privacy by design
play

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems - PowerPoint PPT Presentation

Mar 21, 2024 •443 likes •680 views

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by Design ETH Zurich, Switzerland www.inf.ethz.ch/~langhein Ubicomp 2001, Atlanta Contents Ubicomp 2001, Atlanta ! Privacy primer Does privacy

  1. Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by Design ETH Zurich, Switzerland www.inf.ethz.ch/~langhein Ubicomp 2001, Atlanta

  2. Contents Ubicomp 2001, Atlanta ! Privacy primer – Does privacy matter? ! Privacy in ubiquitous systems – What’s so different about it? Privacy by Design ! Challenges – Issues to address in ubicomp systems ! Privacy-aware infrastructures – A first attempt 10/3/2001 Slide 2

  3. Just a Modern Fad? Ubicomp 2001, Atlanta ! “All this secrecy is making life harder, more expensive, dangerous...“ – Peter Cochran, former head of BT Research ! “You have zero privacy anyway” – Scott McNealy, CEO Sun Microsystems 1. Privacy Primer ! “By 2010, privacy will become a meaningless concept in western society” – Gartner Report 10/3/2001 Slide 3

  4. Privacy – a Human Need? Ubicomp 2001, Atlanta ! References in the Bible ! Jewish law (“…free from being watched”) ! Justice of Peace act (England 1361) ! Privacy is a human right – Universal declaration of human rights, 1. Privacy Primer article 12 (1948) – European convention on human rights, article 8 (1970) 10/3/2001 Slide 4

  5. Legal Realities Today Ubicomp 2001, Atlanta ! Legislation varies around the world – Mostly self-regulatory approach in US – Comprehensive laws for government and industry in EU ! EU Directive 95/46/EC 1. Privacy Primer – Limits data collection – Requires comprehensive disclosures – Prohibits data export to „unsafe“ countries • Prompted legislative updates worldwide 10/3/2001 Slide 5

  6. Contents Ubicomp 2001, Atlanta ! Privacy primer – Does privacy matter? ! Privacy in ubiquitous systems 2. Privacy in Ubicomp – What’s so different about it? ! Challenges – Issues to address in ubicomp systems ! Privacy-aware infrastructures – A first attempt 10/3/2001 Slide 6

  7. Aspects of Privacy Ubicomp 2001, Atlanta ! Anonymity – Authentication & Routing ! Security 2. Privacy in Ubicomp – Encryption & Communication Hiding ! Transparency – Trust-Labels, Signatures, Protocols (P3P) How much of this works in ubicomp? 10/3/2001 Slide 7

  8. Unlimited Coverage Ubicomp 2001, Atlanta ! The Web: covers our digital life – Shopping, chatting, news reading ! Ubicomp: real-world deployment! 2. Privacy in Ubicomp – Home, School, Office, Public Spaces, ... ! Covers all of our life, comprehensively! – Day in, day out – from cradle to grave ! No switch to turn it off? – Constant, seamless surveillance possible 10/3/2001 Slide 8

  9. Loss of Awareness Ubicomp 2001, Atlanta ! Surveillance and data collection today – Stores, credit card applications, sweepstakes ! Ubicomp: invisible computing 2. Privacy in Ubicomp – Computers disappear into the environment ! When am I giving out data? – Fingerprint could be taken without notice ! When am I under surveillance? – Life recorders, room computers, smart cups 10/3/2001 Slide 9

  10. New Types of Data Ubicomp 2001, Atlanta ! Last 50 years of data collection – Identity, contact info, preferences, … ! Ubicomp: advanced sensors 2. Privacy in Ubicomp – New data (location, health, habits, …) – More detailed & precise (24/7) ! Does the system know more than I? – Body sensors detect moods – Nervous? Floor & seat sensors, eye tracker 10/3/2001 Slide 10

  11. More Data, More Knowledge Ubicomp 2001, Atlanta ! Traditional data, traditional use – Compiling mailing lists, predicting trends, … ! Ubicomp: smartness through context 2. Privacy in Ubicomp – Context is distilled sensory information ! Encourages increased data collection – More data means more, better context ! Innocuous data can lead to new knowledge – Data mining: more than the sum of its parts 10/3/2001 Slide 11

