Monday July 15
9:00 – 12:30 OTRv4 Summit Room Q34. (The OTRv4 Summit is not organized by PETS.)
13:00 – 18:00 Open Day for Privacy, Usability, and Transparency (PUT 2019) PUT will be held in room Q34.
19:00 – 21:00 Joint PUT / PETS Welcome Reception
Tuesday, July 16
8:45 Opening Remarks
9:00 Anonymous communications
- On Privacy Notions in Anonymous Communication
Christiane Kuhn (TU Dresden), Martin Beck (TU Dresden), Stefan Schiffner (Université du Luxembourg), Eduard Jorswieck (TU Dresden), and Thorsten Strufe (TU Dresden)
- DPSelect: A Differential Privacy Based Guard Relay Selection Algorithm for Tor
Hans Hanley (Princeton University), Yixin Sun (Princeton University), Sameer Wagh (Princeton University), and Prateek Mittal (Princeton University)
- ConsenSGX: Scaling Anonymous Communications Networks with Trusted Execution Environments
Sajin Sasy (University of Waterloo) and Ian Goldberg (University of Waterloo)
- Guard Placement Attacks on Location-Based Path Selection Algorithms in Tor
Gerry Wan (Princeton University), Aaron Johnson (U.S. Naval Research Laboratory), Ryan Wails (U.S. Naval Research Laboratory), Sameer Wagh (Princeton University), and Prateek Mittal (Princeton University)
10:50 PETS Keynote Address — Simson L. Garfinkel, Senior Computer Scientist for Confidentiality and Data Access, U.S. Census Bureau
Title: Deploying Differential Privacy for the 2020 Census of Population and Housing
When differential privacy was created more than a decade ago, the motivating example was statistics published by an official statistics agency. In theory there is no difference between theory and practice, but in practice there is.
In attempting to transition differential privacy from the theory to practice, and in particular for the 2020 Census of Population and Housing, the U.S. Census Bureau has encountered many challenges unanticipated by differential privacy's creators. Many of these challenges had less to do with the mathematics of differential privacy and more to do with operational requirements that differential privacy’s creators had not discussed in their writings. These challenges included obtaining qualified personnel and a suitable computing environment, the difficulty of accounting for all uses of the confidential data, the lack of release mechanisms that align with the needs of data users, the expectation on the part of data users that they will have access to micro-data, the difficulty in setting the value of the privacy-loss parameter, ε (epsilon), and the lack of tools and trained individuals to verify the correctness of differential privacy, and push-back from same members of the data user community.
Addressing these concerns required developing a novel hierarchical algorithm that makes extensive use of a high-performance commercial optimizer; transitioning the computing environment to the cloud; educating insiders about differential privacy; engaging with academics, data users, and the general public; and redesigning both data flows inside the Census Bureau and some of the final data publications to be in line with the demands of formal privacy.
Simson Garfinkel is the Senior Computer Scientist for Confidentiality and Data Access at the US Census Bureau. He holds seven US patents and has published more than 50 research articles in computer security and digital forensics. He is a fellow of the Association for Computing Machinery (ACM) and the Institute of Electrical and Electronics Engineers (IEEE), and a member of the National Association of Science Writers. His most recent book is The Computer Book, which features 250 chronologically arranged milestones in the history of computing. As a journalist, he has written about science, technology, and technology policy in the popular press since 1983, and has won several national journalism awards.
Garfinkel received three Bachelor of Science degrees from MIT in 1987, a Master's of Science in Journalism from Columbia University in 1988, and a Ph.D. in Computer Science from MIT in 2005.
13:30 Stylometry and sensors
15:10 Social networks
15:10 Deniability and decision trees
18:20 End of sessions
Wednesday, July 17
9:00 Machine learning
- SecureNN: 3-Party Secure Computation for Neural Network Training
Sameer Wagh (Princeton University), Divya Gupta (Microsoft Research), and Nishanth Chandran (Microsoft Research)
- LOGAN: Membership Inference Attacks Against Generative Models
Jamie Hayes (University College London), Luca Melis (University College London), George Danezis (University College London), and Emiliano De Cristofaro (University College London)
- Together or Alone: The Price of Privacy in Collaborative Learning
Balázs Pejó (University of Luxembourg), Gergely Biczók (CrySyS Lab, Budapest Univ. of Technology and Economics), and Qiang Tang (Luxembourg Institute of Science and Technology)
- Monte Carlo and Reconstruction Membership Inference Attacks against Generative Models
Benjamin Hilprecht (TU Darmstadt), Martin Härterich (SAP SE), and Daniel Bernau (SAP SE)
10:50 Town Hall
13:30 Private search
15:10 User studies
15:10 Differential privacy
18:00 End of sessions
From 18:30 Visit of the Moderna Museet – 20:00 PETS Banquet at Moderna Museet
We will visit the Moderna Museet, one of Europe's leading museums of modern and contemporary art. The banquet will be in the museum's restaurant at 20:00 and will begin with a welcome drink at 19:45. The Museum will exclusively open for us at 18:30, so you have a chance to drop in anytime between 18:30 and 20:00 to have a look at the exhibitions. There will also be three guides around for guiding through the exhibitions.
