05-big_data_privacy - BIG DATA PRIVACY AND GOVERNANCE CSIT 6000D SPRING 2017 BIG DATA SECURITY RELATED CHALLENGES Big data privacy The protection of

05-big_data_privacy - BIG DATA PRIVACY AND GOVERNANCE CSIT...

This preview shows page 1 - 14 out of 54 pages.

BIG DATA PRIVACY AND GOVERNANCE CSIT 6000D SPRING 2017
BIG DATA SECURITY RELATED CHALLENGES Big data privacy The protection of personal privacy, personal interests, habits and body properties, etc. of users may be more easily acquired, of which the user may not be aware Personal privacy data may be leaked during storage, transmission, and usage Data Quality Big data safety mechanism Data encryption in large scale and high variety Big data application in information security Opportunities for the development of information security mechanisms
BIG DATA SECURITY CHALLENGES Source: CLOUD SECURITY ALLIANCE (CSA). “Expanded Top Ten Big Data Security and Privacy Challenges”. April 2013
BIG DATA PRIVACY
PRIVACY ISSUES source: slashfilm.com source: bestforfilm.com
PRIVACY ISSUES source: predpol.com source: gcn.com
PRIVACY ISSUES source: allnewspipeline.com
PRIVACY ISSUES
PRIVACY ISSUES Big data is brining a new level of scale and capability not foreseen before on privacy Users have an inadequate understanding of how privacy violations impact individuals and social behavior A lack of transparency regarding privacy policies or predictive analytics applied to users A lack of data due process of law Unplanned disclosures of data False data or false analytic results shared, and difficult to make amends through a data due process It is possible to predict private traits using Big Data analytics
PRIVACY ISSUES A mismatch of provider’s claimed policies and the actual controls available to users Economic incentive to disclose users’ data Policing incentive to use advanced surveillance techniques to gather data Technical limitations to some of the most advanced techniques revised to allow analytics on private data Centralization of information tilts the gain-loss trade-off in favor of potential attackers and intruders Information privacy laws are out of pace Government investigative agencies have a tendency to violate reasonable expectation of privacy
PERSONALLY IDENTIFIABLE INFORMATION Personally identifiable information (PII) A legal concept “Information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context” Used in U.S. privacy laws
MODELS OF PRIVACY PROTECTION Comprehensive laws Adopted by European Union, Canada,Australia Sectoral laws Adopted by US Financial privacy, protected health information Lack of legal protections for individual’s privacy on the Internet Self-regulation Companies and industry bodies establish codes of practice Privacy enhancing technologies
PRIVACY ENHANCING TECHNIQUES Numerous privacy-enhancing techniques have been proposed ranging from cryptographic techniques to data anonymization Such techniques either do not scale for large datasets and/or do not address the problem of reconciling security with privacy.

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture