieval
– Look-up of patents, medical
conditions, DNA sequences
• Private computations (secure x y
function evaluation)
– Millionaire problem, collaborative
forecasting, intrusion detection Private
• Search on encrypted data Computation
– Classification of encrypted emails,
encrypted documents
• And More… f (x, y)
– Economics of privacy, policy, law, etc.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
Technology is a Moving Target
• Examples of current research at PARC
– Ubiquitous Computing
• Embedded everywhere, often with sensors
– Context Aware Computing
• Able to make inferences and act based on sensing
– Social Computing
• Interaction and collaboration online
– Privacy and Security Research
• Increased IT capabilities imply greater need for
control
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
Privacy Appliance
Enable sale of transformed data Ubicomp &
while providing privacy protection for sensor data
individuals represented in the data
data
knowledge extraction
transformations and
Information storefront
source
Privacy-preserving
customer privacy data Transaction data
query appliance source
data
source
PARC started research here but Outsourced
more work is needed data
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
Personal Privacy Appliance
3. She enables the
mall to read her profile
from her phone. No
identity is needed
Personal
Privacy Appliance
1. Her shopping and
other activities are
reported to her PPA
Profile
Database
2. She synchs her
phone with her profile
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
User Control of Profile Dissemination
Privacy software in the PDA can inform the
user of the privacy consequences of releasing
certain data
Clothing
Colors: B Medium
Size: 16 sensitive
Extra tall
Books
History X
Mysteries Not Very
sensitive sensitive
Music
Opera X
Baroque
Stores could offer incentives to users to enable
Children
their profiles: coupons, discounts, …
Aged 3 and 5
Users can disable portions of their profile when
entering certain stores, friends houses, etc.
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
In-document Security
Document appears different to people based on their
access rights Property Address:
1234 Main St. Fence with adjacent
property, 1234 Elm St. , is
damaged.
Mortgage
Home Inspection
Application
Report
Credit Report
Natural Language
understanding
aids content
SSN: 123-45-6789 Social Security Number:
Property Address:
analysis
123456789
1234 Main St.
Property
Appraisal
Police Report
Atherton, CA
Property has view of
Golden Gate Bridge.
Property Address:
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE …outside the apartment
29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
1234 Main St. building…
A Never-Ending Story
• Technology and privacy are
often seen as opposing forces
• Privacy advocates feel like Technology
Sisyphus versus his stone
• But some technologists feel the
same way Privacy
• Both sides need to work
together continuously
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL CONFERENCE OF DATA PROTECTION AND PRIVACY COMMISSIONERS
