PEPR '24 Conference Program

Complex products like social network apps are unavoidable to have complicated permission checks. There are thousands of actions that could happen on the Facebook app, and each action requires a permission check to decide if the viewer is allowed to perform that activity in order to prevent unintentional or unauthorized action. For example:

• Can the viewer make a post on their friend's Timeline?
• Can the viewer change the cover photo of this Group?
• Can the viewer send a message to that seller on Marketplace?

The concept might seem simple at start, but as the products grow and add more features over time, managing complicated permission logics becomes challenging.

In this talk, I will describe a design pattern that enables engineers to define and implement permissions into data models. It contains three components:

1. a rules engine, which is responsible for modeling the permission logic;
2. an integration with the data modeling layer, which supports flexible abstraction and delegation of permissions;
3. an integration with the data fetching layer, which allows conditional loading based on permissions.

This design pattern has been widely used in Meta on numerous products, and has shown multiple improvements in reliability and performance of permission checks in production.

At Airbnb, we architected a Consent Management Platform that provides a data model and API that solves the GDPR/ePrivacy directive Cookie consent & banner problems, and is extensible to support other consent gestures/scenarios applicable to our users. We allow services in Airbnb to programmatically model the "Terms" to present to an end-user, describe the personas impacted by the consent, and persist an audit log for regulation inquiries. We built this platform from learnings we gained from a prior vendor solution that was no longer meeting our needs. In this talk, we present the concepts and data model we use to implement consent, and the API surface that allows our clients to query whether the client must prompt the user for consent, what terms need to be presented to the user, and persist the new record of consent. We illustrate how this model scales to solve various problems like explicit consent through Cookies Banner, and implicit consent through GPC (Global Privacy Control), and how we adapted the API to fulfill new user flows.

User-centric or self-sovereign identity envisions a world in which individuals are at the center of their data and its uses. The challenge is getting all the other users of this data to agree!

The challenge is more than the technical hurdles of incomplete or incompatible standards, but also the steeplechase of social, economic, and governance: closing the gaps in trust and managing conflicting motivations. How do we do all this while ensuring that respect for the individual stays centered?

Multistakeholder governance brings the interests of individuals into dialog with other ecosystem participants. It doesn't guarantee that they will always prevail, but gives them the chance to be part of the consensus. We seek Institutional designs that elucidate participant interests and promote benefits from cooperation, respecting individual agency to make choices both at design-time and use-time.

We'll discuss lessons from previous "identity" efforts and multistakeholder institutions, efforts to build a new governance framework for user-centered identity, and what privacy assurances result. An identity system that embraces individual stakeholders in its governance offers the best measure of respect and privacy assurance.

Despite the growing reliance on differential privacy to shield user data in interest-based advertising, critical gaps remain in our understanding of its effectiveness against sophisticated threats. This presentation zeroes in on Privacy Attacks, highlighting their significance in truly appraising privacy in such settings, and explores whether LLMs/LMs could serve as formidable attackers. We will explore Google's Topics API, a pioneering effort to balance user privacy with advertising needs, to identify and quantify its vulnerabilities to re-identification and membership inference attacks. Leveraging practical simulations, we expose how edge cases and niche topics within the API amplify re-identification risks, a concern underexplored in prior literature. Our use of Large Language Models (LLMs) to simulate attacks marks a significant departure from traditional analysis, uncovering a heightened accuracy in user re-identification that challenges the API's privacy assertions. The findings underscore a pressing need for the PETs community to pivot towards evaluating the resilience of privacy technologies against LLM-driven threats, ensuring that mechanisms like the Topics API can truly withstand the evolving landscape of digital privacy risks.

Authors:

Aman Priyanshu (Carnegie Mellon University) apriyans@andrew.cmu.edu
Yash Maurya (Carnegie Mellon University) ymaurya@andrew.cmu.edu
Suriya Ganesh Ayyamperumal (Carnegie Mellon University) sayyampe@andrew.cmu.edu
Vy Tran (Carnegie Mellon University) vtran@andrew.cmu.edu
Saranya Vijayakumar (Carnegie Mellon University) saranyav@andrew.cmu.edu
Hana Habib (Carnegie Mellon University) htq@andrew.cmu.edu
Norman Sadeh (Carnegie Mellon University) sadeh@cs.cmu.edu

While artificial intelligence based technologies are gaining traction and are delivered on our personal devices, user data privacy is a key consideration for developing the technologies. Personal devices including mobile, wearable, and smart home devices are equipped with a variety of user and sensor data (camera, microphone, and motion sensors) that, on one hand, can provide extraordinary opportunities for personalizing user experience, while on the other hand, can reveal extremely sensitive information about the user. Therefore, it is crucial to establish clear privacy guidelines for the responsible use of sensitive device and sensor data for AI development. In this talk, we explore the intricate relationship between device-specific AI and privacy considerations. We examine the unique challenges posed by device and sensor based AI models, spanning from data collection and usage transparency to model security and user control. In this talk, we present frameworks and guidelines that can help organizations and developers responsibly handle user data while harnessing the power of device-specific AI.

