The Technology of Privacy - PowerPoint PPT Presentation

Loading...

PPT – The Technology of Privacy PowerPoint presentation | free to download - id: 1350e2-ZmRjM



Loading


The Adobe Flash plugin is needed to view this content

Get the plugin now

View by Category
About This Presentation
Title:

The Technology of Privacy

Description:

Privacy Anti-Patterns. Identifiable Security Credentials. Unnecessary information release ... Shibboleth Privacy Aims. Passwords should only be transmitted to ... – PowerPoint PPT presentation

Number of Views:39
Avg rating:3.0/5.0
Slides: 20
Provided by: walter86
Learn more at: http://net.educause.edu
Category:

less

Write a Comment
User Comments (0)
Transcript and Presenter's Notes

Title: The Technology of Privacy


1
The Technology of Privacy
  • Walter Hoehn
  • wassa_at_memphis.edu

2
Privacy Imperatives
  • Legal
  • FERPA
  • State/local laws and ordinances
  • Ethical
  • Its what the users expect
  • Security
  • Personal data can be used to compromise local
    systems

3
Privacy Anti-Patterns
  • Identifiable Security Credentials
  • Unnecessary information release
  • Unnecessary session persistence
  • Identity triangulation
  • Data correlation among resource providers
  • Trolling
  • Opacity to user

4
Shibboleth Privacy Aims
  • Passwords should only be transmitted to
    authenticating institutions
  • Authentication context should be anonymous
  • Access should be possible with minimal attribute
    information
  • Users should be able to manage release of their
    personal data

5
Application Requirements
  • Entitlement
  • Pseudonymous Persistence
  • Affiliations/Membership
  • Identity

6
Attribute Release Policies
  • Control which attributes are released by the
    Attribute Authority
  • Access controls are fine-grained and support
    release of specific values
  • Policies are applied to a specific service
    provider or set of service providers
  • Combination of metadata and SSL client
    authentication is used to tie policy to requests

7
ARP Structure
  • Multiple policies can apply to a user
  • System, User, Community, etc.
  • Each policy contains one or more rules
  • Each rule contains a target specification
  • Each rule contains one or more attribute release
    specifications

8
Example ARP
  • ltAttributeReleasePolicygt
  • ltRulegt
  • ltTargetgt
  • ltRequestergturnx-exampleServiceProviderlt/Requester
    gt
  • lt/Targetgt
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonAffiliation"gt
  • ltValue release"permit"gtmemberlt/Valuegt
  • lt/Attributegt
  • lt/Rulegt
  • lt/AttributeReleasePolicygt

9
ARP Rule Selection
  • Default Rule
  • Always included in effective ARPs derived from
    the enclosing ARP
  • ltTargetgt
  • ltAnyTarget /gt
  • lt/Targetgt

10
ARP Rule Selection
  • Selection by requester
  • Standard
  • ltTargetgt
  • ltRequestergturnx-exampleServiceProviderlt/Requester
    gt
  • lt/Targetgt
  • Match Function
  • ltTargetgt
  • ltRequester matchFunctionurnmaceshibboletharp
    matchFunctionregexMatchgturnx-.lt/Requestergt
  • lt/Targetgt

11
Example ARP (Redux)
  • ltAttributeReleasePolicygt
  • ltRulegt
  • ltTargetgt
  • ltRequestergturnx-exampleServiceProviderlt/Requester
    gt
  • lt/Targetgt
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonAffiliation"gt
  • ltValue release"permit"gtmemberlt/Valuegt
  • lt/Attributegt
  • lt/Rulegt
  • lt/AttributeReleasePolicygt

12
Value Release
  • Releasing any value
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonAffiliation"gt
  • ltAnyValue release"permit" /gt
  • lt/Attributegt
  • Implicit deny
  • Precedence (deny, permit, implicit deny)

13
Value Release
  • Releasing a specific value
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonScopedAffiliation"gt
  • ltValue release"permit"gtmember_at_example.edult/Valuegt
  • lt/Attributegt
  • Match functions
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonScopedAffiliation"gt
  • ltValue release"permit" matchFunctionurnmacesh
    ibboletharpmatchFunctionregexMatchgt
  • ._at_example.edult/Valuegt
  • lt/Attributegt

14
Value Release
  • Combining attribute specifications
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonPrincipalName"gt
  • ltAnyValue release"permit" /gt
  • lt/Attributegt
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonAffiliation"gt
  • ltAnyValue release"permit" /gt
  • lt/Attributegt

15
Value Release
  • Precedence in action
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonScopedAffiliation"gt
  • ltAnyValue release"permit" /gt
  • lt/Attributegt
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonScopedAffiliation"gt
  • ltValue release"deny"gtfaculty_at_example.edult/Valuegt
  • lt/Attributegt

16
Combining Rules
  • ltAttributeReleasePolicygt
  • ltRulegt
  • ltTargetgtltAnyTarget /gtlt/Targetgt
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonScopedAffiliation"gt
  • ltAnyValue release"permit" /gt
  • lt/Attributegt
  • lt/Rulegt
  • ltRulegt
  • ltTargetgt
  • ltRequestergturnx-exampleServiceProviderlt/Requester
    gt
  • lt/Targetgt
  • ltAttribute name"urnmacedirattribute-defeduPer
    sonPrincipalName"gt
  • ltValue release"permit"gtwassa_at_example.edult/Valuegt
  • lt/Attributegt
  • lt/Rulegt
  • lt/AttributeReleasePolicygt

17
Processing Model
  • Identify all applicable ARPs
  • Create an effective ARP
  • Include all default rules
  • Include all matching rules
  • Determine which attribute/value pairs will be
    released (compile a list of values with permit
    qualifier subtract values with deny
    qualifiers)

18
ARP Management
  • Present
  • Site user level ARPs
  • Managed manually by system administrators with
    text editors
  • Near Future
  • Site, group, and user level ARPs
  • Managed by system and library administrators with
    web-based GUI utility
  • Down the road
  • Several management interfaces, including those
    for the end user

19
The Technology of Privacy
  • Walter Hoehn
  • wassa_at_memphis.edu
About PowerShow.com