privacy in pervasive computing
play

PRIVACY IN PERVASIVE COMPUTING Marc Langheinrich University of - PowerPoint PPT Presentation

Jan 02, 2023 •125 likes •678 views

PRIVACY IN PERVASIVE COMPUTING Marc Langheinrich University of Lugano (USI), Switzerland Approaches to Ubicomp Privacy Disappearing Computer Troubadour Project (10/2002 05/2003) Promote Absence of Protection as User Empowerment

  1. PRIVACY IN PERVASIVE COMPUTING Marc Langheinrich University of Lugano (USI), Switzerland

  2. Approaches to Ubicomp Privacy Disappearing Computer Troubadour Project (10/2002 ‐ 05/2003) � Promote Absence of Protection as User Empowerment � “It’s maybe about letting them find their own ways of cheating“ � Make it Someone Else’s Problem � “For [my colleague] it is more appropriate to think about [security and privacy] issues. It’s not really the case in my case“ � Insist that “ Good Security “ will Fix It � “All you need is really good firewalls“ � Conclude it is Incompatible with Ubiquitous Computing � “I think you can’t think of privacy... it’s impossible, because if I do it, I have troubles with finding [a] Ubicomp future“ Marc Langheinrich: The DC ‐ Privacy Troubadour – Assessing Privacy Implications of DC ‐ Projects . 4 Designing for Privacy Workshop. DC Tales Conference, Santorini, Greece, June 2003.

  3. Today‘s Menu � Understanding Privacy � Technical Approaches � Definitions � Challenges 1. Public policy 1. Location privacy 2. Laws and regulations 2. RFID privacy 3. Interpersonal aspects 3. Smart environments 5

  4. Privacy in Pervasive Computing UNDERSTANDING PRIVACY

  5. What Is Privacy? � “The right to be let alone.“ � Warren and Brandeis, 1890 (Harvard Law Review) � “Numerous mechanical devices threaten to make good the prediction that ’what is whispered in the closet shall be proclaimed Louis D. Brandeis, 1856 ‐ 1941 from the housetops’“ 7

  6. Technological Revolution, 1888 8

  7. Information Privacy � “The desire of people to choose freely under what circumstances and to what extent they will expose themselves, their attitude and their behavior to others.“ � Alan Westin, 1967 Privacy And Freedom, Atheneum Dr. Alan F. Westin 9

  8. Privacy in Pervasive Computing 1. PRIVACY AS PUBLIC POLICY

  9. Why Privacy? � “A free and democratic society requires respect for the autonomy of individuals, and limits on the power of both state and private organizations to intrude on that autonomy… privacy is a key value which underpins human dignity and other key values such as freedom of association and freedom of speech…“ � Preamble To Australian Privacy Charter, 1994 � “All this secrecy is making life harder , more expensive, dangerous and less serendipitous“ � Peter Cochrane, Former Head Of BT Research � “You have no privacy anyway, get over it “ � Scott McNealy, CEO Sun Microsystems, 1995 11

  10. The NTHNTF ‐ Argument � „If you’ve got nothing to hide, you’ve got nothing to fear” UK Gov’t Campaign Slogan for CCTV (1994) � Assumption � Privacy is (mostly) about hiding (evil/bad/unethical) secrets � Implications � Privacy protects wrongdoers (terrorists, child molesters, …) � No danger for law ‐ abiding citizens � Society overall better off without it! 12

  11. Informational Self ‐ Determination “Informationelle Selbstbestimmung“ � “If one cannot with sufficient surety be aware of the personal information about him that is known in certain part of his social environment, . . . can be seriously inhibited in his freedom of self ‐ determined planning and deciding. A society in which the individual citizen would not be able to find out who knows what when about them, would not be reconcilable with the right of self ‐ determination over personal data. Those who are unsure if differing attitudes and actions are ubiquitously noted and permanently stored, processed, or distributed, will try not to stand out with their behavior. . . . This would not only limit the chances for individual development , but also affect public welfare, since self ‐ determination is an essential requirement for a democratic society that is built on the participatory powers of its citizens.“ German Federal Constitutional Court (Census Decision ’83) 13

