26
1 Copyright © 2014 Tata Consultancy Services Limited Future Tense of Data Privacy ‘Civilization is the progress toward a society of privacy. The savage's whole existence is public, ruled by the laws of his tribe. Civilization is the process of setting man free from men.’ - Ayn Rand Dr Sachin Lodha Principal Scientist TCS Innovation Labs – Pune, India

Future Tense of Data Privacy - [email protected]/spsymp15/sachin_lodha_slides.pdfTCS Innovation Labs - Retail TCS Innovation Labs - Telecom TCS Innovation Labs - Travel &

  • Upload
    others

  • View
    42

  • Download
    0

Embed Size (px)

Citation preview

1Copyright © 2014 Tata Consultancy Services Limited

Future Tense of Data Privacy

‘Civilization is the progress toward a society of privacy. The savage's whole existence is public, ruled by the laws of his tribe. Civilization is the process of setting man free from men.’

- Ayn Rand

Dr Sachin LodhaPrincipal ScientistTCS Innovation Labs – Pune, India

2Copyright © 2014 Tata Consultancy Services Limited

Innovation at TCS

Dr Sachin LodhaPrincipal ScientistTCS Innovation Labs – Pune, India

3

TCS Innovation Labs

TCS Innovation Labs - Bangalore

Bangalore, India1

TCS Innovation Labs - Chennai

TCS Innovation Labs - Web 2.0

TCS Innovation Labs - Insurance

TCS Innovation Labs - Retail

TCS Innovation Labs - Telecom

TCS Innovation Labs - Travel & Hospitality

Chennai, India2

TCS Innovation Labs - Cincinnati

Cincinnati,

USA 8

TCS Innovation Labs - Delhi

Delhi, India3

TCS Innovation Labs - Hyderabad

Hyderabad, India4

TCS Innovation Labs - Kolkata

Kolkata, India5

Mumbai, India6

TCS Innovation Labs - Mumbai

TCS Innovation Labs - Performance Engineering

Peterborough, UK9

TCS Innovation Labs - Peterborough

Pune, India7

TCS Innovation Labs - TRDDC - Process Engineering

TCS Innovation Labs - TRDDC - Software Engineering

TCS Innovation Labs - TRDDC - Systems Research

TCS Innovation Labs - Banking and Financial Services

TCS Innovation Labs - Engineering & Industrial Services

1 2

3

4

76

5

Delhi

Hyderabad

Kolkata

Pune

Mumbai

Bangalore Chennai

4

Areas of Research

Applied Algorithms Machine Learning

Integrated

Computational

Materials

Engineering

Nano-Bio

Technology

Infrastructure

ManagementWeb 2.0 Services

Security &

Privacy

Multi modal sensing

Wireless

systems & mobile

applications

Green

Technologies

Natural Language

ProcessingMachine Learning

and Data FusionComputational

Biology

Quantitative

Finance

Next Generation

Infrastructure

Software

Models & SaaS

5

The 4E Model

6

Ecosystem of innovative partners

encompassing:

Academic Institutions

Start up companies

Venture Funds & Multi-lateral

organizations

Strategic Alliance partners

Tata Group companies,

TCS customers

COIN™ is a rich and diverse network that drives innovation in an open

community:

TCS Innovation

LabsStartups

Customers

Research Institutions

AcademicInstitutions

Student Community

VentureCapitalists

EntrepreneursIn Residence

Alliance Partners

Consultants

Industry BodiesTATAGroup

Co-Innovation Network :: (COIN)TM

7Copyright © 2014 Tata Consultancy Services Limited

Future Tense of Data Privacy

‘Civilization is the progress toward a society of privacy. The savage's whole existence is public, ruled by the laws of his tribe. Civilization is the process of setting man free from men.’

