pr privacy cy pre prese servi rving ng fir firef efox x
play

Pr Privacy cy-pre prese servi rving ng Fir Firef efox x - PowerPoint PPT Presentation

Jun 03, 2023 •114 likes •980 views

Pr Privacy cy-pre prese servi rving ng Fir Firef efox x telem elemet etry wit ith Pr Prio Henry Corrigan-Gibbs (EPFL MIT CSAIL) In In c collabora ration wi with: Dan Boneh (Stanford), Gary Chen, Steven Englehardt, Robert

  1. Pr Privacy cy-pre prese servi rving ng Fir Firef efox x telem elemet etry wit ith Pr Prio Henry Corrigan-Gibbs (EPFL → MIT CSAIL) In In c collabora ration wi with: Dan Boneh (Stanford), Gary Chen, Steven Englehardt, Robert Helmer, Chris Hutten-Czapski, Anthony Miyaguchi, Eric Rescorla, and Peter Saint-Andre (Mozilla)

  2. Runni Running ng e exa xample ple: Measuring effectiveness of tracking protection 51

  3. Runni Running ng e exa xample ple: Measuring effectiveness of tracking protection Mozilla wants to know: “H “How many y Fir iref efox x user ers blocked ked a a trac racki king g cooki ookie e from rom fb fb.co .com?” ?” 52

  4. “58,329 Firefox users blocked an fb.com cookie.” Software vendors often answer these questions by collecting se sensi sitive usage data directly. à Single point of failure. 1 0 1 … 53

  5. “58,329 Firefox users blocked an fb.com cookie.” Software vendors often answer these questions by collecting se sensi sitive usage data directly. à Single point of failure. 1 0 1 – Theft by attackers … – Abuse by malicious insiders – Snooping by governments 54

  6. Pr Prio: : Aggregate data without the privacy risks C-G and Boneh (NSDI 2017) • Collect aggregate usage data wi withou out seeing any y single user’s data . • New cryptography makes this system practical – Proofs on secret-shared data • Basis for Mozilla’s new privacy-preserving telemetry system – In pilot phase: Enabled by default in Firefox’s “Nightly” build – Largest deployment of technology based on PCPs (probabilistically checkable proofs) 55

  7. Runni Running ng e exa xample ple: Measuring effectiveness of tracking protection • There are 𝑜 ≈ 2,500 domains on the tracking-protection blocklist • For each blocked domain, each user 𝑗 has a bit – Bit is “1” iff user 𝑗 ’s browser ever blocked cookies from domain.com – These bits are se sensi nsitive – reveal user’s browsing history il.com om t.com om com Domain 𝒐 it.com om ibm.com om nugg.ad com s.com cams.co onad.eu eu ucoz.ae fb.com ru4.co kut. xa.net gmail tapit. po.st st orku cam sas. gm po on nu xa sa uc fb or ru Do ta ib <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> Us User 1 User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … Us User 2 <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us 56

  8. Runni Running ng e exa xample ple: Measuring effectiveness of tracking protection • Mozilla wants the sum of these vectors over all users 𝑗 il.com om t.com om com Domain 𝒐 it.com om ibm.com om nugg.ad com s.com cams.co onad.eu eu ucoz.ae fb.com ru4.co kut. xa.net gmail tapit. po.st st orku cam sas. gm po on nu xa sa uc fb or ru Do ta ib <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> User 1 Us User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … Us User 2 <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us 57

  9. Running Runni ng e exa xample ple: Measuring effectiveness of tracking protection • Mozilla wants the sum of these vectors over all users 𝑗 il.com om t.com om Domain 𝒐 com it.com om ibm.com om nugg.ad com onad.eu eu s.com cams.co ucoz.ae fb.com ru4.co xa.net kut. gmail tapit. po.st st orku cam sas. gm Do on nu po uc xa sa fb or ru ta ib <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> Us User 1 User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … User 2 Us <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us SU SUM M 31, 91, 6, 0, 8, 29, 81, 0, 0, 88, 10, 5, 59, …, 50 58

