collecting user s data in a socially responsible manner
play

Collecting User's Data in a Socially-Responsible Manner. Photograph: - PowerPoint PPT Presentation

Jan 01, 2023 •18 likes •398 views

Collecting User's Data in a Socially-Responsible Manner. Photograph: Daniel Beltra/Greenpeace Josep M. Pujol Konark Modi @konarkmodi @solso About Cliqz 80+ - Team size 500,000 - DAU 3 Million+ - Downloads (Germany only) 1

  1. “Collecting User's Data in a Socially-Responsible Manner.” Photograph: Daniel Beltra/Greenpeace Josep M. Pujol Konark Modi @konarkmodi @solso

  2. About Cliqz • 80+ - Team size • 500,000 - DAU • 3 Million+ - Downloads (Germany only) • 1 billion+ - Indexed pages (We do not believe in indexing the web.) • 5 TB - In-Memory indexed (Based on open source and in-house build NoSQL stores.) • 10x more coverage for anti-phishing protection - As compared to other players like safebrowsing by Google. • Upcoming products like Anti-tracking etc.

  3. About Cliqz

  4. We Love Data …

  5. Let's step back a bit in time, to get the context.

  6. “ Data is the new oil ” - Clive HumBy (2006) Source : http://thehumanfaceofbigdata.com

  7. Is privacy the new Green ? Data is still being collected without enough controls & measures.

  8. Is privacy the new Green ? The biggest by-product of which being SESSIONS.

  9. How ? Alice Alice Uncharted water Alice Bob MAP/REDUCE :D Alice Server-Side Bob Client-Side

  10. Instead … Alice Alice Uncharted Alice water MAP/REDUCE :D MAP/REDUCE :D Alice Bob Server-Side MAP/REDUCE :D Bob Client-Side

  11. Who is responsible ? Is there a conspiracy theory or an evil plan ?

  12. Well, we have a simpler explanation: It’s the consequences of common development practices, which results in trading user’s data knowingly / unknowingly !

  13. Demo

  14. This looks like a toy example ?

  15. Let’s take a more complex case Which are the queries that are so bad that forces people to redo the same query elsewhere ?

  16. apache search Alice big data engine 1 conf apache search Alice big data engine 2 conf Client-Side

  17. apache apache search search Alice big data Alice big data engine 1 engine 1 conf conf apache apache search search Alice big data Alice big data engine 2 engine 2 conf conf Uncharted Map-Reduce water Client-Side Server - Side

  18. apache apache search search Alice big data Alice big data engine 1 engine 1 conf conf apache apache search search Alice big data Alice big data engine 2 engine 2 conf conf Uncharted Map-Reduce water Client-Side Server - Side

  19. apache apache search search Alice Alice big data big data engine 1 engine 1 conf conf apache apache search search Alice big data Alice big data engine 2 engine 2 conf conf Uncharted Map-Reduce water Client-Side Server - Side apache search Alice big data engine 1 conf apache search Alice big data engine 2 conf Map-Reduce

  20. apache apache search search Alice Alice big data big data engine 1 engine 1 conf conf apache apache search search Alice big data Alice big data engine 2 engine 2 conf conf Uncharted Map-Reduce water Client-Side Server - Side apache search Alice big data engine 1 conf apache search Alice big data engine 2 conf Map-Reduce

  21. We mentioned before, we believe in data and are not against the collection . • Stopping data collection altogether would be foolish and dangerous.This also means stopping the wheels of innovation. • Who would benefit the most by supporting the ban on advertisements of tobacco products??

  23. “Socially responsible manner” is an analogy to ensure events being collected are not su ff ering from pollutants like Explicit IDs, Implicit IDs and reaches home Secure.

  24. Why does CLIQZ Care ?

  25. German Data Privacy Laws Security breaches When government knocks on your door

  26. So what do we bring on the table ??

  27. HUMAN WEB • We have developed HumanWeb to balance the Right-to-Privacy with the needs to build products that improve the web and allow for more openness. • Ensuring data that can infer sessions, linkages to navigation patterns is not collected. • Does not create so much data that could allow identification of individuals • We do not want to know who "YOU" are, what "YOU" searched and when "YOU" searched. • Designed keeping in mind so that a "malicious/untrustworthy" actor or as a matter of fact even anyone at Cliqz, getting access to the raw data flow cannot infer or identify individuals.

  28. Sample events: { "action" : action of the message, "ver" : version name, "type" : "humanweb", "payload" : { }, //the actual data "ts" : UTC time capped to the day, e.g. 20150909 } • Sample event for Page • Sample event for Query

  29. HumanWeb Map-Reduce Aggregations, Heuristics, Local storage | Structural data about webpages Filtering,Hashing [ Final checks {event1}, {event2}, {event3} Secure Channel Filtering ] Event Queue | Schedule to ensure not Sanitisation / Masking sent in batch Client-side

  30. Privacy breaches on the way home To achieve total privacy , we must rely on a network of proxies that remove any network-related data like cookies, IP , headers so that finger-printing is impossible .

