Upgrade to Pro — share decks privately, control downloads, hide ads and more …

COVES Fellowship with JCOTS - Amit Seal Ami

Amit Seal Ami
October 21, 2022
Research
0
160

COVES Fellowship with JCOTS - Amit Seal Ami

Commonwealth of Virginia Engineering and Science Policy Fellow Amit Seal Ami was hosted by the Joint Commission on Technology and Science to work as a Policy Fellow in 2022 from May to August.

In October, he was invited to share the policy-related findings and suggestions at the JCOTS Meeting. After a brief introduction about the COVES Fellowship and himself, Amit discussed the issues JCOTS might need to focus on, specifically related to IoT and Next Gen Televisions. He concluded by stating that Policymakers and Researchers need to collaborate more to create better policies for the greater public interest. The chairman agreed and stressed that JCOTS needs to consider not only public policy creation but also enforcement as Amit mentioned. Finally, the JCOTS Chairman on behalf of the Commission thanked Amit for his contributions to William & Mary and JCOTS through this program.

This is the presentation Amit prepared for that speech.

Amit Seal Ami

October 21, 2022
Tweet

More Decks by Amit Seal Ami

See All by Amit Seal Ami
Webinar on Higher Studies: Getting Started from Undergrad; Organized by CSE, Stamford University
lordamit
0
370
Booklet of Earthquake Prepradeness and Safety - Bangladesh 2001 DDM
lordamit
0
190
Women in STEM - Glorious Past / Forgotten Present
lordamit
0
250
Security Primer
lordamit
0
120
Technical Session 1 at EATL Prothom Alo App Contest 2015
lordamit
0
300

Other Decks in Research

See All in Research
Active Retrieval Augmented Generation
kiyohiro8
3
440
SANER 2019 Most Influential Paper Talk
tsantalis
0
120
Evolutionary Optimization of Model Merging Recipes (2024/04/17, NLPコロキウム)
iwiwi
5
2k
Generative Spoken Dialogue Language Modeling [対話論文読み会@電通大]
yuta0306
1
130
論文紹介 DISN: Deep Implicit Surface Network for High quality Single-view 3D Reconstruction / DISN: Deep Implicit Surface Network for High quality Single-view 3D Reconstruction
nttcom
0
110
Embodied AIについて / About Embodied AI
nttcom
1
510
プロシェアリング白書2024_PROSHARING_REPORT_2024
circulation
0
600
How to Perform Manual Classification for Deep Learning Using CloudCompare
kentaitakura
0
610
Bridging Continuous and Discrete Spaces: Interpretable Sentence Representation Learning via Compositional Operations
rudorudo11
0
160
精神疾患患者のアクティビティデータを利用したリハビリテーションのためのシステムに関する研究
comfortdesignlab
0
140
Prompt Tuning から Fine Tuning への移行時期推定
icoxfog417
17
6.9k
20240209 データを肴に熊本の交通を考える会「車1割削減、渋滞半減、公共交通2倍」をめざし世界に学ぼう
trafficbrain
0
780

Featured

See All Featured
Writing Fast Ruby
sferik
620
60k
Git: the NoSQL Database
bkeepers
PRO
422
63k
What's in a price? How to price your products and services
michaelherold
237
11k
Unsuck your backbone
ammeep
662
57k
Testing 201, or: Great Expectations
jmmastey
27
6.3k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
119
39k
Building Effective Engineering Teams - LeadDev
addyosmani
27
1.8k
Java REST API Framework Comparison - PWX 2021
mraible
PRO
18
6.9k
From Idea to $5000 a Month in 5 Months
shpigford
377
45k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
1
3.4k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
29
6k
Build your cross-platform service in a week with App Engine
jlugia
225
17k