  10. Running Runni ng e exa xample ple: Measuring effectiveness of tracking protection • Mozilla wants the sum of these vectors over all users 𝑗 il.com om t.com om Domain 𝒐 com it.com om ibm.com om nugg.ad com onad.eu eu s.com cams.co ucoz.ae fb.com ru4.co xa.net kut. gmail tapit. po.st st orku cam sas. gm Do on nu po uc xa sa fb or ru ta ib <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> User 1 Us User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … User 2 Us <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us SU SUM M 31, 91, 6, 0, 8, 29, 81, 0, 0, 88, 10, 5, 59, …, 50 How many users blocked fb.com cookies via tracking protection 59

  11. Running Runni ng e exa xample ple: Measuring effectiveness of tracking protection • Mozilla wants the sum of these vectors over all users 𝑗 il.com om t.com om Domain 𝒐 com it.com om ibm.com om nugg.ad com onad.eu eu s.com cams.co ucoz.ae fb.com ru4.co xa.net kut. gmail tapit. po.st st orku cam sas. gm Do on nu po uc xa sa fb or ru ta ib <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> Us User 1 User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … User 2 Us <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us SU SUM M 31, 91, 6, 0, 8, 29, 81, 0, 0, 88, 10, 5, 59, …, 50 60

  12. Running Runni ng e exa xample ple: Measuring effectiveness of tracking protection • Mozilla wants the sum of these vectors over all users 𝑗 il.com om t.com om Domain 𝒐 com it.com om ibm.com om nugg.ad com onad.eu eu s.com cams.co ucoz.ae fb.com ru4.co xa.net kut. gmail tapit. po.st st orku cam sas. gm Do on nu po uc xa sa fb or ru ta ib 𝑦 ' <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> User 1 Us 𝑦 ( User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … User 2 Us 𝑦 ) <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us ) 𝑦 + Σ +,' SU SUM M 31, 91, 6, 0, 8, 29, 81, 0, 0, 88, 10, 5, 59, …, 50 61

  13. Running Runni ng e exa xample ple: Measuring effectiveness of tracking protection • Mozilla wants the sum of these vectors over all users 𝑗 il.com om t.com om Domain 𝒐 com it.com om ibm.com om nugg.ad com onad.eu eu s.com cams.co ucoz.ae fb.com ru4.co xa.net kut. gmail tapit. po.st st orku cam sas. gm Do on nu po uc xa sa fb or ru ta ib 𝑦 ' <1 0 1 0 1 0 1 0 0 0 0 0 0 … 1> Us User 1 𝑦 ( User 2 <1 1 1 0 1 0 1 0 0 1 0 0 1 … 0> Us … … User 2 Us 𝑦 ) <0 0 0 0 1 0 1 0 0 0 0 1 0 … 0> User 𝑽 Us ) 𝑦 + Σ +,' SU SUM M 31, 91, 6, 0, 8, 29, 81, 0, 0, 88, 10, 5, 59, …, 50 We run the system many times in parallel to compute the statistics for all domains 62

  14. Prio: System goals ) Σ +,' 𝑦 + 1. 1. Co Correc ectnes ess. If clients and servers are honest, servers learn Σ + 𝑦 + Extension: Maintain correctness in spite of server faults 2. 𝒈 -Pr 2. Privacy. Attacker must compromise all servers to learn more than Σ + 𝑦 + Extension: Differential privacy [DMNS06] 𝑦 . 𝑦 ( 𝑦 ) 3. Disr 3. srupt ption resi sist stan ance. The worst that a malicious client … can do is lie about her input. 4. Efficiency. Handle millions of 4. submissions per server per hour 63

