Recently, I have been reading some interesting articles about Privacy. Following are some interesting thoughts:
1. A Very little bit of privacy is secrecy. Secrecy is hiding the information whereas Privacy is being unobservable.
2. Privacy is not only important from the perspective of harm and invasion but also from the perspective of freedom, rights, and self-respect.
3. Definition of privacy itself is a challenge. It includes Intelletucal privacy, Communicational, Spatial, Informational, Associational, Behavioral, and many other dimensions.
4. The ways to protect Secrecy
- Encryption of communication channels
- DB encryption, DB techniques, SQL injection
- Hardware solutions like NIPS (Intrusion prevention system), Firewalls, APT (Advance persistent threats), Load Balancers, Anti virus solutions
- Key exchange protocols, certificates, Authentication systems
- Digital signature, MAC-based solutions
- Whitelisting of IPs, MAC-binding of end-user machine, Private internet solution
- Zonation of the architecture (DMZ, MZ, IDMZ, EDMZ etc)
5. The ways to protect privacy is
- Anonymization
- Zero-knowledge proof
- Localization
- Consent based architecture
- Differential privacy
- Access control
- Data minimization principle
- Purpose limitation
- Privacy by design
The biggest challenge to my mind was how can a designer or a coder code abstract concepts like privacy in the code. This requires a detailed level of a variety of design patterns corresponding to a different type of privacy control. Let's see how the discourse shapes in the next few years.
No comments:
Post a Comment