Authors: Tousif Ahmed, Mina Askari, and Joe Genereux, Devices and Services team at Google

In the world of Trust-by-Design, technical privacy and security reviews are essential for ensuring systems not only meet privacy standards, but also integrate privacy from start. However, as companies grow and diversify their technology, the process of conducting these reviews becomes more challenging and expensive.

This challenge is particularly evident in agile environments, where frequent releases of small software components need to be reviewed in a timely manner. Scale worsens this challenge, where the number of reviews from thousands of developers and microservices can easily overwhelm a small team of privacy engineers.

The quality of documentation also plays a significant role: poor or incomplete documentation can result in wasted efforts on review that present little privacy risk, or even worse, can result in overlooking serious privacy concerns.

The challenge of identifying low-risk items that don't need a review (false positives) and high-risk items skipping the review (false negatives) becomes a critical task for maintaining privacy-by-design effectively across the organization.

This presentation will explore how Uber and Here Technologies have worked to improve efficiency of their review triage processes via automation. Large Language Models (LLMs) are suited to assess the completeness of technical documentation and classify a feature/project into high or low risk buckets, due to the textual representation of information and the models being trained on privacy and security concepts. We will demonstrate how we have adopted LLMs in the triage phase and how we identified that LLMs are not suited to perform full reviews and remediate issues without supervision, as they struggle reaching factual and logical conclusions.

Attendees will learn how AI can enhance efficiency for privacy engineers, and the most effective technologies and strategies, such as policy writing, dataset validation, prompt engineering with detailed decision trees and fine-tuning. The discussion will also cover the balance between performance (e.g. model accuracy VS human labeling, false negatives) and cost (e.g. workload reduction, computational expense). As an example, we will show how using gates (decision-trees) in GPT4 prompts allowed us to reach accuracy rates up to 90% but with high costs.

The talk will conclude with a discussion of the limitations of this approach and future directions in this area.

In order to fulfill data subject requests (DSRs), a structure of the rights request must be created and maintained from the time of intake, to the propagation to all data systems where Personal Information (PI) resides. What should this structure contain to perform effectively and efficiently? What exchanges are required to fulfill Delete and Access obligations?

The aim of this talk is to share how we developed and implemented a protocol based on the Data Rights Protocol, outlining standardized request and response data flows by which Data Subjects can exercise Personal Data Rights. The protocol is incorporated into our broader product's internal handshakes and specifies the payload structures for externally registered webhooks. I'll explain the decisions that drove the structures of these exchanges and lessons learned from implementation in practice. Lastly I'll share some areas of flexibility (e.g., "data subject variables") and discuss future applications for this build.

Since 2022, Internet Safety Labs (ISL) has been measuring privacy behaviors in K-12 EdTech apps used in schools across the US. More than 120,000 data points and over 1000 apps worth of network traffic have been collected, analyzed, and presented in the form of app Safety Labels. This talk will share how and what was measured, and some of the key learnings, both from the research as well as the challenges/successes of measuring privacy at scale. Research and development was also performed by the ISL team, including Irene Knapp, Saish Mandavkar, and George Vo.

The challenges of conducting privacy assessments of acquisitions are significant: tight timelines, competing priorities, and limited initial visibility. Yet, early proactive privacy assessments are critical to mitigate risks and streamline the integration process. Privacy Engineering's "Privacy by Design" principles, combined with advanced assessment methodologies and tools, offer a solution. This approach enables timely, high-impact privacy insights during the crucial early stages when deal structures and integration plans are being solidified.

When mitigating the critical risks posed by potential insider threats, there is a delicate balance that needs to be maintained in preserving the privacy of insiders. This presentation will examine the intersection of insider threats, privacy, and methods in detection and security management. We will define insiders, threats (both negligent and malicious), and risks and explore their interconnectedness. We'll then delve into the human element of security and its inherent link to privacy concerns. A core focus will be on the aspects of insider risk management that raise privacy and civil liberty questions. We'll explore program governance, personal data management, user activity monitoring, and more. Additionally, a discussion will be had on the privacy threats posed by insiders themselves, along with mitigation strategies. The latter portion of the presentation explores potential privacy threats arising from insider management practices. We'll discuss safeguards and strategies to mitigate these concerns. Finally, we'll examine emerging technologies in artificial intelligence and encryption that offer the promise of effective risk management while upholding privacy.