  12. Informational Self ‐ Determination “Informationelle Selbstbestimmung“ � “The problem is the possibility of technology taking on a life of its own , so that the actuality and inevitability of technology creates a dictatorship. Not a dictatorship of people over people with the help of technology, but a dictatorship of technology over people .“ Ernst Benda , *1925 Chief Justice 1971 ‐ 1983 � Ernst Benda (1983) Federal Constitutional Court Chief Justice 15

  13. Issue: Profiles � Allow Inferences About You � May or may not be true (re. AOLStalker)! � May Categorize You � High spender, music afficinado, credit risk � May Offer Or Deny Services � Rebates, different prices, priviliged access � „ Social Sorting “ (Lyons, 2003) � Opaque decisions „channel“ life choices Image Sources: http://www.jimmyjanesays.com/sketchblog/paperdollmask_large.jpg and http://www.queensjournal.ca/story/2008 ‐ 03 ‐ 14/supplement/keeping ‐ tabs ‐ personal ‐ data/

  14. Not Orwell, But Kafka! 17

  15. Privacy in Pervasive Computing 2. PRIVACY LAW PRIMER

  16. Privacy Law History � Justices Of The Peace Act (England, 1361) � Sentences for Eavesdropping and Peeping Toms � „The poorest man may in his cottage bid defiance to all the force of the crown. It may be frail; its roof may shake; … – but the king of England cannot enter; all his forces dare not cross the threshold of the ruined tenement“ � William Pitt the Elder (1708 ‐ 1778) � First Modern Privacy Law in the German State Hesse, 1970 19

  17. Fair Information Principles (FIP) � Drawn up by the OECD, 1980 � “Organisation for economic cooperation and development“ � Voluntary guidelines for member states � Goal: Ease transborder flow of goods (and information!) � Five Principles (simplified) 1. Openness 4. Collection Limitation 2. Data access and control 5. Data subject’s consent 3. Data security � Core principles of modern privacy laws world ‐ wide 20

  18. Laws and Regulations � Privacy laws and regulations vary widely throughout the world � US has mostly sector ‐ specific laws, with relatively minimal protections � Self ‐ Regulation favored over comprehensive Privacy Laws � Fear that regulation hinders e ‐ commerce � Europe has long favored strong privacy laws � Often single framework for both public & private sector � Privacy commissions in each country (some countries have national and state commissions) 21

  19. EU Privacy Law � EU Data Protection Directive 1995/46/EC � Sets A benchmark for national law for processing personal information in electronic and manual files � Expands on OECD Fair Information Practices: no automated ad ‐ verse decisions, minimality, retention, sensitive data, checks, … � Facilitates data ‐ flow between Member States and restricts export of personal data to „unsafe“ non ‐ eu countries � “E ‐ Privacy“ Directive 2002/58/EC (“amends“ 95/46/EC) � Provisions for “public electronic communications services“ � Data Retention Directive 2006/24/EC � Orders storage of “traffic data“ for law enforcement 22

  20. US ‐ EU: Safe Harbor � How to Make US a “Safe“ Country (in terms of the Directive) � US companies self ‐ certify adherence to requirements � Dept. of Commerce maintains list (1790 as of 04/09) http://www.export.gov/safeharbor/ � Signatories must provide � notice of data collected, purposes, and recipients � choice of opt ‐ out of 3rd ‐ party transfers, opt ‐ in for sensitive data � access rights to delete or edit inaccurate information � security for storage of collected data � enforcement mechanisms for individual complaints � Approved July 26, 2000 by EU (w/ right to renegotiate) � So far, not a single dispute! 23

  21. APEC Privacy Framework 2004 � APEC – Asia Pacific Economic Group � 21 Member States, e.g., Japan, South Korea, PR China , Hong Kong, Philipines, Australia, New Zealand, Macau, U.S. , Canada � APEC „agreements“ non ‐ binding, only public commitment � Defines Nine „APEC Privacy Principles“ � Typically less strict than EU and even OECD principles, e.g., no purpose specification, no prior notice, use of “harm principle” � No details or checks on national implementation � No attempt at EU Data Directive 95/46/EC compliance � No consideration of existing privacy laws in region (see in italics ) See also: (Kennedy et al., 2009), (Greenleaf, 2009) 24

