Lecture Notes in Computer Science 5661 CommencedPublicationin1973 FoundingandFormerSeriesEditors: GerhardGoos,JurisHartmanis,andJanvanLeeuwen EditorialBoard DavidHutchison LancasterUniversity,UK TakeoKanade CarnegieMellonUniversity,Pittsburgh,PA,USA JosefKittler UniversityofSurrey,Guildford,UK JonM.Kleinberg CornellUniversity,Ithaca,NY,USA AlfredKobsa UniversityofCalifornia,Irvine,CA,USA FriedemannMattern ETHZurich,Switzerland JohnC.Mitchell StanfordUniversity,CA,USA MoniNaor WeizmannInstituteofScience,Rehovot,Israel OscarNierstrasz UniversityofBern,Switzerland C.PanduRangan IndianInstituteofTechnology,Madras,India BernhardSteffen UniversityofDortmund,Germany MadhuSudan MicrosoftResearch,Cambridge,MA,USA DemetriTerzopoulos UniversityofCalifornia,LosAngeles,CA,USA DougTygar UniversityofCalifornia,Berkeley,CA,USA GerhardWeikum Max-PlanckInstituteofComputerScience,Saarbruecken,Germany Cecilia S. Gal Paul B. Kantor Michael E. Lesk (Eds.) Protecting Persons While Protecting the People SecondAnnualWorkshop on Information Privacy and National Security, ISIPS 2008 New Brunswick, NJ, USA, May 12, 2008 Revised Selected Papers 1 3 VolumeEditors CeciliaS.Gal PaulB.Kantor MichaelE.Lesk RutgersUniversity SchoolofCommunicationandInformation NewBrunswick,NJ,USA [email protected] [email protected] [email protected] LibraryofCongressControlNumber:2009938117 CRSubjectClassification(1998):E.3,K.6.5,D.4.6,K.4,K.4.1,C.2.6,H.2.8 LNCSSublibrary:SL4–SecurityandCryptology ISSN 0302-9743 ISBN-10 3-642-10232-8SpringerBerlinHeidelbergNewYork ISBN-13 978-3-642-10232-5SpringerBerlinHeidelbergNewYork Thisworkissubjecttocopyright.Allrightsarereserved,whetherthewholeorpartofthematerialis concerned,specificallytherightsoftranslation,reprinting,re-useofillustrations,recitation,broadcasting, reproductiononmicrofilmsorinanyotherway,andstorageindatabanks.Duplicationofthispublication orpartsthereofispermittedonlyundertheprovisionsoftheGermanCopyrightLawofSeptember9,1965, initscurrentversion,andpermissionforusemustalwaysbeobtainedfromSpringer.Violationsareliable toprosecutionundertheGermanCopyrightLaw. springer.com ©Springer-VerlagBerlinHeidelberg2009 PrintedinGermany Typesetting:Camera-readybyauthor,dataconversionbyScientificPublishingServices,Chennai,India Printedonacid-freepaper SPIN:12776047 06/3180 543210 Preface The Second Annual Workshop on Privacy and Security, organized by the Center for Interdisciplinary Studies in Information Privacy and Security of the School of Com- munication and Information at Rutgers University, was held on May 12, 2008 at the Hyatt Regency, New Brunswick, New Jersey, USA. A few of the papers in this volume were produced through a multi-step process. First, we recorded the talk given by each author at the workshop in May 2008. Next, we transcribed the recording. The authors then produced a draft of their paper from these transcriptions, refining each draft until the final version. Although the papers are not verbatim transcriptions of the talks given, some do retain the informal and conver- sational quality of the presentations. In one instance we have included some material from the question-and-answer period after the talk, since the material covered proved to be relevant and interesting. The majority of authors, however, preferred to include a more formal paper based on the material presented at the workshop. A few notes about language and conventions used in the book. Since some of the authors in this volume come from different parts of the globe we have tried to preserve their native cadences in the English versions of their papers. And finally, a few papers have pictures from screen captures of illustrations or graphics created for computer displays. Although every effort was made to include the highest quality pictures so they would reproduce well in print, in some instances these pictures may not repro- duce as well as might be desired, and we beg the reader’s indulgence. We wanted to thank Rutgers University for their support for the ISIPS Program, DyDAn for sponsoring the workshop and SPARTA, Inc. for their generous contribu- tion for the workshop bags and nametags. We also wanted to thank our many review- ers for help in the paper selection process and the Program Committee for help with the initial direction and planning of the workshop. May 2009 Cecilia S. Gal Organization Conference Co-chairs Paul B. Kantor Rutgers University, USA Michael E. Lesk Rutgers University, USA Naftaly Minsky Rutgers University, USA Reviewers Yigal Arens University of Southern California, USA Antonio Badia University of Louisville, USA Hsinchun Chen The University of Arizona, USA Gordon Cormack University of Waterloo, Canada Dennis Egan Telcordia Technologies, USA Stephen Fienberg Carnegie Mellon University, USA Mark Goldberg Rensselaer Polytechnic Institute, USA Jim Horning SPARTA, Inc., USA Leslie Kennedy Rutgers University, USA Moshe Koppel Bar-Ilan University, Israel Ivan Koychev Bulgarian Academy of Science, Bulgaria Don Kraft Louisiana State University, USA Carl Landwehr IARPA, USA Janusz Luks GROM Group, Poland Antonio Sanfilippo Pacific Northwest National Laboratory, USA Joshua Sinai The Analysis Corporation, USA David Skillicorn Queen's University, Canada Rebecca Wright Rutgers University, USA Program Committee Yaakov Amidror Lander Institute, Israel Yigal Arens University of Southern California, USA Antonio Badia University of Louisville, USA Maureen Baginski SPARTA, Inc., USA Arthur Becker IARPA, USA Michael Blair SAIC, USA Endre Boros Rutgers University, USA Yigal Carmon MEMRI, USA Hsinchun Chen University of Arizona, USA Gordon Cormack University of Waterloo, Canada George Cybenko Dartmouth College, USA VIII Organization Timothy Edgar ODNI, USA Dennis Egan Telcordia Technologies, USA Yuval Elovici Deutsche Telekom Research Laboratories