Presentation is loading. Please wait.

Presentation is loading. Please wait.

Technology Panel What technical tools are in our disposal for achieving privacy Privacy: Technology + Policy –Technology can Implement Policy –Without.

Published byScott Morris Modified over 8 years ago

Similar presentations

Presentation on theme: "Technology Panel What technical tools are in our disposal for achieving privacy Privacy: Technology + Policy –Technology can Implement Policy –Without."— Presentation transcript:

1 Technology Panel What technical tools are in our disposal for achieving privacy Privacy: Technology + Policy –Technology can Implement Policy –Without Policy, technology will not be employed

2 Panelists

3 The Evolution of Computing

4 A Migration of Data Hjhfjfh jjjh jh jhjhj

5 Migration of Computation Hjhfjfh jjjh jh jhjhj = ?

6 A unprecedented Collection of Data Medical Records Financial Surveillance photos Location information Purchasing history Browsing history Social Interactions Data is not only stored by us but also collected about us

7 Enormous Potential Benefits in Globalization of Knowledge Hjhfjfh jjjh jh jhjhj = ?

8 Benefits Heath: Sharing Data Sets for research and disease control National Security: threat prediction, law enforcement Data Analytics: –Traffic re-routing, –smart energy usage, –economic growth by intelligent consumer targeting –risk predictions for financial markets

9 Enormous Potential Risks: Loss of Control, Misuse of Knowledge Hjhfjfh jjjh jh jhjhj = ?

10 Risks Loss of Control: Remote Storage threatens –Authenticity, –Correctness –Availability. Loss of Privacy: reveal more data than necessary to extract the benefits –Loss of Anonymity –Loss of Fairness: Profiling, price discrimination –Loss of competitive Edge: Playing field leveled by common data

11 Loss of Privacy is Complex Different Entities Collect and Protect Data in an Un-coordinated fashion Unforeseen Cross Referencing of information held by different entities on the same individual, causes greater privacy loss Aggregate information on many can reveals information on a single individual

12 Methods Which Don’t Work Classic Encryption: Can hide information but not process it Classic Anonymizing: Individual’s data with identifying information removed, is still easy to recognize

13 Benefit vs. Risk Medical: Research progress vs. Patient Rights National Security: Surveillance vs. Liberty Financial: Risk Analysis vs. Market-Competition Economic Growth Consumer Targeting vs. Fair Pricing Are These Contradictory Constraints?

14 Benefit vs. Risk Medical: Research progress vs. Patient Rights National Security: Surveillance vs. Liberty Financial: Risk Analysis vs. Market-Competition Economic Growth Consumer Targeting vs. Fair Pricing Can mathematics & technology enable us to have the best of both worlds

15 Cryptography 80’s - today Host of Techniques that enable to perform computations on data without seeing the data Reconcile some of these seemingly contradictory “Benefits vs. Risks”

16 SFE: Mathematical Formulation N distrustful parties run a protocol to extract information depending on their collective private data. Formulate this as evaluating a function f (X 1, X 2, …,X n ) –where X j is private input of party j. So that parties only learn the function output and nothing else about others inputs X2X2 X3X3 X4X4 X5X5 X1X1

17 Suspect Data Base Example 1: Policing While Not Breaking Civil Liberties f(photos, suspects) = true only if suspect appears in them Surveillance Photos protocol

18 Example 2: Conduct Medical Study on Confidential Medical Data f(B&W-DNA,MGH-DNA) = prevalence of green gene in the population

19 Example 3:Financial Stability of our society Merril Lynch Mass General Lehman Bros. Protocol f(MerrilLynch,LehmanBros) = will banks become insolvent

20 Trusted Center Solution? Center can be Faulty! Goal: Decentralized solution with “same” properties as solution with trusted center

21 Security Definition: Simulation Paradigm Given own inputs and outputs, can generate “simulated view” of the protocol which is computationally indistinguishable from “real view”. Distribution of REAL Messages Exchanged in the protocol v1v1 p1p1 v2v2 pkpk v1v1 p1p1 v2v2 pkpk ≈ SIMULATED Messages Exchanged in the protocol

22 Major Result [ the 80’s] Any polynomial time function f can be securely evaluated, using the cryptographic tool box Unconditionally, if there is an Honest Majority Assuming oblivious transfer, if no honest majority,