Transcript

  1. COMMONWEALTH OF VIRGINIA ENGINEERING & SCIENCE FELLOWS COVES Fellowship with

    JCOTS October 18, 2022

  2. AMIT SEAL AMI Ph.D. Candidate Cyber-Security and Software Engineering Researcher,

    Systematic Analysis of Security Focused Techniques using Novel Research 2

  3. COVES Fellowship with JCOTS • Analyzed Existing Policies, House Bills

    and Pertinent Issues ◦ VCDPA, HB-1246, CCPA, GDPR, and more! ◦ Ransomware; relevant Bills & Acts from Pennsylvania, NC, and the Federal Govt. ◦ Next Generation Televisions • Created Policy Briefs on IoT and Ransomware • Recommended Steps for VCDPA in the context of IoT 3

  4. Virginia Consumer Data Protection Act (VCDPA) and IoT/Smart Homes -

    1/2 VCDPA (§ 59.1-575 et seq.) • Protects consumers’ rights to data, • Outlines the responsibilities and privacy protection standards for data controllers and processors, and • Expected to be applied from 2023. 4

  5. Virginia Consumer Data Privacy Act (VCDPA) and IoT/Smart Homes -

    2/2 Smart Homes / IoT and Privacy Concerns • Even simplistic IoT devices can profile users and record private behaviors • Users expect to be informed of their rights related to data in a legally binding document • In the context of existing Privacy policies, such as GDPR, ◦ Significant gap between content and distribution of IoT device specific privacy policies, ◦ Opportunities in terms of enforcement of data protection acts and compliance 5

  6. Recommended Step 1: Introduce Explicit Privacy Notice Distribution Guideline Problem

    • 43.52% of vendors do not discuss smart home-related data or devices at all in their privacy notices • 14.38% IoT Vendors make IoT Device-specific privacy policies difficult to obtain Context VCDPA §59.1-578 C mentions that Controllers are expected to provide consumers with a reasonably accessible, clear, and meaningful privacy notice. Recommendation Introduce explicit privacy distribution guidelines that specifies how device, website and service specific privacy notices are to be distributed to the consumers. 6

  7. Recommended Step 2: Enable Standards of Privacy Notices to facilitate

    Automated Analysis and Enforcement of Compliance Problem • 69.01% privacy notices cannot be automatically analyzed due to unorthodox approach adoption • 65.49% privacy notices do not specify data collection categories Context Controllers shall include i) The categories of personal data processed by the controller, and ii) the purpose for processing personal data Recommendation Create/adopt a machine-readable standard for specifying and communicating privacy notices, that helps automate analysis and enforcement of privacy compliance. 7

  8. Next Generation Televisions Combines the best of both worlds: •

    Display broadcasted programs, with augmentations using the Internet • Higher resolution (up to 4K Ultra High Definition Broadcast) • Advanced Warning and Response Network System with remote triggers • Bi-directional Communication between televisions and broadcasters 8

  9. Next Generation Televisions - Privacy Concerns • Next-generation televisions establishes

    two-way connections between broadcasters and viewers, thus enables viewer profiling • Privacy violations are widespread for streaming service based channels, such as Roku TV and Amazon Fire in the USA • Broadcasters focus on personalized advertisements based on private data collected across social media accounts, location, and primary interests • Scope and type of data collection remains unclear in the Next Gen TV standards, as of July 2022 9

  10. Next Gen Televisions - Recommendations • CoV can introduce policies

    that can help protect public interest and privacy • Roku TV limits privacy violation practices by default for all devices in European Union to comply with the General Data Protection Regulation (GDPR) 10

  11. Path Forward We research on holistic cybersecurity • Privacy Policies

    and their impact • Evaluation of Security Compliance Enforcement Techniques • Effectiveness of Compliance Enforcement We also need to understand • Diverse perspectives of policymakers, • Trade-offs in policy making Let’s continue the collaboration to continue making policies for greater public interest! 11 Amit Seal Ami, aami at wm.edu, +1 757-839-4897 https://amitsealami.com/contact Research Labs: https://spl-wm.github.io/ https://www.cs.wm.edu/semeru/