Thursday, July 18
- The (Co-)Location Sharing Game
Alexandra-Mihaela Olteanu (EPFL, UNIL - HEC Lausanne), Mathias Humbert (Swiss Data Science Center), Kévin Huguenin (UNIL - HEC Lausanne), and Jean-Pierre Hubaux (EPFL)
- Reducing Metadata Leakage from Encrypted Files and Communication with PURBs
Kirill Nikitin (EPFL), Ludovic Barman (EPFL), Matthew Underwood, Bryan Ford (EPFL), and Jean-Pierre Hubaux (EPFL)
- ScrambleDB: Oblivious (Chameleon) Pseudonymization-as-a-Service
Anja Lehmann (IBM Research - Zurich)
- Cryptography for #MeToo
Benjamin Kuykendall (Princeton University), Hugo Krawczyk (IBM Research), and Tal Rabin (IBM Research)
10:50 Traffic analysis
- Finding a Needle in a Haystack: The Traffic Analysis Version
Abdullah Qasem (Concordia University), Sami Zhioua (KFUPM), and Karima Makhlouf (Imam Abdulrahman Bin Faisal University)
- Keeping the Smart Home Private with Smart(er) Traffic Shaping
Noah Apthorpe (Princeton University), Danny Yuxing Huang (Princeton University), Dillon Reisman (Princeton University), Arvind Narayanan (Princeton University), and Nick Feamster (Princeton University)
- p-FP: Extraction, Classification, and Prediction of Website Fingerprints with Deep Learning
Se Eun Oh (University of Minnesota), Saikrishna Sunkam (University of Minnesota), and Nicholas Hopper (University of Minnesota)
- Var-CNN: A Data-Efficient Website Fingerprinting Attack Based on Deep Learning
Sanjit Bhat (MIT PRIMES), David Lu (MIT PRIMES), Albert Kwon (MIT), and Srinivas Devadas (MIT)
- Mitigating Location Privacy Attacks on Mobile Devices using Dynamic App Sandboxing
Sashank Narain (Northeastern University) and Guevara Noubir (Northeastern University)
- AccessiLeaks: Investigating Privacy Leaks Exposed by the Android Accessibility Service
Mohammad Naseri (Saarland University), Nataniel P. Borges Jr. (CISPA Helmholtz Center i.G.), Andreas Zeller (CISPA Helmholtz Center i.G.), and Romain Rouvoy (University of Lille / Inria / IUF)
- MAPS: Scaling Privacy Compliance Analysis to a Million Apps
Sebastian Zimmeck (Wesleyan University), Peter Story (Carnegie Mellon University), Daniel Smullen (Carnegie Mellon University), Abhilasha Ravichander (Carnegie Mellon University), Ziqi Wang (Carnegie Mellon University), Joel Reidenberg (Fordham University), N. Cameron Russell (Fordham University), and Norman Sadeh (Carnegie Mellon University)
- New Privacy Threat on 3G, 4G, and Upcoming 5G AKA Protocols
Ravi Borgaonkar (SINTEF Digital, Norway), Lucca Hirschi (Inria & LORIA, France), Shinjo Park (Technische Universität Berlin, Germany), and Altaf Shaik (Technische Universität Berlin, Germany)
- Handoff All Your Privacy - A Review of Apple's Bluetooth Low Energy Implementation
Jeremy Martin (MITRE), Douglas Alpuche (USNA), Kristina Bodeman (USNA), Lamont Brown (USNA), Ellis Fenske (USNA), Lucas Foppe (USNA), Travis Mayberry (USNA), Erik C. Rye (CMAND), Brandon Sipes (USNA), and Sam Teplov (USNA)
15:40 Rump Session (Chair: Roger Dingledine)
17:15 Closing and Awards
19:00 Caspar Bowden PET Award Reception
Friday, July 19 — HotPETs
Program coming soon!
Saturday, July 20
This year, the PETS hike will be a tour to Stockholm's archipelago (https://www.stockholmarchipelago.se/en/). We are still planning this, but we expect the tour to include a bus transfer, a hike, and a visit at the beach. There will be the option to swim if the weather is good. Food and refreshments will be provided.
Note that you must register for the hike separately!