Spectrum Online has a story about Jeff Jonas, whom FCW has featured for his work in privacy and security. The Vegas 911 article describes how after working with casinos to thwart cheats, he was approached by the National Security Agency to help the government detect insider threats. The article is primarily a fascinating account of his work in Las Vegas, but the end touches on uses of anonymized data for counter terrorism research.
For an even better read, check out this December 2005 testimony where Jonas spoke before the DHS Data Privacy and Integrity Advisory Committee. If you can, look at the whole transcript of the meeting. It covers, RFID, Secure Flight, Real ID, avian flu, identity fraud and more.
His testimony (starting on page 36) is especially relevant in light of current discussion of NSA and phone records. He speaks to privacy, the law and effective ways to find terrorists in mountains of data.
In the area of information sharing, everyone loves or wants to be involved in information sharing, and they basically said, “go ahead and send me all your dataâ€. But the challenge is everyone wants to protect the data they have. I see three models of information sharing, two of which really won ¹t work. One is everybody has to take all of their data and give it to everybody else. But you can ¹t keep it current and there are many other problems.
Another requires everybody to ask everybody else every question everyday. Otherwise, how would you know with whom to share the data? It just does not work either. The third model, which I ¹m finding quite practical, is the use of directories. This is much how libraries work. One does not roam the halls to find a book. Rather, one goes to the card catalog (i.e., the directory), and the directory provides you pointers. So, each data holder gets to hold their data and know who ¹s asking for it, and better yet it is discoverable because somebody has gone to a directory. And this is a model that I think can work. But questions arise from this model: What are the policies around such a directory? Who will hold the directory? What data do you put in the directory? How do you govern how people use the directory? This is where our thinking needs to be directed.
Then further on…
With regard to anonymization, the main point is the government is seeking large swaths of data to find a few bad guys by working from watch lists which they cannot release (unlike No Fly or Selectee lists which are released on a restricted basis to the airlines). When policy requirements preclude watch list sharing and where legal mechanisms can be used to collect all of the data that a company holds, anonymization enables one to discover what five records they have in common in a more privacy-preserving manner. So, information transfer contains the fewest number of records. I think that is exceedingly practical. And I think it is a huge step forward in terms of privacy enhancing ways government can get its job done.
To post a comment, you must be a registered user of FCW.com and be logged in. Use one of the forms below to login or register for FREE to FCW.com. To protect your privacy, you can use an alias as your username.