  12. Contents Ubicomp 2001, Atlanta ! Privacy primer – Does privacy matter? ! Privacy in ubiquitous systems – What’s so different about it? ! Challenges – Issues to address in ubicomp systems 3. Challenges ! Privacy-aware infrastructures – A first attempt 10/3/2001 Slide 12

  13. 1. Notice Ubicomp 2001, Atlanta ! No hidden data collection! – Legal requirement in many countries ! Established means: privacy policies – Who, what, why, how long, etc. ... ! How to publish policies in Ubicomp? – Periodic broadcasts 3. Challenges – Privacy service? ! Too many devices? – Countless announcements an annoyance 10/3/2001 Slide 13

  14. 2. Choice & Consent Ubicomp 2001, Atlanta ! Laws require explicit consent by user – Usually a signature or pressing a button ! True consent requires true choice – More than „take it or leave it“ ! How to ask without a screen? – Designing UI‘s for embedded systems, or 3. Challenges – Finding means of delegation (is this legal?) ! Providing conditional services – Can there be levels of location tracking? 10/3/2001 Slide 14

  15. 3. Anonymity, Pseudonymity Ubicomp 2001, Atlanta ! Anonymous data comes cheap – no consent, security, access needed ! Pseudonyms allow for customization – user can discard at any time ! Sometimes one cannot hide! – No anonymizing cameras & microphones 3. Challenges ! Real-world data hard to anonymized – Even pseudonyms can reveal true identity 10/3/2001 Slide 15

  16. 4. Meeting Expectations Ubicomp 2001, Atlanta ! Ubicomp: invisibly augments real-world ! Old habits adapt slowly (if ever) – People expect solitude to mean privacy – Strangers usually don’t know me ! No spying, please (Proximity) – Devices only record if owner is present ! Rumors should not spread (Locality) 3. Challenges – Local information stays local – Walls and Flower-Pots can talk (but won‘t do so over the phone) 10/3/2001 Slide 16

  17. 5. Security Ubicomp 2001, Atlanta ! No one-size-fits-all solutions – High security for back-end storage – Low security for low-power sensors ! Real-world has complex situation-dependant security requirements – Free access to medical data in emergency situations ! Context-specific security? 3. Challenges – Depending on device battery status – Depending on types of data, transmission – Depending on locality, situation 10/3/2001 Slide 17

  18. 6. Access & Recourse Ubicomp 2001, Atlanta ! Identifiable data must be accessible – Users can review, change, sometimes delete ! Collectors must be accountable – Privacy-aware storage technology? ! Ubicomp applications like lots of data – Increased need for accounting and access 3. Challenges ! Carefully consider what is relevant – How much data do I really need? 10/3/2001 Slide 18

  19. Contents Ubicomp 2001, Atlanta ! Privacy primer – Does privacy matter? 4. Privacy Infrastructures ! Privacy in ubiquitous systems – What’s so different about it? ! Challenges – Issues to address in ubicomp systems ! Privacy-aware infrastructures – A first attempt 10/3/2001 Slide 19

  20. Privacy Infrastructures Ubicomp 2001, Atlanta PA Counterpart Printer Counterpart Camera Counterpart P r i v a c y P o l i c y A c c e p t / D e c l i n e 4. Privacy Infrastructures The Internet Privacy Beacon Devices PA (Privacy Assistant) 10/3/2001 Slide 20

  21. Privacy Infrastructure Ubicomp 2001, Atlanta ! Project Status – Started Aug 2001 4. Privacy Infrastructures – Currently devising architecture ! Challenges – Policy broadcasts, privacy services, user interface, ... ! Goals – Operational prototype for trying out new concepts 10/3/2001 Slide 21

  22. The Take Home Message Ubicomp 2001, Atlanta ! Many questions, few answers – Technology, laws still to evolve Summary & Conclusions ! Ubicomp adds a new quality to privacy – Invisible, real-world coverage, comprehensive collection, inconspicuous ! Ubicomp (privacy) challenges – User interface (notice, choice, consent) – Protocols (anonymity, security, access) – Social acceptance (user expectations) 10/3/2001 Slide 22

