河南中医药大学：《信息安全网络与网络安全》课程教学资源（英文讲稿）第09章 隐私 Privacy

SECURITY N COMPUTING FIETH EDITION Chapter 9: Privacy 授课教师:高海波 可南中医药大学 信息管理与信息系统教研室 rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

SECURITY IN COMPUTING, FIFTH EDITION Chapter 9: Privacy From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. 1 授课教师：高海波 河南中医药大学 信息管理与信息系统教研室

2 Chapter 9 Objectives Define privacy and fundamental computer-related privacy challenges Privacy principles and laws Privacy precautions for web surfing Spyware Email privacy Privacy concerns in emerging technologies rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Chapter 9 Objectives • Define privacy and fundamental computer-related privacy challenges • Privacy principles and laws • Privacy precautions for web surfing • Spyware • Email privacy • Privacy concerns in emerging technologies 2

3 What Is Privacy Privacy is the right to control who knows certain aspects about you, your communications, and your activities Types of data many people consider private Identity Finances Health Biometrics Privileged communications Location data Subject: person or entity being described by the data Owner: person or entity that holds the data rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. What Is Privacy? • Privacy is the right to control who knows certain aspects about you, your communications, and your activities • Types of data many people consider private: • Identity • Finances • Health • Biometrics • Privileged communications • Location data • Subject: person or entity being described by the data • Owner: person or entity that holds the data 3

Computer-Related Privacy Problems Data collection Advances in computer storage make it possible to hold and manipulate huge numbers of records, and those advances continue to evolve Notice and consent Notice of collection and consent to allow collection of data are foundations of privacy, but with modern data collection, it is often mpossible to know what is being collected Control and ownership of data Once a user consents to provide data, the data is out of that user's control. It may be held indefinitely or shared with other entities rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Computer-Related Privacy Problems • Data collection • Advances in computer storage make it possible to hold and manipulate huge numbers of records, and those advances continue to evolve • Notice and consent • Notice of collection and consent to allow collection of data are foundations of privacy, but with modern data collection, it is often impossible to know what is being collected • Control and ownership of data • Once a user consents to provide data, the data is out of that user’s control. It may be held indefinitely or shared with other entities. 4

Fair Information Practices Data should be obtained lawfully and fairly Data should be relevant to their purposes, accurate, complete and up to date The purposes for which data will be used should be identified and that data destroyed if no longer necessary for that purpose Use for purposes other than those specified is authorized only with consent of data subject or by authority of law Procedures to guard against loss, corruption, destruction, or misuse of data should be established It should be possible to acquire information about the collection, storage, and use of personal data systems The data subjects normally have a right to access and challenge data relating to them A data controller should be designated and accountable for complying with the measures to effect these principles om Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL.(ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Fair Information Practices • Data should be obtained lawfully and fairly • Data should be relevant to their purposes, accurate, complete, and up to date • The purposes for which data will be used should be identified and that data destroyed if no longer necessary for that purpose • Use for purposes other than those specified is authorized only with consent of data subject or by authority of law • Procedures to guard against loss, corruption, destruction, or misuse of data should be established • It should be possible to acquire information about the collection, storage, and use of personal data systems • The data subjects normally have a right to access and challenge data relating to them • A data controller should be designated and accountable for complying with the measures to effect these principles 5

6 U.S. Privacy Laws The 1974 Privacy Act embodies most of the principles above but applies only to data collected by the U.s government Other federal privacy laws HIPAA (healthcare data) GLBA (financial data) COPPA (childrens web access) FERPA (student records) State privacy law varies widely rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. U.S. Privacy Laws • The 1974 Privacy Act embodies most of the principles above but applies only to data collected by the U.S. government • Other federal privacy laws: • HIPAA (healthcare data) • GLBA (financial data) • COPPA (children’s web access) • FERPA (student records) • State privacy law varies widely 6

7 Non-US. Privacy Principles European Privacy Directive(1995) Applies the Ware Committee's principles to governments and businesses Also provides for extra protection for sensitive data, strong limits on data transfer, and independent oversight to ensure compliance A list of other nations privacy laws can be found at http://www.informationshield.com/intprivacylaws.html rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Non-U.S. Privacy Principles • European Privacy Directive (1995) • Applies the Ware Committee’s principles to governments and businesses • Also provides for extra protection for sensitive data, strong limits on data transfer, and independent oversight to ensure compliance • A list of other nations’ privacy laws can be found at http://www.informationshield.com/intprivacylaws.html 7

8 Privacy-Preserving Data Mining Removing identifying information from data doesnt work Even if the overtly identifying information can be removed, identification from remaining data is often possIble Data perturbation As discussed in Chapter 7, data perturbation can limit the privacy risks associated with the data without impacting analysis results Data mining often focuses on correlation and aggregation, both of which can generally be reliably accomplished with perturbed data rom Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL. (ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Privacy-Preserving Data Mining • Removing identifying information from data doesn’t work • Even if the overtly identifying information can be removed, identification from remaining data is often possible • Data perturbation • As discussed in Chapter 7, data perturbation can limit the privacy risks associated with the data without impacting analysis results • Data mining often focuses on correlation and aggregation, both of which can generally be reliably accomplished with perturbed data 8

9 Precautions for Web Surfing Cookies Cookies are a way for websites to store data locally on a user's machine They may contain sensitive personal information, such as credit card numbers Third-party tracking cookies Some companies specialize in tracking users by having numerous popular sites place their cookies in users browsers This tracking information is used for online profiling, which is generally used for targeted advertising Web bugs A web bug is more active than a cookie and has the ability to immediately send information about user behavior to advertising services om Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL.(ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Precautions for Web Surfing • Cookies • Cookies are a way for websites to store data locally on a user’s machine • They may contain sensitive personal information, such as credit card numbers • Third-party tracking cookies • Some companies specialize in tracking users by having numerous popular sites place their cookies in users’ browsers • This tracking information is used for online profiling, which is generally used for targeted advertising • Web bugs • A web bug is more active than a cookie and has the ability to immediately send information about user behavior to advertising services 9

Spyware Spyware is code designed to spy on a user, collecting data General spyware Advertising applications, identity theft Hijackers: Hijack existing programs and use them for different purposes, such as reconfiguring file sharing software to share sensitive information Adware Displays selected advertisements in pop-up windows or the main browser window Often installed in a misleading way as part of other software packages om Security in Computing, Fifth Edition, by Charles P. Pfleeger, et aL.(ISBN: 9780134085043) Copyright 2015 by Pearson Education, Inc. All rights reserved

From Security in Computing, Fifth Edition, by Charles P. Pfleeger, et al. (ISBN: 9780134085043). Copyright 2015 by Pearson Education, Inc. All rights reserved. Spyware • Spyware is code designed to spy on a user, collecting data • General spyware: • Advertising applications, identity theft • Hijackers: • Hijack existing programs and use them for different purposes, such as reconfiguring file sharing software to share sensitive information • Adware • Displays selected advertisements in pop-up windows or the main browser window • Often installed in a misleading way as part of other software packages 10