- Ayn Rand

Dr Sachin LodhaPrincipal ScientistTCS Innovation Labs – Pune, India

8

Security vis-à-vis Privacy

User and attacker are different User is the attacker

9

The Grand Goal of Privacy

Data that is both contextually useful as well as forever privacy preserving

10

Private Data Release: The Current Practice

Scrub the data by removing Personally Identifying Information (PII)

PII is information that can be used on its own or with other information to identify,

contact, or locate a single person, or to identify an individual in context

11

Major Hurdles for p-Transformation of an Enterprise

Heterogeneity of Data

Heterogeneity of Deployment Environments

Heterogeneity of Usage

Heterogeneity of Regulatory Environments

12

Design Considerations

Minimal Intrusion

Zero Latency

Unaffected Ux

Policy Externalization

Platform Agnosticism

Loose Coupling

13

Helpdesk BPS Access

To archiveTester

Browser

Console

Masking

Jar

Production

Support

DB

Console

Log

Console

Service

Console

Data

Masker

De

sk

top

Se

rve

rD

ata

ba

se

TCS Enterprise Privacy Suite

Research Papers

PatentFilings

30+ 20+

14

Tuple to Table transformation of an Individual

In the Era of Internet of Things

PII.PII..PII...PII....

• Attacker learns sensitive data by joining two datasets on common attributes.

• Publicly available individual data is growing rapidly as newer data sets are becoming available, thanks to Social, Mobile, Cloud and IoT

PII is a moving target

• Every household / individual will be a SME generating GBs worth data per day

Data about an individual is exploding vertically

15Source: www.winlab.rutgers.edu/~gruteser/papers/fp023-roufPS.pdf

Example I: Smart Energy Meters

Accurate billing

Tailored energy efficiency advice – based on

accurate data specific to your home

Understand how much appliances are costing you

and check if things are working properly

More control over how much energy you’re using

16Source: www.winlab.rutgers.edu/~gruteser/papers/fp023-roufPS.pdf

Example I: Smart Energy Meters

Activity at home is known

Could indicate your pattern of living and what you are doing in your own

home

Bad guy knows when you're not at home and burgles your house, or

worse, he knows when only one old woman is at home and breaks in

17

Is Your Car Spying on You?

Example II: Location Sensing

18

Finding Your Location by Day

Example II: Location Sensing

Source: https://www.aclu.org/technology-and-liberty/meet-jack-or-what-government-could-do-all-location-data

19

Vehicle Trip Overlay Over a Year

Example II: Location Sensing

Source: https://www.aclu.org/technology-and-liberty/meet-jack-or-what-government-could-do-all-location-data

20

Your Visit to a Particular Address

Example II: Location Sensing

Source: https://www.aclu.org/technology-and-liberty/meet-jack-or-what-government-could-do-all-location-data

21

Example II: Location Sensing

Top 10 Places Where You Spend Time

Source: https://www.aclu.org/technology-and-liberty/meet-jack-or-what-government-could-do-all-location-data

22

Discovering Your Social Graph

Example II: Location Sensing

Source: https://www.aclu.org/technology-and-liberty/meet-jack-or-what-government-could-do-all-location-data

23

Implications

Behavioral privacy is under unprecedented threat

Original picture from: http://thedailydose.com, Aug 16, 2011

with IoT

Report by The Pew Research Center Internet Project and Elon University's Imagining the

Internet Center having opinions from 1,600+ experts reads:

“Increased data from connected things will cause privacy concerns to come to the

forefront and encourage the growth of profiling and targeting people, which will greatly

inflame conflicts in various arenas.”

Privacy: a major hurdle for the realization of IoT

24

People are aware and they do care !

“The age effect is even stronger in Australia, however the trend remains the

same: young people are more, not less, likely to have taken action to protect

the privacy of their personal information on social networking sites.”

Source: http://www.oxfordmartin.ox.ac.uk/downloads/A%20New%20Privacy%20Paradox%20April%202014.pdf

25

Ideas to Realize the Grand Goal of Privacy

Evolution of Privacy: from Syntactic to Semantic

• In design of incentives and reward schemes for participants

• To optimize data flows, deployments, operations and risk envelope

Infonomics

• Homomorphic encryptions for absolutely private computations that can provide exact answers, albeit current methods are too slow

• Differential privacy for privacy preserving efficient computations that provide approximate answers

Private Computation

• Sample ‘data’ globally

• Build ‘models’ centrally

• Run ‘apps’ locally

‘Microcosm’ic Deployment

26Copyright © 2014 Tata Consultancy Services Limited

Thank You [email protected]