Great ideas, big data and little privacy?

Transcription

Great ideas, big data and little privacy?
Great ideas, big data
and little privacy?
Bart Preneel
iMinds and COSIC KU Leuven
2
3
NSA calls the iPhone users public 'zombies'
who pay for their own surveillance
4
Snowden revelations
• NSA: “Collect it all, know it all, exploit it all”
• most capabilities could have been extrapolated from open sources
• But still…
• massive scale and impact
• redundancy: at least 3 methods to get to Google’s data
• many other countries collaborated (beyond five eyes): economy of
scale
• industry collaboration through bribery, security letters,
5
Snowden revelations (2)
• Most spectacular: active defense
• networks
• Quantum insertion: answer before the legitimate website
• FoxAcid: specific malware
• devices
• supply chain subversion
• Translation in human terms: complete control of networks and
systems, including bridging the air gaps
• No longer deniable
6
Lessons learned
• Never underestimate a motivated, well-funded and competent
attacker
• Pervasive surveillance requires pervasive collection and active
attacks (also on innocent bystanders)
• active attacks undermine integrity of and trust in computing
infrastructure
• Economics of scale play a central role:
• it is not about the US or US/UK or even five eyes
• other nations have or are developing similar
capabilities
• organized crime and terrorists working on this too
7
The state of cybersecurity
• Governments are undermining ICT systems rather than
improving cybersecurity (and part of industry is helping)
• Problems at network level
•
•
•
•
end-to-end deployment of encryption
meta data: IP address, location, …
network protocols such as BGP, DNS
Problems at system level:
•
•
•
secure execution and update
supply chain security
0-day market
8
IoT security risks
•
More pervasive and intrusive: building, car, body
•
•
•
•
low cost
larger attack surface
harder to update
Security
•
•
•
•
bringing down the grid
hacking cars and drones
burglary
hacking medical devices
9
OWASP IoT top 10 2014
https://www.owasp.org/index.php/OWASP_Internet_of_Things_Top_Ten_Project
•
•
•
•
•
•
•
•
•
•
1 Insecure Web Interface
2 Insufficient Authentication/Authorization
3 Insecure Network Services
4 Lack of Transport Encryption
5 Privacy Concerns
6 Insecure Cloud Interface
7 Insecure Mobile Interface
8 Insufficient Security Configurability
9 Insecure Software/Firmware
10 Poor Physical Security
10
IoT privacy nightmare?
•
•
•
What is privacy?
What are the limitations of the current approach?
What are the risks?
HP IoT study: 90% of devices collected at least one
piece of personal information via the device, the cloud
or its mobile application
11
What is privacy?
• Abstract and subjective concept, hard to define
• Depends on cultural aspects, scientific discipline,
stakeholder, context
• Conflicts are inherent
discretion
transparency
harmony
social control
12
Legal approach
• Data controller: trusted
• Limited purpose: can be hard to define
• Consent: how will this work in IoT?
transparency
discretionIrish privacy
commissioner
here
harmony
social control
13
Privacy problems
•
•
•
•
•
•
Data breaches
Profiling
Discrimination
Manipulation
Prediction
Mass surveillance
14
Architecture is politics [Mitch Kaipor’93]
Need to rethink centralized architectures with massive storage of raw data (designed for
advertising/search/cost)
Avoid single point of trust that becomes single point of failure
15
Governance and Architectures:
Back to principles
• Data minimization through infrastructure
• Minimum disclosure: avoid centralized massive
amounts of data
• “cryptomagic”
• local computations with proof of security
• centralized storage but encrypted under local key (can still
do computations!)
16
Open Solutions
Open source solutions with effective governance
• who adds code
• who does code reviews
17
Conclusions
•
•
•
•
•
IoT technologies bring major privacy and security risks
•
we cannot afford to continue the “deploy now and fix later” model
Need to rethink everything
•
architectures: where is the data?
•
building blocks
•
deployment (including supply chain)
•
update mechanisms
Need open solutions with open audit
Support: legislation (economic incentives) and non-proliferation treaties
Essential to maintain our European sovereignty and values
18
CONTACT DETAILS
Bart Preneel, iMinds and COSIC KU Leuven
ADDRESS:
WEBSITE:
EMAIL:
TELEPHONE:
Kasteelpark Arenberg 10 Bus 2452,
3000 Leuven
homes.esat.kuleuven.be/~preneel/
Bart.Preneel@esat.kuleuven.be
+32 16 321148
www.facebook.com/iminds
@iminds
19
THANK YOU FOR YOUR TIME