23 In toy examples, different entities with different goals hold different parts of the data Not Always the case…. By design store data distributed so no single entity has entire data or power e.g. each item is split among servers Store All Data Distributively

24 SFE: Theory and Practice [80’s] Proof of Concept: Great Theory, General functions, but impractical In recent times [Lindell2013 Survey]: optimized implementations for specific functions and relaxed security, achieve impressive practical performance But: Requires Interaction Not robust to an “insider” leaking all

25 Truly Amazing Progress: Computing on Encrypted Data Fully Homomorphic Encryption [Gentry2009] Functional Encryption [SW05, GVW13, GKPVZ13, GGHRSW13, GGSJ14] Theory to Practice: Research to be done Secret key for f Using key Server can compute f(Data) Enc[Data 1 ].. Enc[Data n ]

26 From Data to Programs Browsing Searching Social Interactions General Programs Goal: keep which programs you run private? Promise: Program Obfuscation Methods

27 Secure Function Evaluation  Privacy Given f, SFE shows how to compute f(data) revealing nothing extra on data But f(data) itself may reveal too much f 1 (data),…,…,f n (data) may reveal too much f(data 1,…,data n ) can reveal data j, if {data i } is chosen maliciously Privacy Research: Which classes of functions are safe to compute?

28 A Combination of Privacy and Secure Computation A two-stage process: –Decide that the function/algorithm should be computed – an issue of privacy –Apply secure computation techniques to compute it securely – security

Download ppt "Technology Panel What technical tools are in our disposal for achieving privacy Privacy: Technology + Policy –Technology can Implement Policy –Without."

Similar presentations

Daisuke Mashima and Arnab Roy Fujitsu Laboratories of America, Inc. Privacy Preserving Disclosure of Authenticated Energy Usage Data.

Daisuke Mashima and Arnab Roy Fujitsu Laboratories of America, Inc. Privacy Preserving Disclosure of Authenticated Energy Usage Data.
Rational Oblivious Transfer KARTIK NAYAK, XIONG FAN.

Rational Oblivious Transfer KARTIK NAYAK, XIONG FAN.
CS555Topic 241 Cryptography CS 555 Topic 24: Secure Function Evaluation.

CS555Topic 241 Cryptography CS 555 Topic 24: Secure Function Evaluation.
Introduction to Modern Cryptography, Lecture 12 Secure Multi-Party Computation.

Introduction to Modern Cryptography, Lecture 12 Secure Multi-Party Computation.
Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.
TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.

TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.
Protecting User Data in Ubiquitous Computing: Towards Trustworthy Environments Yitao Duan and John Canny UC Berkeley.

Protecting User Data in Ubiquitous Computing: Towards Trustworthy Environments Yitao Duan and John Canny UC Berkeley.
FIN 685: Risk Management Topic 5: Simulation Larry Schrenk, Instructor.

FIN 685: Risk Management Topic 5: Simulation Larry Schrenk, Instructor.
 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.

 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
Privacy Chris Kelly iLaw July 5, 2002.

Privacy Chris Kelly iLaw July 5, 2002.
CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.
Proactive Secure Mobile Digital Signatures Work in progress. Ivan Damgård and Gert Læssøe Mikkelsen University of Aarhus.

Proactive Secure Mobile Digital Signatures Work in progress. Ivan Damgård and Gert Læssøe Mikkelsen University of Aarhus.
CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.
Future Research Directions Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Future Research Directions Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
1 Introduction to Secure Computation Benny Pinkas HP Labs, Princeton.

1 Introduction to Secure Computation Benny Pinkas HP Labs, Princeton.
CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 6 Jonathan Katz.
1 Information and Data Privacy: An Indian Perspective  Why is this important? Public concern about privacy.  Considerable concern in developed countries.

1 Information and Data Privacy: An Indian Perspective  Why is this important? Public concern about privacy.  Considerable concern in developed countries.
On Everlasting Security in the Hybrid Bounded Storage Model Danny Harnik Moni Naor.

On Everlasting Security in the Hybrid Bounded Storage Model Danny Harnik Moni Naor.
Introduction (Pendahuluan)  Information Security.

Introduction (Pendahuluan)  Information Security.

Similar presentations

Ads by Google