Transcript - EdShare
The New Logic of Privacy: Transparency and Accountability on the Web 26 April 2006 Daniel J. Weitzner <[email protected]> MIT Decentralized Information Group Daniel J. Weitzner Overview • Trends toward greater transparency • New Privacy Challenges • Transparency in the service of privacy Daniel J. Weitzner Then and Now Daniel J. Weitzner Larger technical trends toward transparency • The end of ‘stovepipes’ • Cheap query • Location-aware sensor nets • Cost of storage = zero Daniel J. Weitzner 1. The End of ‘Stovepipes’ Daniel J. Weitzner 2. Cheap query: institution-wide and Web-wide Daniel J. Weitzner 3. Location-aware Sensor Nets Daniel J. Weitzner 4.Cost of Storage approaches zero Daniel J. Weitzner Privacy -- The challenge of webscale profiling Authorities in the Washington region spotted the same faded blue 1990 Chevrolet Caprice and recorded its New Jersey tags on at least 10 different occasions this month…. Each time, however, they let the driver go after finding no record that it had been stolen or that its occupants were wanted for any crimes. "We were looking for a white van with white people, and we ended up with a blue car with black people," said D.C. Police Chief Charles H. Ramsey Washington Post 26 October 2002, p.A01 Daniel J. Weitzner Privacy shifts: from collection limts to use limits • Most intrusive practices are from inferences drawn, not individual quanta of information collected: Credit card transactions profiling Web logs Web search patterns Instantaneous location travel patterns • collection barriers usage description with accountability (after the fact) to rules: • Departure from information hiding as a privacy protection mechanism transparency and accountability Daniel J. Weitzner Avoiding Technological Determinism Daniel J. Weitzner And Avoiding Policy Formalism Daniel J. Weitzner Better Privacy Through Transparent Inferencing and Accountability Law(rule): aviation screening data may not be used for immigration enforcement Transparency: Moro should not be stopped if he doesn’t live at 132 Main St. Accountability: Don’t investigate Moro Daniel J. Weitzner The Transparency Alternative Getting on the right side of the Semantic Web Technology curve Recognize shift from collection limits to use limitations: • • • Daniel J. Weitzner Precise use limitation rules Transaction-level accountability with real-time audit User access to rule compliance verification The Transparency Paradox and the Need for Accountability "Assume the (unauthorized) user knows all ciphering procedures” -Kerckhoffs’ Principle (1835-1903) The transparency paradox: that we may have to embrace greater exposure of personal information in order to advance fundamental privacy values. Daniel J. Weitzner For More Information • Our research group at MIT: Decentralized Information Group http://dig.csail.mit.edu/ • Tranparency and Accountability Weitzner, Abelson, Berners-Lee, et al., "Transparent Accountable Data Mining: New Strategies for Privacy Protection", MIT CSAIL Technical Report MIT-CSAIL-TR-2006-007 (27 January 2006) http://www.w3.org/2006/01/tami-privacy-strategies-aaai.pdf https://dspace.mit.edu/bitstream/1721.1/30972/2/MIT-CSAIL-TR-2006-007.pdf • Policy-Aware Access Control (With UMD MindLab) Weitzner, Hendler, Berners-Lee, Connolly, "Creating the Policy-Aware Web: Discretionary,Rules-based Access for the World Wide Web." In Elena Ferrari and Bhavani Thuraisingham,editors, Web and Information Security. IOS Press, 2005. http://www.w3.org/2004/09/Policy-Aware-Web-acl.pdf Thanks! Daniel J. Weitzner