In current fielded systems such as SSL and IPsec, "privacy'' is mostly about encrypting data in transit from one party to another, so that eavesdroppers cannot overhear it. However, this approach to sensitive information has proved inadequate for the kinds of activities now taking place on the Internet. There are growing concerns over the amount of information being collected by data brokers, as well as concerns about the ability of merchants, banks, and the large data brokers themselves to secure that information from malicious use. The problem is compounded by the fact that there are multiple stakeholders---such as data subjects, data owners, data collectors, and data service providers---and these stakeholders may have differing views about which uses are appropriate and which are not.
We are soliciting contributed talks. Please see the call for papers.
Workshop topics include (but are not limited to):