  31. SecureChannel : Protection from network fingerprinting

  32. SecureChannel : What do we encrypt ? The queries from the user (initiated by them upon activity on the • Cliqz’s instrumented Firefox address bar) . • All telemetry signals (initiated by Cliqz’s instrumented Firefox) • All messages regarding the HumanWeb data collection e ff ort. Also, before reaching our infrastructure the encrypted messages are routed through a mesh of proxies.

  33. SecureChannel : How do we encrypt ? Client side : 128-bit symmetric AES encryption, OpenSSL RSA 1024-bit encryption. EventLogger: 128-bit symmetric AES encryption, OpenSSL RSA 4096-bit encryption. Life-Cycle of hashes / keys : • AES : Hash-keys used with AES are used only one time. Even if the user types the same query . • Public / Private KeyPair ( Client ) : • The Keys on client side are all short lived, we continuously generate keys on the client-side. • The public/private key pair of the client (the Extension) is meant to be used only once and then thrown away. The key pairs are regenerated to fill a pool while the browser is idle. • Public / Private KeyPair ( Server ) : • Only public part of this key is shared with the extension. • The client uses it while encrypting the request. This is long lived key, currently only to change in the case it is compromised

  34. SecureChannel : How do we encrypt ? (Extension) encryptedRequest(iv:encryptedMsg:encryptedKey) iv : Initializaton Vector msg = (originalRequest + ExtensionPublicKey) key = md5(msg) encryptedMsg = AES.encrypt(msg, key, {mode: CBC, padding: PKCS7, iv: iv}) encryptedKey = sign(EventLoggerPublicKey, key) Each request to be encrypted has the following components : • Message / Request to encrypt : Query or Data • ExtensionPublicKey : Chosen from a pool of public keys for that user on the machine, key is used only once and then discarded). • Initialisation Vector : Derived from wordarray of 16-bits. • EventLoggerPublicKey : Our public key, shared with the extension.

  35. SecureChannel : Routing ? (Extension) • Extension maintains a list of proxies which are healthy / good at that point in time. • When sending the request / message extension picks up the end-point in a round-robin fashion (Round-robin for now). • To avoid the risk of proxies being malicious with the message, we implement scrambling and splitting of messages into a random ‘n’ parts just before sending the message from extension. • The value of n is determined by the extension, we expect ‘n’ to be 1,2,4 or 8 for the time being. Also, the value of ’n’ is not known to proxies hence they are unaware if it has all the parts. • The only way to tamper a message is to have all the parts to decrypt it, but since messages are scrambled, split and send through di ff erent proxies this makes the messages safe from proxies. • Event Logger waits for all the message by combination at our Event Logger(Secure) can decrypt the message.

  36. SecureChannel : How do we decrypt ? (Server) EncryptedRequest = iv:encryptedMsg:encryptedKey key = unlock(EventLoggerPrivateKey, encryptedKey) msg = AES.decrypt(encryptedMsg, key, {mode: CBC, padding: PKCS7, iv: iv) request = msg.data ExtensionPublicKey = msg.pk (We need it to sign the response) Important: • Because the server receives messages in parts, to get the key and message we rely on combinations. • The message itself is scrambled, so even if it is decrypted we need to stitch it together by trying different combinations.

  37. All talk and no play, makes Jack a dull boy ! Demo

  38. Thank You http://www.cliqz.com/en photo: projectsecretidentity.org We believe it’s possible, we are actually doing it

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

How to Encourage Socially Responsible Behavior? Responsible Behavior? Tore Ellingsen Milano 21

How to Encourage Socially Responsible Behavior? Responsible Behavior? Tore Ellingsen Milano 21

How to Encourage Socially Responsible Behavior? Responsible Behavior? Tore Ellingsen Milano 21 October 2011 Outline 1. What is socially responsible behavior? 2. Is there any reason to encourage it? 3. If so how? a) What drives socially

321 views • 31 slides
CREATING A SOCIALLY RESPONSIBLE Chief Executive Officer, BSE Limited Mining Investment

CREATING A SOCIALLY RESPONSIBLE Chief Executive Officer, BSE Limited Mining Investment

Thapelo Tsheole CREATING A SOCIALLY RESPONSIBLE Chief Executive Officer, BSE Limited Mining Investment Conference, Gaborone INVESTING CULTURE THAT TRANSLATES TO 21 st May 2019 BETTER RETURNS FOR POTENTIAL INVESTORS What is Socially Responsible

