http://emergentchaos.com/archives/2007/06/my-privacy-enhancing-technologies-talk.html The Emergent Chaos Jazz Combo Wed, 01 Feb 2012 19:20:40 +0000 hourly 1 http://wordpress.org/?v=3.3.1 http://emergentchaos.com/archives/2007/06/my-privacy-enhancing-technologies-talk.html/comment-page-1#comment-3723 Aoi Wed, 27 Jun 2007 18:07:26 +0000 http://emergentchaos.com/?p=2410#comment-3723 Good thoughts. Technology is not "privacy neutral" but generally drives down privacy levels. It's an uphill battle at all levels for PET. But the weakest link remains and will likely continue to be people. The average person does not understand passwords, user authentication, wireless, or even rewards cards. So any PET solution has to keep in mind what everyday people do and how black hats of all types will attempt to circumvent or subvert it. Hope to read more about both the 80% and the 20%. Good thoughts. Technology is not “privacy neutral” but generally drives down privacy levels. It’s an uphill battle at all levels for PET. But the weakest link remains and will likely continue to be people. The average person does not understand passwords, user authentication, wireless, or even rewards cards. So any PET solution has to keep in mind what everyday people do and how black hats of all types will attempt to circumvent or subvert it. Hope to read more about both the 80% and the 20%.

]]> http://emergentchaos.com/archives/2007/06/my-privacy-enhancing-technologies-talk.html/comment-page-1#comment-3722 Andy Steingruebl Tue, 26 Jun 2007 15:54:29 +0000 http://emergentchaos.com/?p=2410#comment-3722 Adam, Nice presentation. I think what is interesting is how little we talk about preserving privacy as a fundamental technology design goal. Even within secure development methodologies such as the SDL there isn't a lot of time given to fundamental design decisions that impact privacy. The goal is to protect privacy but I don't see a lot of focus on good/bad solutions to problems that do and don't protect privacy. The best talk I ever saw on this was one that Ian Goldberg did back at Usenix Security in 2000. The title was "Privacy-Degrading Technologies: How Not to Build the Future". The focus was on how fundamental design choices lead to privacy protection or the opposite, and we need to understand the options and make the right choice when we build something because its in the architecture thereafter. Does anyone else find it humorous that Google was one of the sponsors of the recent conference? :) Adam,
Nice presentation. I think what is interesting is how little we talk about preserving privacy as a fundamental technology design goal. Even within secure development methodologies such as the SDL there isn’t a lot of time given to fundamental design decisions that impact privacy. The goal is to protect privacy but I don’t see a lot of focus on good/bad solutions to problems that do and don’t protect privacy.
The best talk I ever saw on this was one that Ian Goldberg did back at Usenix Security in 2000. The title was “Privacy-Degrading Technologies: How Not to Build the Future”.
The focus was on how fundamental design choices lead to privacy protection or the opposite, and we need to understand the options and make the right choice when we build something because its in the architecture thereafter.
Does anyone else find it humorous that Google was one of the sponsors of the recent conference? :)

]]>