Revealing Personal Data without Abandoning Privacy:
Some Initial Steps


Dr. Carlisle Adams


ABSTRACT

This talk looks at the area of privacy on the Internet. After giving some motivation for this topic, an overview of the privacy landscape is presented, including an introduction to some concepts, terminology, and available technologies in this area. The talk then focuses on environments in which personal data needs to be revealed to one or more parties. How can the owner of such data maintain a desired level of privacy while giving away this information? A proposal (APEX -- Architecture for Privacy Enforcement using XML) is discussed that extends the effectiveness of P3P (Platform for Privacy Preferences Project) in e-commerce-type Web sites. Some of the characteristics and benefits of this architecture are described, along with some directions for further work in this area.

BIOGRAPHY

Carlisle Adams is an Associate Professor in the School of Information Technology and Engineering (SITE) at the University of Ottawa. Prior to his academic appointment, he worked for 13 years in the security industry in a number of areas including the design, analysis, and standardization of cryptographic algorithms, secure protocols, and large-scale architectures for authentication and access control. His current research interests include privacy, access control, and symmetric cipher design.