  15. Prio: System goals ) Σ +,' 𝑦 + 1. Co 1. Correc ectnes ess. If clients and servers are honest, servers learn Σ + 𝑦 + Extension: Maintain correctness in spite of server faults Attacker must 2. 𝒈 -Pr 2. Privacy. Attacker must compromise all servers to learn compromise all more than Σ + 𝑦 + servers to learn Extension: Differential privacy [DMNS06] 𝑦 . 𝑦 ( 𝑦 ) private data. 3. 3. Disr srupt ption resi sist stan ance. The worst that a malicious client … can do is lie about her input. 4. Efficiency. Handle millions of 4. submissions per server per hour 64

  16. Prio: System goals ) Σ +,' 𝑦 + 1. 1. Co Correc ectnes ess. If clients and servers are honest, servers learn Σ + 𝑦 + Extension: Maintain correctness in spite of server faults 2. 𝒈 -Pr 2. Privacy. Attacker must compromise all servers to learn more than Σ + 𝑦 + Extension: Differential privacy [DMNS06] 𝑦 . 𝑦 ( 𝑦 ) 3. Disr 3. srupt ption resi sist stan ance. The worst that a malicious client … can do is lie about her input. 4. Efficiency. Handle millions of 4. submissions per server per hour 65

  17. Prio: System goals ) Σ +,' 𝑦 + 1. 1. Co Correc ectnes ess. If clients and servers are honest, servers learn Σ + 𝑦 + Extension: Maintain correctness in spite of server faults 2. 𝒈 -Pr 2. Privacy. Attacker must compromise all servers to learn more than Σ + 𝑦 + Extension: Differential privacy [DMNS06] 𝑦 . 𝑦 ( 𝑦 ) 3. Disr 3. srupt ption resi sist stan ance. The worst that a malicious client … can do is lie about her input. 4. Efficiency. Handle millions of 4. submissions per server per hour 66

  18. Prio: System goals ) Σ +,' 𝑦 + 1. 1. Co Correc ectnes ess. If clients and servers are honest, servers learn Σ + 𝑦 + Extension: Maintain correctness in spite of server faults 2. 𝒈 -Pr 2. Privacy. Attacker must compromise all servers to learn more than Σ + 𝑦 + Extension: Differential privacy [DMNS06] 𝑦 . 𝑦 ( 𝑦 ) 3. Disr 3. srupt ption resi sist stan ance. The worst that a malicious client … can do is lie about her input. 4. Efficiency. Handle millions of 4. submissions per server per hour 67

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

AFRI AFRI ICA P ICA P PREPA PREPA AID S AID S SERVI SERVI ICES ICES NIGE NIGE ERIA ERIA

AFRI AFRI ICA P ICA P PREPA PREPA AID S AID S SERVI SERVI ICES ICES NIGE NIGE ERIA ERIA

AFRI AFRI ICA P ICA P PREPA PREPA AID S AID S SERVI SERVI ICES ICES NIGE NIGE ERIA ERIA Secure Bulk Printing POS Terminals &amp; ERIA Trends | Rising African Consumer | g NIGE Brand conscious Price sensitive...extremely ICES

623 views • 21 slides
Spa c e Co a st Co mmunitie s Asso c ia tio n Pre se rving Yo ur Struc ture s: Ge tting Ro o

Spa c e Co a st Co mmunitie s Asso c ia tio n Pre se rving Yo ur Struc ture s: Ge tting Ro o

Spa c e Co a st Co mmunitie s Asso c ia tio n Pre se rving Yo ur Struc ture s: Ge tting Ro o f Syste ms, Co a ting s a nd Co rro sio n Co ntro l T ha t Will Pro te c t a nd L a st L o uis Ma c Do we ll Ma c K o rr, I nc . June 21,

145 views • 13 slides
Authentication Nashad Safa Rei Safavi-Naini Siamak Shahandashti 2 Outline Device, Implicit

Authentication Nashad Safa Rei Safavi-Naini Siamak Shahandashti 2 Outline Device, Implicit

Privacy-Preserv rving Im Implicit Authentication Nashad Safa Rei Safavi-Naini Siamak Shahandashti 2 Outline Device, Implicit Authentication Usage patterns, authentication decision making Cost: privacy! Our Basic Protocol

