Changes between Version 4 and Version 5 of doc/PETS2011EthicsPanel


Ignore:
Timestamp:
Aug 15, 2011, 3:07:51 PM (8 years ago)
Author:
AdamShostack
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • doc/PETS2011EthicsPanel

    v4 v5  
    1 Chris Soghoian summarized McCoy et al and Castelluccia et al papers, and described some of the issues there. (Both involved collecting data from exit servers.) Relevant questions: Is it relevant whether research is specifically about Tor, or whether it's just a convenient point to eavesdrop on people? Is it relevant whether data is aggregated?
    2 
    3 Chris proposed: only eavesdrop a network in order to do research on that network. (IOW, no using anonymity nets as a source of eavesdroppable users who can't easily complain or TOS you..) Minimize collection or retention. Stuff should be legal in the country where it's performed. Vet your stuff with an IRB if you have one.
    4 
    5 He suggested that papers ought to need to include a standard section about what ethical issues there were and what the authors did about it.
     1Chris Soghoian summarized McCoy et al and Castelluccia et al papers, and described some of the issues there. (Both involved collecting data from exit servers.) Relevant questions: Is it relevant whether research is specifically about Tor, or whether it's just a convenient point to eavesdrop on people? Is it relevant whether data is aggregated?  Chris proposed: only eavesdrop a network in order to do research on that network. (IOW, no using anonymity nets as a source of eavesdroppable users who can't easily complain or TOS you..) Minimize collection or retention. Stuff should be legal in the country where it's performed. Vet your stuff with an IRB if you have one.  He suggested that papers ought to need to include a standard section about what ethical issues there were and what the authors did about it.  Chris's slides are below.
    62
    73Next Roger Dingledine talked. He said he'd raise lots of point and not answer them. He discussed whether legal standards were particularly relevant, claiming that legal protections fall short of security properties, but claiming that researchers need to hold to a higher standard than actual adversaries. He then talked about research groups who asked Roger about how to do such research, get referred to a lawyer, then give up, So conservative careful groups give up, and brash/reckless groups (nor roger's words) become the only ones to do collection.