Aaron Massey -- Assistant Professor of Software Engineering 2016-03-09T19:41:12Z Aaron Massey,2016-03-09:/~akmassey/posts/2016-03-09-apply-for-a-google-policy-fellowship.html Apply for a Google Policy Fellowship 2016-03-09T19:41:12Z 2016-03-09T19:41:12Z <p>Many years ago, <a href="2008-03-31-google-policy-fellowship.html">I was a Google Policy Fellow</a>. It’s an incredible experience, and I highly recommend it. Here’s an overview of the program from <a href="">Google’s Policy Fellowship Website</a>:</p> <blockquote> <p>The Google Policy Fellowship program offers undergraduate, graduate, and law students interested in Internet and technology policy the opportunity to spend the summer contributing to the public dialogue on these issues, and exploring future academic and professional interests.</p> <p>Fellows will have the opportunity to work at public interest organizations at the forefront of debates on broadband and access policy, content regulation, copyright and creativity, consumer privacy, open government, government surveillance, data security, data innovation, free expression and more. More information about the host organizations and the areas of focus for the fellows is outlined here.</p> <p>Fellows will be assigned a lead mentor at their host organizations and will have the opportunity to work with several senior staff members over the course of the summer. Fellows will be expected to make substantive contributions to the work of their organization, including conducting policy research and analysis, drafting reports and white papers, attending government and industry meetings and conferences, and participating in other advocacy activities.</p> </blockquote> <p>The deadline is March 25th, so if you’re eligible and interested in technology policy issues, be sure to apply before then!</p>,2016-02-11:/~akmassey/posts/2016-02-11-umbc-50th-anniversary-keynote-template.html UMBC 50th Anniversary Keynote Template 2016-02-11T15:41:12Z 2016-02-11T15:41:12Z <p><a href="">UMBC turns 50</a> in September, and the media and branding folks at the university created <a href="">50th Anniversary Branding Toolkit</a>. Unfortunately, it doesn’t include a Keynote template. So I made one:</p> <p><script async="" class="speakerdeck-embed" data-id="1008458ed59d4526870e8b0f02098ef9" data-ratio="1.33333333333333" src="//"></script></p> <p><a href="../documents/UMBC-50.kth">Get it here.</a> Please let me know what you think of it.</p>,2016-02-02:/~akmassey/posts/2016-02-02-telerise-2016-call-for-papers.html TELERISE 2016 Call for Papers 2016-02-02T14:41:12Z 2016-02-02T14:41:12Z <p>I’m pleased to be a member of the program committee for <a href="">TELERISE 2016</a>, a workshop on technical and legal aspects of data privacy and security. Here’s an overview of the workshop:</p> <blockquote> <p>Information sharing on the Web is essential for today’s business and societal transactions. Nevertheless, such a sharing should not violate the security and privacy requirements either dictated by Law to protect data subjects or by internal regulations provided both at organisation and individual level. An effectual, rapid, and unfailing electronic data sharing among different parties, while protecting legitimate rights on these data, is a key issue with several shades. Among them, how to translate the high-level law obligations, business constraints, and users’ requirements into system-level privacy policies, as well as engineering efficient and practical Web applications-based solutions for policy definition and enforcement. TELERISE aims at providing a forum for researchers and engineers, in academia as well as in industry, to foster an exchange of research results, experiences, and products in the area of privacy preserving, secure data management, and engineering on the Web, from a technical and legal perspective. The ultimate goal is to conceive new trends and ideas on designing, implementing, and evaluating solutions for privacy-preserving information sharing, with an eye to the cross-relations between ICT and regulatory aspects of data management and engineering.</p> <p>The list of topics includes (but it is not limited to):</p> <ul> <li>Model-based and experimental assessment of data protection</li> <li>Privacy in identity management and authentication</li> <li>Modeling and analysis languages for representation, visualization, specification of legal regulations</li> <li>Technical, legal, and user requirements for data protection</li> <li>User-friendly authoring tools to edit privacy preferences</li> <li>IT infrastructures for privacy and security policies management</li> <li>IT infrastructure for supporting privacy and security policies evolution</li> <li>Privacy and security policies conflict analysis and resolution strategies</li> <li>Electronic Data Sharing Agreements representation: languages and management infrastructure</li> <li>Cross-relations between privacy-preserving technical solutions and legal regulations</li> <li>Privacy aware access and usage control</li> <li>Privacy and security policies enforcement mechanisms</li> <li>Privacy preserving data allocation and storage</li> <li>Software systems compliance with applicable laws and regulations</li> <li>Heuristic for pattern identification in law text</li> <li>Empirical analysis of consumer’s awareness of privacy and security policies</li> </ul> </blockquote> <p>Papers are due March 23rd. Accepted submissions will be published as a post-proceeding event in Springer’s Lecture Notes in Computer Science (LNCS) series.</p>,2015-11-05:/~akmassey/posts/2015-11-05-introduction-to-it-privacy-available-on-kindle.html Introduction to IT Privacy Available on Kindle 2015-11-05T18:41:12Z 2015-11-05T18:41:12Z <p>The IAPP published a book titled “Introduction to IT Privacy: A Handbook for Technologists,” and I was one of the contributing authors. I wrote about this <a href="">when it first came out</a>, but I thought I would mention that it was made <a href="">available on Kinde</a> earlier this semester.</p>,2015-11-04:/~akmassey/posts/2015-11-04-privacy-security-forum.html Privacy + Security Forum 2015-11-04T13:44:29Z 2015-11-04T13:44:29Z <p>I recently gave a presentation at the <a href="">2015 Privacy + Security Forum</a> about the “lost in translation problem” that often results in miscommunication or misunderstanding between legal teams and engineering teams. I’ve posted my slides below.</p> <p> <script async="" class="speakerdeck-embed" data-id="c40e84bbc2a84e45aa5fe95ac2ae9f3c" data-ratio="1.33333333333333" src="//"></script> </p> <p>The remainder of the slides are <a href="">available online</a> for participants.</p>