privacy in
play

Privacy in Privacy in Ubiquitous Systems Ubiquitous Systems Marc - PowerPoint PPT Presentation

Mar 21, 2023 •666 likes •1.32k views

Privacy in Privacy in Ubiquitous Systems Ubiquitous Systems Marc Langheinrich ETH Zurich, Switzerland www.inf.ethz.ch/~langhein UEC, January 2002 About the ETH Zurich UEC, January 2002 Swiss Federal Institute Of Technology (ETH)

  1. Privacy in Privacy in Ubiquitous Systems Ubiquitous Systems Marc Langheinrich ETH Zurich, Switzerland www.inf.ethz.ch/~langhein UEC, January 2002

  2. About the ETH Zurich UEC, January 2002 � Swiss Federal Institute Of Technology (ETH) – Founded 1854 – 330 Professors (40% non-Swiss) – 12.000 Students (Computer Science: ~900) � Department of Computer Science – 23 Professors, ~120 PhD Students – Prof. Em. Niklaus Wirth (Pascal, Modula) � Zurich, Switzerland Introduction – Population: some 350,000 (All of Switzerland: 7.5 Million) – Only 1 hour to the Alps! 3/15/2002 Slide 2

  3. The Distributed Systems Group UEC, January 2002 � Established 1999 – Prof. Friedemann Mattern (TH Darmstadt) – 13 PhD Students � Infrastructure for Ubiquitous Computing – Services Description & Discovery – Communications – Location Introduction – Reliability, Security, Privacy 3/15/2002 Slide 3

  4. Projects & Partners UEC, January 2002 � Swiss National Fund (“Terminodes”) – Infrastructureless communications � European Union (partners from UK, DE, FI, …) – “Smart-Its” (sensor-networks) – “TAPIR” (ubicomp in health sector, appl. pending) � Ladenburger Symposium (Daimler Foundation) – Ubiquitous computing in the social sciences � M-Lab (together with Univ. St.Gallen, MIT) Introduction – Ubiquitous computing in business � “ETH World” – The future campus 3/15/2002 Slide 4

  5. Contents UEC, January 2002 Privacy in Ubiquitous Systems � Privacy primer – Does privacy matter? – Privacy Models � Privacy in ubiquitous systems – What’s so different about it? – Issues to address in ubicomp systems � Privacy-aware infrastructures – A first attempt 3/15/2002 Slide 5

  6. Just a Modern Fad? UEC, January 2002 � “All this secrecy is making life harder, more expensive, dangerous...“ – Peter Cochran, former head of BT Research � “You have zero privacy anyway” – Scott McNealy, CEO Sun Microsystems 1.1 Why Privacy? � “By 2010, privacy will become a meaningless concept in western society” – Gartner Report, 2000 3/15/2002 Slide 6

  7. Privacy – a Human Need? UEC, January 2002 � References in the Bible � Justice of Peace act (England 1361) – Provides for arrest of Peeping Toms and eavesdroppers � Privacy is a human right 1.1 Why Privacy? – Universal declaration of human rights, article 12 (1948) – European convention on human rights, article 8 (1970) 3/15/2002 Slide 7

  8. Do People Care? UEC, January 2002 � Japan’s Ministry of Postal & Telecommunications survey – interviews with 968 adults, 1999 – 70% have interest in privacy protection – 92% fear that personal information is used 1.1 Why Privacy? unknowingly 3/15/2002 Slide 8

  9. What Data is Private? UEC, January 2002 1.1 Why Privacy? Source : Cranor, Reagle, Ackerman „Beyond Concern: Understanding Net Users’ Attitudes About Online Privacy“ 3/15/2002 Slide 9

  10. Regional Differences UEC, January 2002 � IBM-Harris multinational survey – Phone interviews with 1000+ adults in each of three countries: US, UK and Germany (10/1999) – US: • greatest trust in companies, but 1.1 Why Privacy? • most likely to actively protect privacy – Germany: • most comfortable with governmental privacy protection 3/15/2002 Slide 10

  11. Privacy Definitions UEC, January 2002 � “The right to be left alone” – Judge Brandeis, 1890 (“The right to privacy”) � “The desire of people to choose freely under what circumstances and to what 1.1 Why Privacy? extent they will expose themselves, their attitudes, and their behavior to others.” – Alan Westin, 1967 (“Privacy and Freedom”) 3/15/2002 Slide 11

  12. Contents UEC, January 2002 Privacy in Ubiquitous Systems � Privacy primer – Does privacy matter? – Privacy Models � Privacy in ubiquitous systems – What’s so different about it? – Issues to address in ubicomp systems � Privacy-aware infrastructures – A first attempt 3/15/2002 Slide 12

  13. Privacy Models UEC, January 2002 � Self-Regulation – Industry-developed code of practice, overseen by self-elected bodies � Comprehensive Laws – Covers both governmental and private data collection 1.2 Privacy Models � Sectorial Laws – Govern only specific privacy aspects in a single sector (e.g. video rental records) � Privacy Technology – Self-employed (e.g. Anonymizer, Encrpytion, etc) 3/15/2002 Slide 13

