Revealing Personal Data without Abandoning Privacy:
Some Initial Steps
Dr. Carlisle Adams
ABSTRACT
This talk looks at the area of privacy on the Internet. After giving
some motivation for this topic, an overview of the privacy landscape
is presented, including an introduction to some concepts, terminology,
and available technologies in this area. The talk then focuses on
environments in which personal data needs to be revealed to one or more
parties. How can the owner of such data maintain a desired level of
privacy while giving away this information? A proposal (APEX --
Architecture for Privacy Enforcement using XML) is discussed that extends
the effectiveness of P3P (Platform for Privacy Preferences Project) in
e-commerce-type Web sites. Some of the characteristics and benefits of
this architecture are described, along with some directions for further
work in this area.
BIOGRAPHY
Carlisle Adams is an Associate Professor in the School of Information
Technology and Engineering (SITE) at the University of Ottawa. Prior
to his academic appointment, he worked for 13 years in the security
industry in a number of areas including the design, analysis, and
standardization of cryptographic algorithms, secure protocols, and
large-scale architectures for authentication and access control. His
current research interests include privacy, access control, and
symmetric cipher design.