  22. Privacy in Pervasive Computing 3. INTERPERSONAL PRIVACY

  23. Privacy Invasions � When Do We Feel that Our Privacy Has Been Violated? � Perceived privacy violations due to crossing of “privacy borders“ � Privacy Boundaries 1. Natural 2. Social 3. Spatial / temporal 4. Transitory Gary T. Marx MIT 27

  24. Privacy Borders (Marx) � Natural � Physical limitations (doors, sealed letters) � Social � Group confidentiality (doctors, colleagues) � Spatial / Temporal � Family vs. work, adolescence vs. midlife � Transitory � Fleeting moments, unreflected utterances 28

  25. Privacy Regulation Theory � Privacy as Accessibility Optimization: Inputs and Outputs � Spectrum: “Openness“/ “Closedness“ � Contrasts with privacy as withdrawal (“to be let alone“) � Privacy not monotonic: “More“ is not always “better“ � Dynamic Boundary Negotiation Process � Neither static nor rule ‐ based � Requires fine ‐ grained coordination of action & disclosure Irwin Altman � Focus on public spaces, mediated by University of Utah spatial environment 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

PRIVACY IN PERVASIVE COMPUTING COMPUTING Marc Langheinrich ETH Zurich, Switzerland Approaches to

PRIVACY IN PERVASIVE COMPUTING COMPUTING Marc Langheinrich ETH Zurich, Switzerland Approaches to

Marc Langheinrich: Privacy in Pervasive Computing May 22, 2008 PRIVACY IN PERVASIVE COMPUTING COMPUTING Marc Langheinrich ETH Zurich, Switzerland Approaches to Ubicomp Privacy Disappearing Computer Troubadour Project (10/2002 05/2003)

795 views • 25 slides
Personal Privacy in Ubiquitous Computing Computing Marc Langheinrich Institute for Pervasive

Personal Privacy in Ubiquitous Computing Computing Marc Langheinrich Institute for Pervasive

Personal Privacy in Ubiquitous Computing March 11, 2008 Personal Privacy in Ubiquitous Computing Computing Marc Langheinrich Institute for Pervasive Computing ETH Zurich, Switzerland Approaches to Ubicomp Privacy Disappearing Computer

532 views • 23 slides
Personal Privacy in Ubiquitous Personal Privacy in Ubiquitous Computing Marc Langheinrich

Personal Privacy in Ubiquitous Personal Privacy in Ubiquitous Computing Marc Langheinrich

Personal Privacy in Ubiquitous Personal Privacy in Ubiquitous Computing Marc Langheinrich Institute for Pervasive Computing Institute for Pervasive Computing ETH Zurich, Switzerland Approaches to Ubicomp Privacy Disappearing Computer

794 views • 45 slides
Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing

Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing

T Labs Usability Colloquium June 25, 2007 Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing ETH Zurich, Switzerland C.A.S.P.I.A.N. Consumers against supermarket privacy invasions and

451 views • 25 slides
Personal Security and Privacy in Personal Security and Privacy in Ubiquitous Computing Marc

Personal Security and Privacy in Personal Security and Privacy in Ubiquitous Computing Marc

Personal Security and Privacy in Personal Security and Privacy in Ubiquitous Computing Marc Langheinrich Institute for Pervasive Computing Institute for Pervasive Computing ETH Zurich, Switzerland Approaches to Security & Privacy in

749 views • 39 slides
Security for Pervasive Computing CS239 Kevin Eustice V. Ramakrishna 4/24/06 What is Pervasive

Security for Pervasive Computing CS239 Kevin Eustice V. Ramakrishna 4/24/06 What is Pervasive

Security for Pervasive Computing CS239 Kevin Eustice V. Ramakrishna 4/24/06 What is Pervasive Computing? One Vision of Pervasive Computing PHYSICAL INTEGRATION Coffee Shop Personal Network Change route! My location? L o c a t i

