Transcript - EdShare

The New Logic of Privacy:
Transparency and Accountability on the Web
26 April 2006
Daniel J. Weitzner <[email protected]>
MIT Decentralized Information Group
Daniel J. Weitzner
Overview
• Trends toward greater transparency
• New Privacy Challenges
• Transparency in the service of privacy
Daniel J. Weitzner
Then and Now
Daniel J. Weitzner
Larger technical trends toward transparency
• The end of ‘stovepipes’
• Cheap query
• Location-aware sensor nets
• Cost of storage = zero
Daniel J. Weitzner
1. The End of ‘Stovepipes’
Daniel J. Weitzner
2. Cheap query: institution-wide and
Web-wide
Daniel J. Weitzner
3. Location-aware Sensor Nets
Daniel J. Weitzner
4.Cost of Storage approaches zero
Daniel J. Weitzner
Privacy -- The challenge of webscale profiling
Authorities in the Washington region spotted
the same faded blue 1990 Chevrolet Caprice
and recorded its New Jersey tags on at least 10
different occasions this month….
Each time, however, they let the driver go after
finding no record that it had been stolen or that
its occupants were wanted for any crimes.
"We were looking for a white van with white
people, and we ended up with a blue car with
black people," said D.C. Police Chief Charles
H. Ramsey
Washington Post 26 October 2002, p.A01
Daniel J. Weitzner
Privacy shifts: from collection limts
to use limits
• Most intrusive practices are from inferences drawn, not
individual quanta of information collected:
Credit card transactions  profiling
Web logs  Web search patterns
Instantaneous location  travel patterns
• collection barriers  usage description with
accountability (after the fact) to rules:
• Departure from information hiding as a privacy protection
mechanism  transparency and accountability
Daniel J. Weitzner
Avoiding Technological Determinism
Daniel J. Weitzner
And Avoiding Policy Formalism
Daniel J. Weitzner
Better Privacy Through Transparent
Inferencing and Accountability
Law(rule): aviation screening data
may not be used for
immigration enforcement
Transparency: Moro should not be
stopped if he doesn’t live at 132
Main St.
Accountability: Don’t investigate
Moro
Daniel J. Weitzner
The Transparency Alternative
Getting on the right side of the Semantic Web
Technology curve
Recognize shift from collection limits to use
limitations:
•
•
•
Daniel J. Weitzner
Precise use limitation rules
Transaction-level accountability with real-time audit
User access to rule compliance verification
The Transparency Paradox and the Need for
Accountability
"Assume the (unauthorized) user knows all ciphering procedures”
-Kerckhoffs’ Principle (1835-1903)
The transparency paradox: that we may have to embrace greater
exposure of personal information in order to advance fundamental
privacy values.
Daniel J. Weitzner
For More Information
• Our research group at MIT: Decentralized Information Group
http://dig.csail.mit.edu/
• Tranparency and Accountability
Weitzner, Abelson, Berners-Lee, et al., "Transparent Accountable Data
Mining: New Strategies for Privacy Protection", MIT CSAIL Technical Report
MIT-CSAIL-TR-2006-007 (27 January 2006)
http://www.w3.org/2006/01/tami-privacy-strategies-aaai.pdf
https://dspace.mit.edu/bitstream/1721.1/30972/2/MIT-CSAIL-TR-2006-007.pdf
• Policy-Aware Access Control (With UMD MindLab)
Weitzner, Hendler, Berners-Lee, Connolly, "Creating the Policy-Aware
Web: Discretionary,Rules-based Access for the World Wide Web." In
Elena Ferrari and Bhavani Thuraisingham,editors, Web and Information Security. IOS Press,
2005.
http://www.w3.org/2004/09/Policy-Aware-Web-acl.pdf
Thanks!
Daniel J. Weitzner