เลขสารบบอาหารที่ 10-1-01949-1-0863 DK.pdf · 2016-08-25 · •หากขาดวิตามินดี ในเด็กพบว่าเป็นโรค
Privacy Enhancing Technologies: Privacy by Design -...
-
Upload
hoangkhanh -
Category
Documents
-
view
219 -
download
2
Transcript of Privacy Enhancing Technologies: Privacy by Design -...
![Page 1: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/1.jpg)
Dr. Jan Camenisch
IBM ResearchTechnical Leader PrimeLife
May 11th, 2009
Privacy Enhancing Technologies:Privacy by DesignFrom ID Cards, Cell Phones to the Internet
![Page 2: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/2.jpg)
Vint Cerf
“The Internet will be everywhere, from every mote to interstellar
communication”
![Page 3: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/3.jpg)
“The Internet will be everywhere, from every mote to interstellar
communication”“We need both: sometimes we
wanna be anonymous, sometimes we need to be identified”
Vint Cerf
![Page 4: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/4.jpg)
“The Internet will be everywhere, from every mote to interstellar
communication”“We need both: sometimes we
wanna be anonymous, sometimes we need to be identified”
“...at the same time!”
Vint Cerf
A Surfer
![Page 5: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/5.jpg)
Not Just the Internet...
...even if it is going to be everywhere ;-)
![Page 6: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/6.jpg)
What's the Problem?
![Page 7: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/7.jpg)
7
“Neil Armstrong’s Footsteps are still there”
(Robin Wilton)Photo:cc-nc-by jahdakine
![Page 8: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/8.jpg)
8
Storage becomes ever cheaper Data mining ever better
Computers don’t forget
![Page 9: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/9.jpg)
9
People
![Page 10: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/10.jpg)
10
People Who Like to Talk
![Page 11: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/11.jpg)
11
People Who Like to Talk
Distributing Information is easier Controlling it much harder Establish trust and security even harder
![Page 12: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/12.jpg)
Vision: Vision: Privacy, Trust and ID ManagementPrivacy, Trust and ID Management
In the Information Society, users can act and interact in a safe and secure way while retaining control of their private spheres.
![Page 13: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/13.jpg)
13
Privacy By Design!
Network Layer Anonymity as default
Identity Layer (Access Control & Authorization) Data minimization
Application Layer Control of Data: Policies and UI Social Networks, etc,...
Specific Applications Voting, Auctions....
![Page 14: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/14.jpg)
14
Privacy By Design!
Network Layer Anonymity as default
Identity Layer (Access Control & Authorization) Data minimization
Application Layer Control of Data: Policies and UI Social Networks, etc,...
Specific Applications Voting, Auctions....
Solutions known (Tor, ...)Change Infrastructure
Technology Ready Needs to AppliedeID, ...
Technology exists (Tor, ...)Change infrastructure Internet 2, GSM, ....
Policies UnderstoodUser Interfaces & Easy DesignStill needs research....
Some are implementedA lot can be done :-)
![Page 15: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/15.jpg)
Privacy @ ID LayerA Closer Look & Solutions
![Page 16: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/16.jpg)
The ID Layer
User needs to send Personal Information to Service Provider1. Agree on which information to exchange: Policy Language2. User needs token certifying this information: Credentials3. User needs to picks which credential to show: Digital Wallet
Design Principle: Minimize Information Exchanged!
![Page 17: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/17.jpg)
Driver's License
Insurance
Dangerous Cars
Digital Credentials
![Page 18: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/18.jpg)
Driver's License
Insurance
Dangerous Cars
Solution: Private Digital Credentials
![Page 19: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/19.jpg)
Private Credentials: How to Build Them
In the beginning...
![Page 20: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/20.jpg)
State of the Art: How to Build Them
asking for a credential
![Page 21: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/21.jpg)
State of the Art: How to Build Them
getting a credential ...
containing “birth date = April 3, 1987”
![Page 22: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/22.jpg)
State of the Art: How to Build Them
showing a credential ...
goes off-line
- driver's license- insurance- older > 20
![Page 23: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/23.jpg)
State of the Art: How to Build Them
showing a credential ...
Using identity mixer, user can transform (different) token(s) into a new single one that, however, still verifies w.r.t. original signers' public keys.
containing statements “driver's license, age (as stated in driver’s ) > 20, and insurance”
![Page 24: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/24.jpg)
Other Properties: Attribute Escrow (Opt-In)
TTP
• If car is broken: ID with insurance needs be retrieved• Can verifiably encrypt any certified attribute (optional)• TTP is off-line & can be distributed to lessen trust
![Page 25: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/25.jpg)
Other Properties: Revocation
• If Alice was speeding, license needs to be revoked!• There are many different use cases and many solutions
• Variants of CRL work (using crypto to maintain anonymity)• Limited validity – certs need to be updated • ... For proving age, a revoked driver's license still works
![Page 26: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/26.jpg)
Other Properties: Offline Usage
Zzzzz
ID providers (issuers) need sleep, too!• Sometimes it is too expensive to have connectivity• Or a security risk (e.g., ID cards)
Certs can be used as many times as needed!• cf. Revocation; can be done w/ signer's secrets offline
![Page 27: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/27.jpg)
Other Properties: Cheating Prevention
World of Warcraft
Limits of anonymity possible (optional):• If Alice and Eve are on-line together they are caught!• Use Limitation – anonymous until:
• If Alice used certs > 100 times total... • ... or > 10'000 times with Bob
• Alice's cert can be bound to hardware token (e.g., TPM)
![Page 28: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/28.jpg)
This is not just a dream!
![Page 29: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/29.jpg)
This is not just a dream!
Cryptography can do all of this and more
![Page 30: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/30.jpg)
This is not just a dream!
Cryptography can do all of this and more
.... efficiently
![Page 31: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/31.jpg)
This is not just a dream!
Cryptography can do all of this and more
.... efficiently
.... even on a smart card :-)
![Page 32: Privacy Enhancing Technologies: Privacy by Design - …primelife.ercim.eu/images/stories/talks/2009-05-11-privacy-dk.pdf · “The Internet will be everywhere, from every mote to](https://reader031.fdocuments.in/reader031/viewer/2022022008/5ae5608b7f8b9a9e5d8c5b42/html5/thumbnails/32.jpg)
This is not just a dream!
Cryptography can do all of this and more
.... efficiently
.... even on a smart card :-)
.... and is for free: prime.inf.tu-dresen.de/idemix