247 views • 13 slides
WEBINAR: DT FOR SOCIALLY N O SOC RESPONSIBLE INVESTORS 16 th of October 2014 DISCLAIMER This

WEBINAR: DT FOR SOCIALLY N O SOC RESPONSIBLE INVESTORS 16 th of October 2014 DISCLAIMER This

WEBINAR: DT FOR SOCIALLY N O SOC RESPONSIBLE INVESTORS 16 th of October 2014 DISCLAIMER This presentation contains forward-looking statements that reflect the current views of Deutsche Telekom management with respect to future events. These

524 views • 17 slides
Collecting Engineering Data Three ways of collecting data on the impacts of factors on a response

Collecting Engineering Data Three ways of collecting data on the impacts of factors on a response

ST 370 Probability and Statistics for Engineers Collecting Engineering Data Three ways of collecting data on the impacts of factors on a response in a system: Retrospective Study: Collect relevant data from historical records; Observational

340 views • 12 slides
Socially Responsible Investing (SRI) and Environment Social & Governance (ESG) What you need

Socially Responsible Investing (SRI) and Environment Social & Governance (ESG) What you need

Socially Responsible Investing (SRI) and Environment Social & Governance (ESG) What you need to know! Advisory services offered through Millennium Investment & Retirement Advisors, LLC, a registered investment advisor. Disclosures The

225 views • 10 slides
Socially Responsible Inves1ng and Benefit Corpora1on

Socially Responsible Inves1ng and Benefit Corpora1on

Socially Responsible Inves1ng and Benefit Corpora1on PROF. GABRIELLA IERMANO Universit di Pisa Pisa, 3 rd May 2017

465 views • 20 slides
Governing Responsible Business Conduct through Financial Markets? The Case of French Socially

Governing Responsible Business Conduct through Financial Markets? The Case of French Socially

Governing Responsible Business Conduct through Financial Markets? The Case of French Socially Responsible Investing Stephanie Giamporcaro (Nottingham Business School, UK) Jean-Pascal Gond (ETHOS, Cass Business School, City, University of

97 views • 7 slides
Collecting Data: New Information Sources November 2019 Outlines Collecting Data Legal

Collecting Data: New Information Sources November 2019 Outlines Collecting Data Legal

13 TH Session of the Committee of Director-Generals CoDGs of the National Statistics Offices High Level Meeting on Data Governance Tunis, 22 November 2019 Collecting Data: New Information Sources November 2019 Outlines Collecting Data

84 views • 7 slides
Friends of Family Farmers Promoting and protecting socially and environmentally responsible

Friends of Family Farmers Promoting and protecting socially and environmentally responsible

Friends of Family Farmers Promoting and protecting socially and environmentally responsible family scale agriculture in Oregon Ivan Maluski, Policy Director North Willamette Horticulture Society Organic Section January 10, 2018 Who are we?

274 views • 13 slides
Socially and Environmentally Responsible Aggregates (SERA) Andrea Bourrie Dufferin Aggregates

Socially and Environmentally Responsible Aggregates (SERA) Andrea Bourrie Dufferin Aggregates

Socially and Environmentally Responsible Aggregates (SERA) Andrea Bourrie Dufferin Aggregates Acton Quarry Community Liaison Committee Meeting June 7, 2011 A division of Holcim (Canada) Inc. What is the current state of the Aggregate

298 views • 10 slides
What Makes An Investment Socially Responsible? Louis Berger Co-Founder & Principal

What Makes An Investment Socially Responsible? Louis Berger Co-Founder & Principal

What Makes An Investment Socially Responsible? Louis Berger Co-Founder & Principal Washington Square Capital Management Email: louis.berger@wsqcapital.com Twitter: @louisberger Young Jain Professionals -- July 10, 2014

124 views • 10 slides
Social Responsibility July 2016 Our Identity Being socially responsible is Personal an

Social Responsibility July 2016 Our Identity Being socially responsible is Personal an

Social Responsibility July 2016 Our Identity Being socially responsible is Personal an important part of who and Family we are as engaged and aware Communal outward facing Jews and Israel Societal Social responsibility involves

423 views • 8 slides
Conceptualising Socially Responsible Entrepreneurial Universities HEX4EU Workshop, St. Mary

Conceptualising Socially Responsible Entrepreneurial Universities HEX4EU Workshop, St. Mary

Conceptualising Socially Responsible Entrepreneurial Universities HEX4EU Workshop, St. Mary University Panel 2: Entrepreneurial Universities as Drivers for Smart Specialisation 28.6.2019 Yuzhuo Cai Senior Lecturer, Adjunct Professor Faculty

473 views • 22 slides
Putting a socially responsible price on carbon Putting a socially responsible price on carbon

Putting a socially responsible price on carbon Putting a socially responsible price on carbon

