Web Services Contraptions - Privacy, again

Tuesday, October 06, 2009

I liked Bob Blakey's recent article on privacy, along with the paper he and Ian Glazer published. One direction that might need some additional coverage at some time is the “privacy of organizations”. Organizational sensitive data (such as trade secrets or classified material) follows a similar pattern of what Bob and Ian are laying out for PII: it is disclosed to a trusted group (as such it would not fall under their definition of secrecy), and a legal instrument (such as a NDA) is used to ensure that this data is not released to non-authorized parties.

In my own world, I have seen privacy and secrecy as very closely related: to some extend, secrecy was to me privacy with a solid logging/auditing system, so that secrecy is really only preserved operationally, and full access to the audit trail would restore the identity (oh dear *that* loaded term again) of all actors. Bob and Ian obviously use a different definition of privacy, which has much stronger implications for the meta-data architecture, including sensitivity markings or IRM controls.

In order to draw a more precise distinction between different concepts of privacy, it might be relevant to examine the origin of the data about me (the data subject):

The first bucket is data for which I am the originator (source).
The next bucket is data that someone I interact with directly collects about me, so they are the originator. This may include web server access logs, shopping profiles, etc.
The final bucket is data that a third party collects about me, without me interacting with them. In many cases they are not the originator of that data, but instead collect other party's data (including myself). Note that data in this bucket gets particularly interesting when aggregated.

In an ideal world, I (as a person or organization) would have full control over all three buckets, and could determine how the data about me flows. Unfortunately, the world is not ideal. In most cases I can only control the release (!) of data in the first bucket, but once that data is out in the wild, it will inevitably land in the third bucket, which I have least control over. Attempts at controlling that third bucket through regulatory measures are fairly ineffective, as can be seen by the many identity data releases and losses, even in relatively strict privacy regimes.

privacy secrecy

Tuesday, October 06, 2009 8:25:55 AM (Eastern Standard Time, UTC-05:00)

Comments [0] |

Comments are closed.

Messages

Calendar

March 2010

Sun

Mon

Tue

Wed

Thu

Fri

Sat

Email Subscription

Blogroll

Constantin Gonzalez' Weblog

Adventures of an Eternal Optimist

Anyway

Conor's Web Log of Esoterica

del.icio.us/beuchelt

Don Box's Spoutlet

Enterprise Architecture: Thought Leadership

Harold Carr's Blog

Identity for All - On bits and bytes

James Gosling: on the Java Road

Jamie Lewis - CEO and Research Chair

Johannes Ernst's Blog

Kim Cameron's Identity Weblog

Kirill's notes

Links

Marc Hadley's Blog

meta-douglasp

Mike Jones: self-issued

Nicholas Allen's Indigo Blog

ongoing

Phil Windley's Technometria

Pushing String

Robin Wilton's esoterica

TechEd Iron Architect Contest

The Aquarium

Web Services Contraptions

xmldap

Links

Technorati Profile

On this page

Disclaimer

The opinions expressed herein are my own personal opinions and do not represent my employer's view in anyway.

In addition, my opinions can change. This weblog provides a momentary snapshot of such opinions. Existing posts that were written in the past do not necessarily reflect my current thoughts and opinions.

For the purposes of attribution, the author is "Gerald Beuchelt" and attribution shall provide a (clickable, where possible) URL to this site.

E-mail