547 views • 17 slides
De Depar partme tment nt of of Hu Human man Se Servi vice ces PROPOSED FY 2019 BUDGET

De Depar partme tment nt of of Hu Human man Se Servi vice ces PROPOSED FY 2019 BUDGET

De Depar partme tment nt of of Hu Human man Se Servi vice ces PROPOSED FY 2019 BUDGET HIGHLIGHTS County Board Work k Session on February 28, 2018 Departm tment ent of Human Servi vices: ces: V Visi sion, on, Miss ssion ion

253 views • 22 slides
Katacryptology trust or not your favorite cryptotool ? RSA PreSE 1 Robert Erra PreSE 2 LSE

Katacryptology trust or not your favorite cryptotool ? RSA PreSE 1 Robert Erra PreSE 2 LSE

Katacryptology Robert Erra LSE WEEK 2014 Catacrypt ? Why should you Katacryptology trust or not your favorite cryptotool ? RSA PreSE 1 Robert Erra PreSE 2 LSE WEEK 2014 PreSE 3 PreSE 5 PostSE 1 July 17, 2014 PostSE 3 Back to RSA

922 views • 44 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
LRCT RCTC C SERVI VICE E PRO ROVI VIDER DER &amp; T &amp; TRAIN AINING G OFFIC ICERS

LRCT RCTC C SERVI VICE E PRO ROVI VIDER DER &amp; T &amp; TRAIN AINING G OFFIC ICERS

LRCT RCTC C SERVI VICE E PRO ROVI VIDER DER &amp; T &amp; TRAIN AINING G OFFIC ICERS ERS AS ASSESSO SSORS RS USER GRO ROUP UP - 8 TH TH SEPTEMB EMBER ER 2011 11 Mark rk Smith th Chairm rman n NHS London n Servi vice

726 views • 38 slides
Severe Weather and RVing How is a T ennessee Divorce and a T ornado alike? You can bet someone

Severe Weather and RVing How is a T ennessee Divorce and a T ornado alike? You can bet someone

Severe Weather and RVing How is a T ennessee Divorce and a T ornado alike? You can bet someone is going to lose a double wide in both of them! What You Dont Want to See In Your Mirrors! SEVERE WEATHER DEFINITIONS Severe thunderstorms

1.03k views • 74 slides
7710 L a s Co lina s Ridg e , I rving , T X 75063 www.c c i.o rg Guest Speakers Volunteer

7710 L a s Co lina s Ridg e , I rving , T X 75063 www.c c i.o rg Guest Speakers Volunteer

7710 L a s Co lina s Ridg e , I rving , T X 75063 www.c c i.o rg Guest Speakers Volunteer Puppy Raiser Michelle Sudduth and Danny Volunteer Puppy Raiser Todd Smith Graduate Cassie and Caleb McLelland with skilled companion dog Hallow I ma

201 views • 18 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
We e have e over r 25 5 years s of f exp xpertis ise e in in marketin ing g se servi

We e have e over r 25 5 years s of f exp xpertis ise e in in marketin ing g se servi

ru ts 0 YlAGENS We e have e over r 25 5 years s of f exp xpertis ise e in in marketin ing g se servi ving g numerous s segments se s with ith sp specia ial l focus s on n touris ism m and d government t publi lic c

392 views • 20 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Cap Preserv rving Smile Enhancement Ahmed Sedky,FRCOphth Cairo, EGYPT Zeiss Usermeting

Cap Preserv rving Smile Enhancement Ahmed Sedky,FRCOphth Cairo, EGYPT Zeiss Usermeting

Cap Preserv rving Smile Enhancement Ahmed Sedky,FRCOphth Cairo, EGYPT Zeiss Usermeting Amsterdam 2018 Financial Disclosure, Zeiss Consultant My speech is based on my own professional opinion or on our study results. It is not necessarily

799 views • 22 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
MSP Math Circle Summer Camp Purple Haze and Purple Rain June 15, 2016 Purple Haze and Purple