Recommend

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy Commissioner of Ontario https://www.ipc.on.ca/images/resources/7foundationalprinciples.pdf Privacy by Design Let's have it! Article 25 European

1.32k views • 118 slides
Privacy by Design Deirdre K. Mulligan Privacy by design, why now? Legal Drivers E- Government

Privacy by Design Deirdre K. Mulligan Privacy by design, why now? Legal Drivers E- Government

Privacy by Design Deirdre K. Mulligan Privacy by design, why now? Legal Drivers E- Government Act of 2002 and OMB Guidance for Implementing the Privacy Provisions of the E-Government Act of 2002 Resolution on Privacy by Design, Data Protection

556 views • 41 slides
Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance Engineering & Public Policy Lorrie Faith Cranor October 29, 2013 y & c S a e v c i u r P r i t e y l b L a a s

245 views • 20 slides
Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance Engineering & Public Policy Lorrie Faith Cranor November 11, 2014 y & c S a e v c i u r P r i t e y l b L a a s

555 views • 21 slides
Privacy and Security by Design: Regulatory Compliance Will Not be Enough to Preserve our Privacy

Privacy and Security by Design: Regulatory Compliance Will Not be Enough to Preserve our Privacy

Privacy and Security by Design: Regulatory Compliance Will Not be Enough to Preserve our Privacy Ann Cavoukian, Ph.D. Distinguished Expert-in-Residence Privacy by Design Centre of Excellence Ryerson University Ryerson CSR Institute / PPOCIR

3.12k views • 64 slides
Privacy engineering, privacy by design, and privacy governance Engineering & Public Policy

Privacy engineering, privacy by design, and privacy governance Engineering & Public Policy

CyLab Privacy engineering, privacy by design, and privacy governance Engineering & Public Policy Lorrie Faith Cranor November 17, 2015 y & c S a e v c i u r P r i t e y l b L a a s b U o 8-533 / 8-733 /

539 views • 22 slides
Privacy by Design A technical perspective Carmela Troncoso Gradiant The usual privacy

Privacy by Design A technical perspective Carmela Troncoso Gradiant The usual privacy

PR eparing I ndustry to P rivacy-by-design by supporting its A pplication in RE search Privacy by Design A technical perspective Carmela Troncoso Gradiant The usual privacy scenario Protect personal data from third parties Data

359 views • 9 slides
From Privacy Protection to Interface Design: Implementing Information Privacy in Human-Computer

From Privacy Protection to Interface Design: Implementing Information Privacy in Human-Computer

From Privacy Protection to Interface Design: Implementing Information Privacy in Human-Computer Interactions Andrew S. Patrick Steve Kenny Independent Consultant National Research Council of Canada stephen_mh_kenny@yahoo.com

407 views • 22 slides
Engineering Privacy By Design Seda Grses COSIC, ESAT K.U. Leuven Belgium 1 Outline -

Engineering Privacy By Design Seda Grses COSIC, ESAT K.U. Leuven Belgium 1 Outline -

Engineering Privacy By Design Seda Grses COSIC, ESAT K.U. Leuven Belgium 1 Outline - Introduction and Approach - Privacy Requirements Definition Problem - Privacy Requirements Analysis Problem - Policy and Compliance - Privacy By Design -

1.48k views • 63 slides
The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director

The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director

The Vital Need for Privacy and Security by Design Ann Cavoukian, Ph.D. Executive Director Global Privacy & Security by Design Centre Technion Summer School on Cyber Security Haifa, Israel September 9, 2020 Lets Dispel The Myths

929 views • 55 slides
Privacy Engineering Objectives and Risk Model Objective-Based Design for Improving Privacy in

Privacy Engineering Objectives and Risk Model Objective-Based Design for Improving Privacy in

Privacy Engineering Objectives and Risk Model Objective-Based Design for Improving Privacy in Information Systems 1 NIST research has a broad impact shutterstock.com shutterstocom G. Hooijer/ D. Stork/ Facilitates trade and fair Improves

