COMPM067 - Privacy Enhancing Technologies
This database contains 2016-17 versions of the syllabuses. For current versions please see here.
|Code||COMPM067 (Also taught as: COMPGA17)|
|Prerequisites||No (COMPM062 -- Computer Security 1 recommended)|
|Taught By||George Danezis (100%)|
Upon completion of the course the students are expected:
The course covers in depth major issues in computer security related to protecting privacy as well as threats to the privacy of computer users. In particular is covers the theory and practice of:
(1) Private communications, anonymous communications, censorship circumvention and traffic analysis.
(2) Private authentication, selective disclosure credentials for identify management, and zero-knowledge proof techniques.
(3) Private statistics and computations through homomorphic encryption and secure multi-party computation and differential privacy.
Students are introduced to both privacy threats such as pervasive surveillance, profiling, location analysis, and traffic analysis, as well as the technical mitigation techniques relying on modern cryptography and differential privacy.
The course starts with an introduction to the social, economic and legal context of privacy protection, privacy policies and standard privacy practices. At the same time standard threats to on-line privacy such as profiling, and location analysis are discussed.
The course then covers in depth techniques to achieve strong private communications that hide both content and the meta-data associated with whom is talking to who (anonymous communications). These are studied in the context of private polling and elections.
The students are then introduced to techniques to mitigate abuses arising from anonymous communication, while preserving privacy, through the use of private authentication, and selective disclosure credentials that can be used to build digital cash systems. The engineering of zero-knowledge proofs and their use as building blocks of privacy enhancing technologies will be studied in detail.
Finally, students are introduced to the problem of computing on private data using simple homomorphic encryption schemes as well as modern secure multi-party computation techniques. Statistical disclosure control is discussed, ad-hoc techniques are analyzed and defeated, and techniques based on differential privacy discussed.
Method of Instruction
The course is delivered in 30 hours split between 20 hours of lectures and 10 hours of supervised labs to support programming exercises. For the labs and programming exercises students, will be expected to run a pre-configured virtual machine using “VirtualBox” and be familiar with basic programming in C or Python.
This course has the following assessment components:
- Written Exam (50%, 2.5 hours)
- Lab Work (30%) – programming exercises building privacy enhancing technologies.
- Course Work (20%) – report of programming exercises and short essay on privacy by design.
To pass this module, students must:
- Obtain an overall pass mark of 50% for all components combined;
- Obtain a minimum mark of 40% in each component worth ≥ 30% of the module as a whole.
See Moodle page