June 9, 2009
Cris Predegal
I will be talking about two main topics. First, on Privacy in Location-aware Services: supplying location-aware services does not necessarily require relinquishing personal (or portable-client) privacy. I will outline an architecture that shows how clients can make choices about how much privacy to give up, while retaining the ability to receive location-aware services. A second topic will be IT for human rights lawyers, or security on the cheap: An organization of human rights lawyers with activities spanning a continent has very demanding security requirements, which must be met with limited resources and facing a broad range of threats. The proposed solution is cheap, proportional to the threats, and incorporates an informal but careful analysis of risks beyond the IT realm. Some considerations include where data should reside, how one prepares to cross a border or leave a computer in a hostile country, how one provides means of secure communication to a party outside the organization.