Putting a socially responsible price on carbon Putting a socially responsible price on carbon Putting a socially responsible price on carbon Putting a socially responsible price on carbon a challenge for society a challenge for society

185 views • 15 slides
Connecting and Supporting Socially Responsible Educators Networking Workshop by Anastasia Khawaja

Connecting and Supporting Socially Responsible Educators Networking Workshop by Anastasia Khawaja

Connecting and Supporting Socially Responsible Educators Networking Workshop by Anastasia Khawaja and Riah Werner Social responsibility is an ethical framework and What is Social suggests that an entity, be it an organization or

173 views • 14 slides
Property Investing RPI lies at the nexus of Sustainable Cities and Buildings Socially

Property Investing RPI lies at the nexus of Sustainable Cities and Buildings Socially

Responsible Property Investing RPI lies at the nexus of Sustainable Cities and Buildings Socially Corporate Responsible Responsible Social Property Investing Responsibility Investing Real Estate Investing Definitions Real

879 views • 68 slides
Qualitative Evaluation Food for Thought Nest thermostat https://youtu.be/oxOukh_Ma6o

Qualitative Evaluation Food for Thought Nest thermostat https://youtu.be/oxOukh_Ma6o

Qualitative Evaluation Food for Thought Nest thermostat https://youtu.be/oxOukh_Ma6o Programmable thermostats are no longer LEEDS certified Why? And what is LEED? Evaluation overview Evaluation is concerned with gathering

349 views • 32 slides
Logging changes in data with lumberjack Mark van der Loo, Statistics Netherlands @markvdloo |

Logging changes in data with lumberjack Mark van der Loo, Statistics Netherlands @markvdloo |

Logging changes in data with lumberjack Mark van der Loo, Statistics Netherlands @markvdloo | github.com/markvanderloo eRum2018 The next 15 minutes Motivation How to do it Why it works Examples eRum2018 Example # 'retailers'

533 views • 18 slides
Architecture using Functional Programming concepts < + > Jorge Castillo

Architecture using Functional Programming concepts < + > Jorge Castillo

Architecture using Functional Programming concepts < + > Jorge Castillo @JorgeCastilloPr 1 2 Kotlin and Functional Programming FP means concern separation (declarative computations vs runtime execution), purity, referential

452 views • 32 slides
T/Key: Second-Factor Authentication Without Server Secrets Dima Kogan 1 , Nathan Manohar 2 , Dan

T/Key: Second-Factor Authentication Without Server Secrets Dima Kogan 1 , Nathan Manohar 2 , Dan

T/Key: Second-Factor Authentication Without Server Secrets Dima Kogan 1 , Nathan Manohar 2 , Dan Boneh 1 1 Stanford, 2 UCLA Passwords have multiple security issues eavesdropping/key logging phishing password reuse Two-factor authentication

779 views • 31 slides
0 Simple Key Managemen t for PIM Authen tication Keys Thomas Hardjono Brad Cain Ba y

0 Simple Key Managemen t for PIM Authen tication Keys Thomas Hardjono Brad Cain Ba y

0 Simple Key Managemen t for PIM Authen tication Keys Thomas Hardjono Brad Cain Ba y Arc hitecture Lab oratory Nortel Net w orks 3 F ederal Steet Billerica, MA 01821 USA f thardjono,b cain g @ba ynet w orks.com 1

318 views • 6 slides
Distributed Key Management and Cryptographic Agility Tolga Acar 24 Feb. 2011 1 Overview

Distributed Key Management and Cryptographic Agility Tolga Acar 24 Feb. 2011 1 Overview

Distributed Key Management and Cryptographic Agility Tolga Acar 24 Feb. 2011 1 Overview Distributed Key Lifecycle Problem statement and status quo Distributed Key Manager Typical application scenario and architecture

352 views • 22 slides
How MPC Enables Secure Public Cloud Usability Avi Rose, vHSM Business Development - Europe

How MPC Enables Secure Public Cloud Usability Avi Rose, vHSM Business Development - Europe

How MPC Enables Secure Public Cloud Usability Avi Rose, vHSM Business Development - Europe November 2018 The Perimeter is Dead 2 Keys: The Foundation of the Foundation The foundation of any security model is the crypto layer. *

571 views • 19 slides
HOPWA Flexibilities Virtual Inspections Webinar August 5, 2020 Presenters From the Cloudburst

HOPWA Flexibilities Virtual Inspections Webinar August 5, 2020 Presenters From the Cloudburst

HOPWA Flexibilities Virtual Inspections Webinar August 5, 2020 Presenters From the Cloudburst Group: Heather Rhoda, Senior Analyst Steve Ellis, Senior Analyst Morgan Stephenson, Analyst From HUDs Office of HIV Housing (OHH), who are

742 views • 33 slides

More recommend