SecAppDev 2022 Lecture Details

Privacy-friendly proximity and presence tracing

Bart Preneel
Monday June 13, 16:00 - 17:30
Short description

During the corona pandemic, privacy-friendly protocols for proximity and presence tracing have been widely deployed in a very short time. Even if these technologies were overhyped, they have delivered valuable contributions.

Abstract

The corona pandemic is the first major pandemic in times of big data, AI and smart devices. These technologies can help but can bring serious privacy risks. A range of cryptographic techniques allows performing proximity and presence tracing based on data minimization. Apps based on the privacy-friendly DP-3T/GAEN protocol have been rolled out in more than 40 countries and states and have reached more than 100 million users.

This session explores the lessons learned from this large-scale deployment in which the principles of privacy-by-design and data minimization have played a central role.

Key takeaway

Against all odds, it is possible to achieve proximity and presence tracing at a large scale while respecting the privacy requirements of the users.

Content level

Introductory

Target audience

Anyone who want so learn the lessons from a fast development and large scale deployment of an app

Prerequisites

None

Download handouts

Bart Preneel

Bart Preneel

Full professor, COSIC, KU Leuven

Prof. Bart Preneel is a full professor at the KU Leuven. He heads the imec-COSIC research group, which has 80 members. His main research interests are cryptography, information security and privacy. He received the RSA Award for Excellence in the Field of Mathematics (2014), the IFIP TC11 Kristian Beckman award (2015) and the ESORICS Outstanding Research Award (2017). He frequently consults for industry and governments about security and privacy technologies.

Full speaker profile

Related privacy, safety & ethics sessions

Privacy and ethics in secondary use of sensitive data

Lecture by Griet Verhenneman

Anonymisation versus pseudonymisation, public interest versus commercial interest, opt-in versus opt-out, and the pull versus push approach to transparency. This session explores the limitations, but also provides solutions.

Privacy, safety & ethics Monday June 13, 09:00 - 10:30

Implementing GDPR in software projects

Lecture by Mykyta Petik

This sessions aims to provide a general overview of how to implement GDPR in SDLC and ensure compliance with privacy and personal data protection rules

Privacy, safety & ethics Monday June 13, 14:00 - 15:30