MSP Math Circle Summer Camp Purple Haze and Purple Rain June 15, 2016 Purple Haze and Purple

MSP Math Circle Summer Camp Purple Haze and Purple Rain June 15, 2016 Purple Haze and Purple Rain MSP Math Circle Summer Camp Purple Haze and Purple Rain Anne decides to repaint her house in purple. She can buy two different types of purple

487 views • 26 slides
Dissertation Forward: Rethinking the PhD Thesis Christopher Loss, Vanderbilt University Cassidy

Dissertation Forward: Rethinking the PhD Thesis Christopher Loss, Vanderbilt University Cassidy

Dissertation Forward: Rethinking the PhD Thesis Christopher Loss, Vanderbilt University Cassidy Sugimoto, Indiana University Bloomington Moderator: Maureen McCarthy, Council of Graduate Schools Plan for today Two presentations of

434 views • 27 slides
Visual Exploration of Shanghai Subway Data Report By Xinshuang Wang 01 Introduction and Related

Visual Exploration of Shanghai Subway Data Report By Xinshuang Wang 01 Introduction and Related

Visual Exploration of Shanghai Subway Data Report By Xinshuang Wang 01 Introduction and Related work Outline 02 Three views 03 Explore the influence of weather on passenger flow Introduction and Related Work Introduction of Visualization

180 views • 17 slides
FOG; COMPOSITING 1 OUTLINE Fog Compositing Blending Transparency Clipping

FOG; COMPOSITING 1 OUTLINE Fog Compositing Blending Transparency Clipping

FOG; COMPOSITING 1 OUTLINE Fog Compositing Blending Transparency Clipping 3D Textures Noise 2 FOG Atmospheric haze Provides more realism in a scene Also provides more sense of scene depth Simple

967 views • 33 slides
Indications of Dark Matter from Astrophysical observations --- Fermi LAT, PAMELA, HESS &amp;

Indications of Dark Matter from Astrophysical observations --- Fermi LAT, PAMELA, HESS &amp;

Indications of Dark Matter from Astrophysical observations --- Fermi LAT, PAMELA, HESS &amp; ATIC, WMAP Haze Yu Gao UW-Madison 0904.2001, V. Barger, Y. Gao, W.-Y. Keung, D. Marfatia, G. Shaughnessy Pheno 09 Cosmic energy budget Einstein's

547 views • 28 slides
What are dark forces? The universe appears to be filled with cold dark matter, which could be a

What are dark forces? The universe appears to be filled with cold dark matter, which could be a

Searching for dark forces with D ARK L IGHT at the Jefferson Laboratory Free Electron Laser Rebecca Russell, MIT July 25, 2011 19th Particles &amp; Nuclei International Conference What are dark forces? The universe appears to be filled with

161 views • 15 slides
http://www.di.ens.fr/willow/teaching/recvis11/ Jean Ponce (ponce@di.ens.fr)

http://www.di.ens.fr/willow/teaching/recvis11/ Jean Ponce (ponce@di.ens.fr)

http://www.di.ens.fr/willow/teaching/recvis11/ Jean Ponce (ponce@di.ens.fr) http://www.di.ens.fr/~ponce Equipe-projet WILLOW ENS/INRIA/CNRS UMR 8548 Laboratoire dInformatique Ecole Normale Suprieure, Paris Cordelia Schmid Jean Ponce

975 views • 63 slides
Underwater Im Image Dehazing wit ith a Li Light Fie ield Camera Katherine A. Skinner 1 and

Underwater Im Image Dehazing wit ith a Li Light Fie ield Camera Katherine A. Skinner 1 and

Underwater Im Image Dehazing wit ith a Li Light Fie ield Camera Katherine A. Skinner 1 and Matthew Johnson-Roberson 2 1 Robotics Program, University of Michigan, USA 2 Department of Naval Architecture and Marine Engineering, University of

331 views • 22 slides

More recommend