  14. Self-Regulation UEC, January 2002 � Voluntary guidelines – Define acceptable base-line protection � Privacy policies – Communicate practices to users 1.2 Privacy Models � Seal programs – Establish trust relationships 3/15/2002 Slide 14

  15. Voluntary Guidelines UEC, January 2002 � Often based on “OECD Fair Information Principles” created in 1981 � Examples – Online Privacy Alliance 1.2 Privacy Models http://www.privacyalliance.org – Direct Marketing Association Privacy Promise http://www.thedma.org/library/privacy/ privacypromise.shtml 3/15/2002 Slide 15

  16. OECD Fair Information Principles UEC, January 2002 � Notice and awareness � Choice and consent � Security safeguards � Data quality and access 1.2 Privacy Models � Accountability � Use limitation � Collection limitation (data minimization) 3/15/2002 Slide 16

  17. Privacy Policies UEC, January 2002 � Policies let consumers know about site’s privacy practices � Consumers can then decide whether or not practices are acceptable, when to 1.2 Privacy Models opt-in or opt-out, and who to do business with � The presence or privacy policies increases consumer trust 3/15/2002 Slide 17

  18. Privacy Policy Drawbacks UEC, January 2002 � BUT policies are often – difficult to understand – hard to find – take a long time to read 1.2 Privacy Models • usually 3-4 pages! – changed without notice 3/15/2002 Slide 18

  19. Seal Programs UEC, January 2002 � TRUSTe – http://www.truste.org � BBBOnline – http://www.bbbonline.org � CPA WebTrust – http://www.cpawebtrust.org/ 1.2 Privacy Models � Japanese Privacy Mark http://www.jipdec.or.jp/security/privacy/ 3/15/2002 Slide 19

  20. Seal Program Problems UEC, January 2002 � Basic Principle: – Publish a policy ( any policy) and follow it � Only few require base-level standard – BBBOnline requires client in good standing 1.2 Privacy Models with Better Business Bureau � Effect: – Good notices of bad practices 3/15/2002 Slide 20

  21. Privacy Models UEC, January 2002 � Self-Regulation – Industry-developed code of practice, overseen by self-elected bodies � Comprehensive Laws – Covers both governmental and private data collection 1.2 Privacy Models � Sectorial Laws – Govern only specific privacy aspects in a single sector (e.g. video rental records) � Privacy Technology – Self-employed (e.g. Anonymizer, Encrpytion, etc) 3/15/2002 Slide 21

  22. Laws and Regulations UEC, January 2002 � Privacy laws and regulations vary widely throughout the world � US has mostly sector-specific laws, with relatively minimal protections – Self-Regulation favored over comprehensive Privacy Laws – Fear that regulation hinders (e-)commerce 1.2 Privacy Models � Europe has long favoured strong privacy laws – First data protection law in the world: State of Hesse, Germany (1970) – Council of Europe Convention on Automatic Procession of Personal Data (1981) – Privacy commissions in each country (some countries have national and state commissions) 3/15/2002 Slide 22

  23. Some US Privacy Laws UEC, January 2002 � Bank Secrecy Act, 1970 � Fair Credit Reporting Act, 1971 � Privacy Act, 1974 � Right to Financial Privacy Act, 1978 � Cable TV Privacy Act, 1984 1.2 Privacy Models � Video Privacy Protection Act, 1988 � Family Educational Right to Privacy Act, 1993 � Electronic Communications Privacy Act, 1994 � Freedom of Information Act, 1966, 1991, 1996 3/15/2002 Slide 23

  24. EU Data Directive UEC, January 2002 � 1995 Data Protection Directive 95/46/EC – Limits data collection – Requires comprehensive disclosures � Member states responsible for passing relevant national laws by 10/1998 1.2 Privacy Models – 12 out of 15 member states have passed legislation, france, ireland, luxemb. are still pending (as of 01/2002) � World-wide impact – Prohibits data export to „unsafe“ countries • Prompted legislative updates worldwide 3/15/2002 Slide 24

  25. Safe Harbor UEC, January 2002 � Membership – US companies self-certify adherance to requirements – Dept. of Commerce maintains signatory list http://www.export.gov/safeharbor/SafeHarborInfo.htm � Signatories must provide – notice notice of data collected, purposes, and recipients – choice choice of opt-out of 3rd-party transfers, opt-in for sensitive data 1.2 Privacy Models – access access rights to delete or edit inaccurate information – security security for storage of collected data – enforc enforcem ement ent mechanisms for individual complaints � Approved July 26, 2000 by EU – reserves right to renegotiate if remedies for EU citizens prove to be inadequate 3/15/2002 Slide 25

Recommend

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in many ways over the years. Usually privacy is concerned with the individual human being. We may talk about privacy as the control over your own

230 views • 21 slides
Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy Commissioner of Ontario https://www.ipc.on.ca/images/resources/7foundationalprinciples.pdf Privacy by Design Let's have it! Article 25 European

1.32k views • 118 slides
Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy.

Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy.

Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy. College Bescherming Persoonsgegevens (CBP) What is privacy? Users must be able to determine for themselves when, how, to what extent and

798 views • 45 slides
Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics

Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics

ECE598NB Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics Course Structure Privacy Define privacy Privacy History Privacy has always existed Cities / large populations have made

173 views • 14 slides
Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance Engineering & Public Policy Lorrie Faith Cranor October 29, 2013 y & c S a e v c i u r P r i t e y l b L a a s

245 views • 20 slides
Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance

Privacy engineering, CyLab privacy by design, privacy impact assessments, and privacy governance Engineering & Public Policy Lorrie Faith Cranor November 11, 2014 y & c S a e v c i u r P r i t e y l b L a a s

555 views • 21 slides
Bridging Privacy Definitions: Differential Privacy and Concepts from Privacy Law & Policy

Bridging Privacy Definitions: Differential Privacy and Concepts from Privacy Law & Policy

Bridging Privacy Definitions: Differential Privacy and Concepts from Privacy Law & Policy Alexandra Wood Berkman Klein Center for Internet & Society at Harvard University DIMACS/Northeast Big Data Hub Workshop on Overcoming Barriers to

964 views • 54 slides
Privacy and Anonymity 1 Privacy Privacy and society Basic individual right & desire

Privacy and Anonymity 1 Privacy Privacy and society Basic individual right & desire

CS 134 Privacy and Anonymity 1 Privacy Privacy and society Basic individual right & desire (Image from geekologie.com) Relevant to corporations & government agencies Recently increased awareness However, general public

171 views • 16 slides
PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches

PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches

Marc Langheinrich: Privacy in Ubiquitous Computing 5/29/2010 Todays Menu PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches COMPUTING Definitions Challenges 1. History and legal aspects 1.

264 views • 13 slides
Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Mobile Networks - Module H2 Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; privacy preserving routing in ad hoc networks; Slides adapted from Security and

909 views • 55 slides
Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues

Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues

Simone Fischer-Hbner Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues (LBS, RFID,...) IV. European Privacy Legislation/ Directives I. Definition Warren & Brandeis 1890 The right to

694 views • 30 slides
matching and the Privacy Act 1988 (Cth) Dimitrios (Jim) Kormas | Assistant Director| Privacy

matching and the Privacy Act 1988 (Cth) Dimitrios (Jim) Kormas | Assistant Director| Privacy

Government data matching and the Privacy Act 1988 (Cth) Dimitrios (Jim) Kormas | Assistant Director| Privacy Assessments 17 May 2018 Brief overview of the OAIC, Privacy Act and Australian Privacy Principles (APPs) OAICs involvement

454 views • 16 slides
Privacy Presentation Task Force on Autonomous Vehicles Subcommittee on Cybersecurity, Privacy,

Privacy Presentation Task Force on Autonomous Vehicles Subcommittee on Cybersecurity, Privacy,

Privacy Presentation Task Force on Autonomous Vehicles Subcommittee on Cybersecurity, Privacy, and Data April 18, 2019 The Pessimistic View (or, Privacy is Dead) Internet Privacy A More Realistic View Privacy Monetization Convenience

355 views • 9 slides
Privacy September 26 th , 2018 Have you ever felt as though your u privacy was violated? u When?

Privacy September 26 th , 2018 Have you ever felt as though your u privacy was violated? u When?

CS4001: Computing, Society and Professionalism Sauvik Das | Assistant Professor Privacy September 26 th , 2018 Have you ever felt as though your u privacy was violated? u When? How?* Privacy * Dont need to share specifics, just u

427 views • 29 slides
Differential Privacy (Part III) Approximate (or ( , ))-differential privacy

Differential Privacy (Part III) Approximate (or ( , ))-differential privacy

Differential Privacy (Part III) Approximate (or ( , ))-differential privacy Generalized definition of differential privacy allowing for a (supposedly small) additive factor Used in a variety of applications A query mechanism M is (

1.27k views • 43 slides
Who we are: Tom Walker // @thomwithoutanh Privacy The right to privacy : individuals should be

Who we are: Tom Walker // @thomwithoutanh Privacy The right to privacy : individuals should be

Beneficial ownership transparency, Title Page privacy and data protection 23 October Presented by Tom Walker tom@theengineroom.org @thomwithoutanh Who we are: Tom Walker // @thomwithoutanh Privacy The right to privacy : individuals should be

702 views • 13 slides
CS573 Data Privacy and Security Local Differential Privacy Li Xiong Privacy at Scale: Local

CS573 Data Privacy and Security Local Differential Privacy Li Xiong Privacy at Scale: Local

CS573 Data Privacy and Security Local Differential Privacy Li Xiong Privacy at Scale: Local Differential Privacy in Practice (Module 1) Graham Cormode, Somesh Jha, Tejas Kulkarni, Ninghui Li, Divesh Srivastava, and Tianhao Wang Differential

819 views • 38 slides
Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole

Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole

Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole Polytechnique 1 Plan of the talk General introduction to privacy issues A naive approach to privacy protection: anonymization Why it

740 views • 44 slides

More recommend