[docs-and-reports] Privacy and Purpose Constraints (#15) from Erik Taubeneck via GitHub on 2022-10-19 (public-patcg@w3.org from October 2022)

From: Erik Taubeneck via GitHub <sysbot+gh@w3.org>
Date: Wed, 19 Oct 2022 20:19:56 +0000
To: public-patcg@w3.org
Message-ID: <issues.opened-1415536421-1666210794-sysbot+gh@w3.org>

eriktaubeneck has just created a new issue for https://github.com/patcg/docs-and-reports:

== Privacy and Purpose Constraints ==
        From the introduction:

> In the presence of this adversary, APIs should aim to achieve the following goals:
-Privacy: Clients (and, more specifically, the vendors who distribute the clients) trust that (within the threat models), the API is purpose constrained. That is, all parties learn nothing beyond the intended result (e.g., a differentially private aggregation function computed over the client inputs.)
-Correctness: Parties receiving the intended result trust that the protocol is executed correctly. Moreover, the amount that a result can be skewed by malicious input is bounded and known.

I suggest instead of Privacy, we make the first bullet:

Purpose Limitation: User-agents are reasonably assured that the API is purpose constrained such that no party can acquire data outputs other than what is intended and expected by the user-agent, given the inputs it provides.

Add bullets for verifiable input and auditability:

Verifiable Input: Parties using the API are reasonably assured that data provided by user-agents is accurate, reliable and honest.

Auditability: Parties providing data to, or receiving data from, the API can receive reports identifying: when, how, by whom and to whom data was communicated; when, how and by whom data and processed.

Correctness: Parties receiving the intended result can verify that the protocol is executed correctly and that the amount a result can be skewed, intentionally by adding noise, or by malicious input, is bounded, known and reported.

_Originally posted by @bmayd in https://github.com/patcg/docs-and-reports/issues/14#issuecomment-1284385587_. Moving to a new issue since it's a distinct issue from the PR opened in issue 14.
      

Please view or discuss this issue at https://github.com/patcg/docs-and-reports/issues/15 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Wednesday, 19 October 2022 20:19:58 UTC