318 views • 20 slides
Pervasive Computing: Opportunities and Challenges Dimitris Kalofonos Pervasive Computing Group

Pervasive Computing: Opportunities and Challenges Dimitris Kalofonos Pervasive Computing Group

Pervasive Computing: Opportunities and Challenges Dimitris Kalofonos Pervasive Computing Group (PCG) Nokia Research Center, Boston 1 ASWN04 Panel Discussion, August 10, 2004, Dimitris Kalofonos The Vision for Pervasive Computing (PC)

128 views • 9 slides
Privacy in Ubiquitous Computing Options, Trends, and Implications of Smart Objects Marc

Privacy in Ubiquitous Computing Options, Trends, and Implications of Smart Objects Marc

Privacy in Ubiquitous Computing Options, Trends, and Implications of Smart Objects Marc Langheinrich Institut fr Pervasive Computing ETH Zrich Februar 11. 2006 ZiF-Workshop: Privacy and 1 Surveillance Technologies Privacy in Ubiquitous

573 views • 32 slides
Pervasive and ubiquitous computing and MazeMap Paper 4, 9 and 15 Sergi Orra Gener Pervasive

Pervasive and ubiquitous computing and MazeMap Paper 4, 9 and 15 Sergi Orra Gener Pervasive

Pervasive and ubiquitous computing and MazeMap Paper 4, 9 and 15 Sergi Orra Gener Pervasive Computing Vs Ubiquitous Computing Main goal and challenges The knowledge of human behaviour. Challenges: Too much data to process. Too

432 views • 4 slides
PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches

PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches

Marc Langheinrich: Privacy in Ubiquitous Computing 5/29/2010 Todays Menu PRIVACY IN UBIQUITOUS PRIVACY IN UBIQUITOUS Understanding Privacy Technical Approaches COMPUTING Definitions Challenges 1. History and legal aspects 1.

264 views • 13 slides
Cloud Privacy in a PervasivE Monitoring t Landscape pt

Cloud Privacy in a PervasivE Monitoring t Landscape pt

44 pt Cloud Privacy in a PervasivE Monitoring t Landscape pt JOHN MATTSSON

259 views • 7 slides
Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy

Deploying Secure Computing for Real-world Applications Dan Bogdanov, PhD Head of Privacy Technology Development Cybernetica dan@cyber.ee The Sharemind Privacy-preserving Computing Platform Components for Privacy Encrypted Privacy

714 views • 28 slides
What Do You Want to Share Today? Building Privacy-Aware AmI-Systems Marc Langheinrich

What Do You Want to Share Today? Building Privacy-Aware AmI-Systems Marc Langheinrich

What Do You Want to Share Today? Building Privacy-Aware AmI-Systems Marc Langheinrich Institute for Pervasive Computing ETH Zrich March 21. 2006 SWAMI Conference, Brussels 1 Fair Information Principles (FIP) Drawn up by the OECD,

973 views • 18 slides
Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data

Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data

Privacy laws and pervasive sensing / big data: forever incommensurate? Trusted Personal Data Management Panel, TdW Conference Max Mhlhuser Technische Universitt Darmstadt Information Self-Determination EU Charter of fundamental rights:

251 views • 7 slides
Middleware for Pervasive Spaces: Balancing Privacy and Utility D. Massaguer , B. Hore, M. H.

Middleware for Pervasive Spaces: Balancing Privacy and Utility D. Massaguer , B. Hore, M. H.

