Transcript Christopher W. Clifton

Security and Privacy: Are they
Two Sides of the Same Coin?
Organizer: Lillie Coney, epic.org
Sherry Burs-Howard, The MITRE Corporation
Chris Clifton, Purdue University / CERIAS
David Farber, Professor Emeritus U. Penn.
I’m Chris Clifton, and
I Want Your Data!
• Your Data is Valuable!
– Health and Social Sciences Research
– Market and Product Research
– Personalization
– Targeted marketing
– Identity theft
Is it worth the risk to privacy?
Privacy  Security?
New Issues
• Ownership of data
– Often NOT the individual
– But individual still has a say
• Consent for use of data
– By the individual
– For a specific purpose
• Secondary use
– May be “authorized user”
– But only authorized for the right purpose
CPO ≠ CSO
• Privacy shouldn’t be an add-on
– We already have to fight this with Security
• Compliance
– Regulations vary by jurisdiction, type of data
• HIPAA, FERPA, U.S. Persons, …
• EC95/46
– Enforcement happens
• But without security, we don’t get privacy
Analysis of Private Data
• Security technology enables safe analysis
of private data
– I may want your data
– But I only need analysis of the data
We need a vision for managing data about
individuals that recognizes this distinction
Privacy-Preserving Data Mining
Approaches (Outlier Detection)
Algorithm
Fasf  rewre
fdsdf = werewr
zxcv  dfs
sdfwe _ zxvc
qwe  xcv
sd = asdf
xcv qwer
Sdffs  qwer
Xcv: wqer
Bank
Chris
84
Dirk
29
Carl
15
Tom Terrorist:
42568
2
Jessica 3 4
Evaluate
Give the Algorithm
...
Credit Card
Carl
Jessica
Chris
Dirk
3
2
1
4
6
4
9
8
2
8
5
2
Get the Data
PPDM:
•Randomization
•Transformation
•Anonymization
•Secure Multiparty
Computation
Beneficial Use of Data
• Dot chart by Dr. James Snow showing deaths from
cholera in relation to the locations of public water pumps.
– Observed that cholera occurred almost entirely among those
who lived near (and drank from) the Broad Street water pump
• Can we do this without risk to Privacy?
– HIPAA Safe-Harbor Anonymization
Anonymized Data
• HIPAA Safe-Harbor De-Identified Data
– Is it useful?
Name
Addr.
Birth
Sex Diagnosis
479xx
56
F
…
479xx
67
M
…
479xx
78
M
Schizophrenic