Pasar al contenido principal

Main navigation

  • Sobre El ITEFI
  • Investigación
  • Formación y empleo
  • OpenLab
  • Servicios científico técnicos
  • Directorio

A Methodology for Retrofitting Privacy and Its Application to e-Shopping Transactions

Jesus Diaz, Seung Geol Choi, David Arroyo, Angelos D. Keromytis, Francisco B. Rodriguez and Moti Yung
Advances in Cyber Security: Principles, Techniques, and Applications. Springer, 2019, pp. 143-183.
https://doi.org/10.1007/978-981-13-1483-4_7

The huge growth of e-shopping has brought convenience to customers and increased revenue to merchants and financial entities. Moreover, e-shopping has evolved to possess many functions, features, and requirements (e.g., regulatory ones). However, customer privacy has been mostly ignored, and while it is easy to add simple privacy to an existing system, this typically causes loss of functions. What is needed is enhanced privacy on one hand, and retaining the critical functions and features on the other hand. This is a dilemma which typifies the “privacy versus utility” paradigm, especially when it is applied to an established primitive with operational systems, where applying conventional privacy-by-design principles is not possible and completely altering information flows and system topologies is not an option. This dilemma is becoming more problematic with the advent of regulations such as the European GDPR, which requires companies to provide better privacy guarantees whenever and wherever personal information is involved. In this chapter, we put forward a methodology for privacy augmentation design that is specially suitable for real-world engineering processes that need to adhere to the aforementioned constraints.We call this the “utility, privacy, and then utility again” paradigm. In particular,we start from the state-of-the-art industry systems that we need to adapt; then we add privacy enhancing mechanisms, reducing functionality in order to tighten privacy to the fullest (privacy); and finally, we incorporate tools which add back lost features, carefully relaxing privacy this time (utility again). Specifically, we apply this process to current e-shopping infrastructures, making them privacy respectful without losing functionality. This gives an e-shopping system with enhanced privacy features, presents a set of “utility-privacy trade-offs,” and showcases a practical approach implementing the notion of “privacy by design” while maintaining asmuch compatibility as possible with current infrastructures. Finally, we note that we implemented and tested performance of our design, verifying its reasonable added costs.

Acknowledgements

The work of Jesus Diaz was done in part in the Universidad Autónoma de Madrid and while visiting the Network Security Lab at Columbia University. The work of Seung Geol Choi was supported in part by ONR award N0001418WX01542 and NSF award #1618269. The work of David Arroyo was supported by projects S2013/ICE-3095-CM (CIBERDINE) and MINECO DPI2015-65833-P of the Spanish Government. The work of Francisco B. Rodriguez was supported by projects MINECO TIN2014-54580-R and TIN2017-84452-R of the Spanish Government. The work of Moti Yung was done in part while visiting the Simons Institute for Theory of Computing, UC Berkeley.

proyecto/s relacionado/s

  • Ciberseguridad: datos, información y riesgos (CIBERDINE)
    Plan Regional de Investigación Científica e Innovación Tecnológica (Comunidad de Madrid)
Departamento de Acústica y Evaluación No Destructiva (DAEND)
  • GAA: Grupo de Acústica ambiental
  • G CARMA: Grupo de Caracterización de materiales mediante evaluación no destructiva
  • ULAB: Ultrasonidos para el análisis de líquidos y bioingeniería
Departamento de Tecnologías de la Información y Las Comunicaciones (DTIC)
  • GiCP: Grupo de investigación en Ciberseguridad y Protección de la Privacidad
  • GICSI: Grupo de investigación en Criptología y Seguridad de la Información
    • LCQE: Laboratorio de Comunicaciones Cuánticas
  • PSUM: Grupo de Procesamiento de Señal en sistemas Ultrasónicos Multicanal
Departamento de Sensores y Sistemas Ultrasónicos (DSSU)
  • GSTU: Grupo de Sistemas y tecnologías ultrasónicas
  • NoySI: Grupo de Nanosensores y Sistemas Inteligentes
  • RESULT: Resonadores ultrasónicos para cavitación y micromanipulación
  • SENSAVAN: Grupo de Tecnología de Sensores Avanzados
  • QE: Electrónica Cuántica
Laboratorios
  • Laboratorio de Acústica
  • Laboratorio de Metrología Ultrasónica Médica (LMUM)
  • Laboratorio de Comunicaciones Cuánticas
  • Laboratory for International Collaboration in Advanced Biophotonics Imaging

Instituto de Tecnologías Físicas y de la Información Leonardo Torres Quevedo  - ITEFI
C/ Serrano, 144. 28006 - Madrid • Tel.: (+34) 91 561 88 06  Contacto  •  Intranet
EDIFICIO PARCIALMENTE ACCESIBLE POR PERSONAS CON MOVILIDAD REDUCIDA