CRII: SaTC: A System for Privacy Management in Ubiquitous Environments

CRII：SaTC：无处不在的环境中的隐私管理系统

• 批准号: 1657774
• 负责人: Hoda Mehrpouyan
• 金额: $ 17.5万
• 依托单位: Boise State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2016
• 资助国家: 美国
• 起止时间: 2016-08-01 至 2020-06-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1657774&HistoricalAwards=false
• 关键词: CRII; SaTC; System; Privacy; Management

As mobile and network technologies proliferate, so does society's awareness of the vulnerability of private data within cyberspace. Protecting private information becomes specially important, since researchers estimate that 87% of Americans can be identified by name and address, if their zip code, gender, and birthday are known to intruders. The goal of this proposal will be to develop a new set of verification tools, algorithms, and interfaces that enable secure, effective and unobtrusive management of users' private information. The proposed approach leverages formal verification techniques to ensure that the intended privacy properties and goals are met. Because of the modular and robust design of the proposed platform, it can be re-aligned and tuned to accommodate the needs of specific use cases and applications (e.g., health-care, connected automotive systems, and smart cities). The proposed system will: (1) use model-checking to ensure that updated rules and boundaries correctly enforce users' privacy intents, given that users' privacy boundaries and rules constantly evolve (e.g., due to aging, social pressure, and changes in health and personal relationships), (2) automatically translate control policies to privacy-preserving protocol executions, which provably enforce privacy intents. To achieve this, new approaches for activating privacy-preserving functionalities based on the knowledge of privacy rules and boundaries, as well as novel cryptographic tools will be used.For further information see the project web site at: http://hodamehrpouyan.com/privacy.html .

随着移动的和网络技术的激增，社会对网络空间内私人数据脆弱性的认识也在增加。保护私人信息变得尤为重要，因为研究人员估计，如果入侵者知道他们的邮政编码、性别和生日，87%的美国人可以通过姓名和地址识别。该提案的目标是开发一套新的验证工具、算法和接口，以便安全、有效和不引人注目地管理用户的私人信息。所提出的方法利用形式验证技术，以确保预期的隐私属性和目标得到满足。由于所提出的平台的模块化和鲁棒性设计，它可以被重新调整和调整以适应特定用例和应用的需求（例如，医疗保健、互联汽车系统和智慧城市）。拟议的系统将：（1）使用模型检查来确保更新的规则和边界正确地实施用户的隐私意图，假定用户的隐私边界和规则不断地演变（例如，由于老化、社会压力以及健康和个人关系的变化），（2）自动地将控制策略转换为隐私保护协议执行，其可证明地实施隐私意图。为了实现这一目标，将使用基于隐私规则和边界知识的激活隐私保护功能的新方法以及新颖的加密工具。http://hodamehrpouyan.com/privacy.html

项目成果

A User-Centric and Sentiment Aware Privacy-Disclosure Detection Framework based on Multi-input Neural Network

• 发表时间: 2020
• 作者: Nuhil Mehdy;Hoda Mehrpouyan

A Model-Checking Approach for Enforcing Purpose-Based Privacy Policies

• DOI: 10.1109/pac.2017.31
• 发表时间: 2017-08
• 期刊: 2017 IEEE Symposium on Privacy-Aware Computing (PAC)
• 作者: Rezvan Joshaghani;Hoda Mehrpouyan

Privacy as a Planned Behavior: Effects of Situational Factors on Privacy Perceptions and Plans

隐私作为一种有计划的行为：情境因素对隐私认知和计划的影响

• DOI: 10.1145/3450613.3456829
• 发表时间: 2021
• 期刊: Netherlands © 2021 Association for Computing Machinery.
• 作者: Mehdy, A K;Ekstrand, Michael D.;Knijnenburg, Bart P.;Mehrpouyan, Hoda
• 通讯作者: Mehrpouyan, Hoda

Modeling of Personalized Privacy Disclosure Behavior: A Formal Method Approach

• DOI: 10.1145/3465481.3470102
• 发表时间: 2021-06
• 期刊: Proceedings of the 16th International Conference on Availability, Reliability and Security
• 作者: Nuhil Mehdy;Hoda Mehrpouyan

Anon what what?: Children's Understanding of the Language of Privacy

匿名什么什么？：儿童对隐私语言的理解

• DOI: 10.1145/3311927.3325324
• 发表时间: 2019
• 期刊: the 18th ACM International Conference on Interaction Design and Children
• 作者: Black, Stacy;Joshaghani, Rezvan;Ratakonda, Dhanush kumar;Mehrpouyan, Hoda;Fails, Jerry Alan
• 通讯作者: Fails, Jerry Alan