at Ben-Gurion University, Israel Stephen Fienberg Carnegie Mellon University, USA Uwe Glaesser Simon Fraser University, Canada Mark Goldberg Rensselaer Polytechnic Institute, USA Vladimir Golubev Computer Crime Research Center, Ukraine David Grossman Illinois Institute of Technology, USA Jim Horning SPARTA, Inc., USA Leslie Kennedy Rutgers University, USA Joseph Kielman U.S. Department of Homeland Security, USA Moshe Koppel Bar-Ilan University, Israel Ivan Koychev Bulgarian Academy of Science, Bulgaria Don Kraft Louisiana State University, USA Carl Landwehr IARPA, USA Mark Levene Birkbeck University of London, UK Janusz Luks GROM Group, Poland Richard Mammone Rutgers University, USA Joan McNamara Los Angeles Police Department, USA Rafail Ostrovsky University of California, Los Angeles, USA Gerhard Paass Fraunhofer Institute for Intelligent Analysis and Information Systems, Germany Warren Powell Princeton University, USA Fred Roberts Rutgers University, USA Antonio Sanfilippo Pacific Northwest National Laboratory, USA Bracha Shapira Ben-Gurion University, Israel Andrew Silke University of East London, UK Joshua Sinai The Analysis Corporation, USA David Skillicorn Queen's University, Canada Eugene Spafford Purdue University, USA Gary Strong Johns Hopkins University, USA Rebecca Wright Rutgers University, USA Stefan Wrobel Fraunhofer Institute for Intelligent Analysis and Information Systems, Germany Daniel Zeng University of Arizona, USA Conference Coordinator Cecilia S. Gal Conference Sponsors Rutgers University, ISIPS, DyDAn, SPARTA Inc. Table of Contents The Challenges of Seeking Security While Respecting Privacy ......... 1 Paul B. Kantor and Michael E. Lesk Section One: Statement of the Problem Intelligence Policy and the Science of Intelligence .................... 11 Maureen Baginski Cyber Security: Assessing Our Vulnerabilities and Developing an Effective Defense................................................. 20 Eugene H. Spafford Intelligence, Dataveillance, and Information Privacy .................. 34 Robyn R. Mace Results of Workshops on Privacy Protection Technologies ............. 45 Carl Landwehr Words Matter: Privacy, Security, and Related Terms.................. 57 James J. Horning Section Two: Theoretical Approaches to the Problem kACTUS 2: Privacy Preserving in Classification Tasks Using k-Anonymity .................................................... 63 Slava Kisilevich, Yuval Elovici, Bracha Shapira, and Lior Rokach Valid Statistical Analysis for Logistic Regression with Multiple Sources ......................................................... 82 Stephen E. Fienberg, Yuval Nardi, and Aleksandra B. Slavkovi´c Section Three: Practical Approaches to the Problem Suspicious Activity Reporting (SAR) ............................... 95 Joan T. McNamara Stable Statistics of the Blogograph ................................. 104 Mark Goldberg, Malik Magdon-Ismail, Stephen Kelley, and Konstantin Mertsalov X Table of Contents Privacy-Preserving Accountable Accuracy Management Systems (PAAMS)....................................................... 115 Roshan K. Thomas, Ravi Sandhu, Elisa Bertino, Budak Arpinar, and Shouhuai Xu On the Statistical Dependency of Identity Theft on Demographics...... 122 Giovanni Di Crescenzo Author Index.................................................. 139 The Challenges of Seeking Security While Respecting Privacy Paul B. Kantor and Michael E. Lesk Rutgers University 4 Huntington Street New Brunswick, NJ [email protected] Abstract. Security is a concern for persons, organizations, and nations. For the individual members of organizations and nations, personal privacy is also a concern. The technologies for monitoring electronic communication are at the same time tools to protect security and threats to personal privacy. Participants in this workshop address the interrelation of personal privacy and national or societal security, from social, technical and legal perspectives. The participants represented industry, the academy and the United States Government. The is- sues addressed have become, if anything, even more pressing today than they were when the conference was held. Keywords: personal privacy, national security, computer security, intelligence agencies. “Three can keep a secret if two of them are dead”-- Poor Richard’s Almanack [1]. 1 Introduction Cooperative behavior is not unique to humans. Ants, bees, even bacteria seem to en- gage in cooperative behavior for survival and for defense against their enemies. But as far as anyone can tell they accomplish this with absolutely no expectation of pri- vacy. And there may have been a point in the development of human intelligence when that was also true. But for all of recorded history and probably well before it, keeping secrets was part and parcel of human communication. In the earliest days, when communication was only by speech, two could keep a secret if each trusted the other and they were sure that no one was within earshot when they discussed the mat- ter. Even that, of course, was subject to some limitations. The mere fact of being seen to go together to some place where you cannot be overheard does alert others to the possibility that there may be a secret there to be discovered. But it was with the introduction of writing, as a method for transferring informa- tion among people who could not speak with each other directly, that security really came into its own. The history of ciphers [2] has been with us for a long time, one of the early recorded ciphers was used by Julius Caesar. As long as written messages had to be carried from one place to another it was necessary that they be protected from C.S. Gal, P.B. Kantor, and M.E. Lesk (Eds.): ISIPS 2008, LNCS 5661, pp. 1–10, 2009. © Springer-Verlag Berlin Heidelberg 2009