405 views • 18 slides
Privacy Enhancing T echnologies Carmela Troncoso, Gradiant PRIPARE Workshop on Privacy by Design

Privacy Enhancing T echnologies Carmela Troncoso, Gradiant PRIPARE Workshop on Privacy by Design

T rialog, Atos, T rilateral, Inria , AUP, Gradiant, UPM, UUlm, Fraunhofer SIT, WIT , KU Leuve Privacy Enhancing T echnologies Carmela Troncoso, Gradiant PRIPARE Workshop on Privacy by Design Ulm 9 th -10 th March 2015 11/03/2015 Privacy

668 views • 48 slides
Lightning Introductions PRIVACY ENABLING DESIGN May 7-8, 2015 Brian Anderson / IBM Where does

Lightning Introductions PRIVACY ENABLING DESIGN May 7-8, 2015 Brian Anderson / IBM Where does

Lightning Introductions PRIVACY ENABLING DESIGN May 7-8, 2015 Brian Anderson / IBM Where does privacy end and security begin? What are the responsibilities of an organization to protect their assets while balancing the privacy of those who

980 views • 52 slides
Do Not Beg: Moving Beyond Do Not Track with Privacy By Design Mike Perry W3C DNT Nov 28, 2012

Do Not Beg: Moving Beyond Do Not Track with Privacy By Design Mike Perry W3C DNT Nov 28, 2012

Do Not Beg: Moving Beyond Do Not Track with Privacy By Design Mike Perry W3C DNT Nov 28, 2012 Do Not Track as Privacy By Design The meat of the initial IETF DNT Draft: A server acting in a third-party capacity MUST NOT track a user or

293 views • 10 slides
Discussion of Privacy as a Tool for Robust Mechanism Design

Discussion of Privacy as a Tool for Robust Mechanism Design

Discussion of Privacy as a Tool for Robust Mechanism Design in Large Markets Leeat Yariv General Theme Interpret differenAal privacy as a

275 views • 25 slides
Privacy and data protection by design cross-over of multiple disciplines Marit Hansen

Privacy and data protection by design cross-over of multiple disciplines Marit Hansen

Privacy and data protection by design cross-over of multiple disciplines Marit Hansen Privacy and Information Commissioner Schleswig-Holstein, Germany marit.hansen@datenschutzzentrum.de Annual Privacy Forum 2015 Luxembourg, 7 October,

551 views • 29 slides
Privacy Design Patterns and Anti-Patterns Patterns Misapplied and Unintended Consequences Nick

Privacy Design Patterns and Anti-Patterns Patterns Misapplied and Unintended Consequences Nick

Privacy Design Patterns and Anti-Patterns Patterns Misapplied and Unintended Consequences Nick Doty & Mohit Gupta UC Berkeley, School of Information Privacy-by-Design ... in practice for designers and developers of technologies document

266 views • 11 slides
Privacy by Design? Marc Langheinrich University of Lugano (USI) Switzerland Projects

Privacy by Design? Marc Langheinrich University of Lugano (USI) Switzerland Projects

The Everyday Life of Surveillance (V): Architectures, Spaces, Territories Privacy by Design? Marc Langheinrich University of Lugano (USI) Switzerland Projects Ubiquitous Privacy Computing Gothenburg Lancaster Paris Zurich Patras

1.15k views • 92 slides
Privacy by design and (big or not-so-big) clinical research data (management) Safeguarding

Privacy by design and (big or not-so-big) clinical research data (management) Safeguarding

Privacy by design and (big or not-so-big) clinical research data (management) Safeguarding privacy while maximizing scientific benefits: a biostatisticians approach to good data management Ronald Brand Dep of Medical Statistics, section

436 views • 26 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy by Design in EUs GDPR Botjan Brumen University of Maribor Faculty of Electrical

Privacy by Design in EUs GDPR Botjan Brumen University of Maribor Faculty of Electrical

Privacy by Design in EUs GDPR Botjan Brumen University of Maribor Faculty of Electrical Engineering and Computer Science Slovenia Background Respect for privacy: Not a new phenomenon: the polis (gr. ): the public area of

389 views • 6 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides

More recommend