Middleware for Pervasive Spaces: Balancing Privacy and Utility D. Massaguer , B. Hore, M. H. Diallo, S. Mehrotra, and N. Venkatasubramanian Presenter: Daniel Massaguer PhD candidate dani.massaguer@gmail.com Bo Xing: A Middleware Approach to

461 views • 35 slides
for a Pervasive Eye Tracking World Daniel J. Liebling, Seattle, USA Sren Preibusch, Cambridge,

for a Pervasive Eye Tracking World Daniel J. Liebling, Seattle, USA Sren Preibusch, Cambridge,

PETMEI 2014 Privacy Considerations for a Pervasive Eye Tracking World Daniel J. Liebling, Seattle, USA Sren Preibusch, Cambridge, UK Technology and Privacy Technology growth precedes policy 1973 1991 2000s today Lets talk about

607 views • 14 slides
Learning and Generating Paraphrases From Twitter and Beyond Wei Xu

Learning and Generating Paraphrases From Twitter and Beyond Wei Xu

Learning and Generating Paraphrases From Twitter and Beyond Wei Xu Computer)and)Informa/on)Science) University)of)Pennsylvania Guest Lecture @ Penn MT class April-2-2015 Research Overview TACL 15 ! Paraphrase ! NAACL 15 ! ! TACL 14 ! !

1.29k views • 59 slides
Formal modeling and verification of the Java Card security architecture Eduardo Gimnez

Formal modeling and verification of the Java Card security architecture Eduardo Gimnez

VERIFICARD Formal modeling and verification of the Java Card security architecture Eduardo Gimnez Olivier Ly Trusted Logic SchlumbergerSema SchlumbergerSema January 8th, 2002 SchlumbergerSema & Trusted

800 views • 38 slides
Risk Analytics Autumn 2019 Colin Rowat c.rowat@bham.ac.uk 2019-12-02 (preliminary until end of

Risk Analytics Autumn 2019 Colin Rowat c.rowat@bham.ac.uk 2019-12-02 (preliminary until end of

Risk Analytics Autumn 2019 Colin Rowat c.rowat@bham.ac.uk 2019-12-02 (preliminary until end of term) 1 / 230 Contents Introduction 1 Univariate statistics 2 Multivariate statistics 3 Modelling the market 4 Estimating market

1.94k views • 193 slides
Python Idioms to help you write good code EuroPython 2015 Bilbao, Spain Marc-Andr Lemburg

Python Idioms to help you write good code EuroPython 2015 Bilbao, Spain Marc-Andr Lemburg

Python Idioms to help you write good code EuroPython 2015 Bilbao, Spain Marc-Andr Lemburg (c) 2015 eGenix.com Software, Skills and Services GmbH, info@egenix.com Speaker Introduction Marc-Andr Lemburg Python since 1993/1994

708 views • 55 slides
Dawn Song dawnsong@cs.berkeley.edu 1 Project Poster session Well provide easels

Dawn Song dawnsong@cs.berkeley.edu 1 Project Poster session Well provide easels

Privacy in Wireless/Ubiquitous Computing Dawn Song dawnsong@cs.berkeley.edu 1 Project Poster session Well provide easels You need to get the poster board Campus store or office supply stores usually have it Print your

386 views • 4 slides
Inclusive Technology: Designing For Under-served and Marginalized Communities Jan 6, 2020 In

Inclusive Technology: Designing For Under-served and Marginalized Communities Jan 6, 2020 In

CMSC 20370/30370 Winter 2020 Inclusive Technology: Designing For Under-served and Marginalized Communities Jan 6, 2020 In Class Exercise (5 minutes) Take 5 minutes to think about a product or technology you like Why do you like it?

978 views • 74 slides
Computer Architecture Education Safwat Zaky Edward S. Rogers Sr. Department of Electrical and

Computer Architecture Education Safwat Zaky Edward S. Rogers Sr. Department of Electrical and

Computer Organization and Computer Architecture Education Safwat Zaky Edward S. Rogers Sr. Department of Electrical and Computer Engineering University of Toronto NAS 2011 July 28-30, 2011 A long and Fascinating Journey 1946: INIAC

1.12k views • 49 slides
Distributed Object Technologies Lecture 8 Chapter 4: Inter-process Communications 95-702

Distributed Object Technologies Lecture 8 Chapter 4: Inter-process Communications 95-702

Organizational Communications and Distributed Object Technologies Lecture 8 Chapter 4: Inter-process Communications 95-702 Distributed Systems Information 1 System Management Middleware layers Applications, services RMI and RPC Middleware

659 views • 49 slides

More recommend