Aller au contenu principal

Talk Kinan Dak Albab

Jeudi 30 mai 2024

K9db: Privacy-Compliant Storage For Web Applications By Construction (OSDI 2023)

Talk abstract:
Data privacy laws like the EU's GDPR grant users new rights, such as the right to request access to and deletion of their data. Manual compliance with these requests is error-prone and imposes costly burdens especially on smaller organizations, as non-compliance risks steep fines.
K9db is a new, MySQL-compatible database that complies with privacy laws by construction. The key idea is to make the data ownership and sharing semantics explicit in the storage system. This requires K9db to capture and enforce applications' complex data ownership and sharing semantics, but in exchange simplifies privacy compliance. Using a small set of schema annotations, K9db infers storage organization, generates procedures for data retrieval and deletion, and reports compliance errors if an application risks violating the GDPR.
Our K9db prototype successfully expresses the data sharing semantics of real web applications, and guides developers to getting privacy compliance right. K9db also matches or exceeds the performance of existing storage systems, at the cost of a modest increase in state size.


Short bio:
Kinan is a PhD candidate at Brown university advised by Malte Schwarzkopf. Kinan builds systems and tools to improve end user privacy using every tool possible from computer systems, cryptography, and programming languages. His work was cited in the United Nations Guide on Privacy-Enhancing Technologies, and the White House's National Strategy to Advance Privacy-Preserving Data Sharing and Analytics.  When He is not behind a computer coding, he is probably at a Heavy Metal show, grilling in the backyard, or mixing new cockt

Date et lieu

Jeudi 30 Mai 2024 à 15:00
Lien Zoom

Organisé par

Alain Tchana
Equipe ERODS

Publié le 13 mai 2024

Mis à jour le 30 mai 2024