{"id":22284,"date":"2018-04-12T15:48:31","date_gmt":"2018-04-12T15:48:31","guid":{"rendered":"http:\/\/ci027cfe76d00726c3"},"modified":"2018-04-12T15:48:31","modified_gmt":"2018-04-12T15:48:31","slug":"op-ed-we-can-combat-poor-data-privacy-blockchain-applications","status":"publish","type":"post","link":"https:\/\/bitcoinmagazine.com\/culture\/op-ed-we-can-combat-poor-data-privacy-blockchain-applications","title":{"rendered":"Op Ed: We Can Combat Poor Data Privacy with Blockchain Applications"},"content":{"rendered":"
<\/div>
<\/figure>\n

By now we\u2019ve all seen the headlines about Facebook\u2019s poor data practices: as many as 87 million users\u2019 personal records affected by Cambridge Analytica, 2.2 billion users\u2019 profiles scraped by third parties, and so on.<\/p>\n

But what went wrong isn\u2019t limited to Facebook. The problem is that an internet run by centralized digital superpowers leaves users with little control over their data. <\/p>\n

Centralization\u2019s Weaknesses<\/h3>\n

Think of the internet as an extremely efficient copy machine that anyone can use. This makes it very easy to share information \u2014 including information you want to keep private.<\/p>\n

That\u2019s why we need rules. When we say \u201cdata privacy,\u201d we are referring to the rules set by platforms \u2014 determining who has permission to handle data and who gets informed when it happens.<\/p>\n

To use a platform, users have to check a box saying they agree to the rules. The problem is tech giants don\u2019t give users real insight into the rules beyond saying, \u201cTrust us!\u201d<\/p>\n

As we now know, Facebook gave wildly disproportionate permission to third-party app developers to copy their users\u2019 personal information. By exploiting this permission, Cambridge Analytica was able to use a single app to collect millions of personal records at almost no cost, and nobody was informed until it was too late.<\/p>\n

Unfortunately, these types of situations will continue to happen. Centralized platforms lack incentives to properly disclose their data practices, so users will be left in the dark when the \u201ccopy machine\u201d falls into the wrong hands again.<\/p>\n

The Role of Decentralization <\/h3>\n

For data that is clearly valuable, users should be able to explicitly set permissions around who can access it, and those permissions should be easy to verify. <\/p>\n

We can use blockchain technology for this. The idea is not to store everyone\u2019s private data on-chain; it\u2019s very expensive to add records to a blockchain, and public blockchains can be read by anyone. <\/p>\n

What makes a blockchain special is that it\u2019s write-only; it\u2019s practically impossible to change a record on the blockchain once it\u2019s there. Here\u2019s the insight: we can use a blockchain to store not the data but the permissions. If private data is secured in an encrypted database, a blockchain can act as a ticketing system, keeping track of who can get in, without exposing the data underneath.<\/p>\n

Suppose you had your health data stored off-chain, requiring a cryptographic key to unlock it. You want three parties to have access: your doctor, your health insurance provider and your partner. These parties could be represented by white-listed addresses that are recorded on the blockchain, representing their right to use the key.<\/p>\n

A blockchain is an immutable sequence of events. If, say, the white list suddenly included four or five parties, you would know something else was going on. Just as you can see where your bitcoin or ether came from, there should be a clear record of who is accessing your data.<\/p>\n

Scarcity as Protection<\/h3>\n

To return to the idea of the internet as a giant copy machine: the same principle that makes bitcoin possible \u2014 \u201cdigital scarcity,\u201d meaning the coin can\u2019t simply be duplicated or created by anyone \u2014 can also help make data harder to replicate.<\/p>\n

The idea is that we can tokenize the data in order to create laws of physics around it. In order to prevent future Cambridge Analyticas from exploiting loopholes, we could create an ecosystem in which user data is represented by tokens. This creates an extra layer of protection between outside parties and valuable data, and assigns the data some value. <\/p>\n

From a developer\u2019s perspective, calling an API would be represented by a transaction on the blockchain, with a cost proportional to the amount of data requested. The cost would be negligible for normal, day-to-day use \u2014 but it would prohibit a single app from making off with tens of millions of records. Scarcity and value provide friction, which exposes unusual activity. <\/p>\n

These transactions would receive oversight from miners or validators who collect fees for enforcing the network\u2019s agreed-upon rules. Depending on the kind of blockchain, these validators could be individuals spread out across the world or they could be something more like private arbitrators or internal auditors. The point is, there would be third parties keeping the system accountable.<\/p>\n

Final Thoughts<\/h3>\n

As a centralized entity, Facebook has no incentive to be a fair referee, and it\u2019s clear they\u2019re not up to the task of keeping our data safe. We need an approach to data privacy that doesn\u2019t count on the word of a single party. Blockchains allow us to create systems with multiple points of accountability and transparency that can give users real control over their digital lives.<\/p>\n

This is a guest post by Chris Tse. Opinions expressed are his own and do not necessarily reflect those of Bitcoin Magazine or BTC Media Inc.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

But what went wrong isn\u2019t limited to Facebook. The problem is that an internet run by centralized digital superpowers leaves users with little control over their data.<\/p>\n","protected":false},"author":3517,"featured_media":22285,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33],"tags":[402,143,1479,3224,73],"class_list":{"0":"post-22284","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-culture","8":"tag-data","9":"tag-decentralization","10":"tag-facebook","11":"tag-op-ed","12":"tag-privacy"},"author_data":{"id":3517,"name":"Chris Tse","nicename":"chris-tse","avatar_url":"https:\/\/bitcoinmagazine.com\/wp-content\/uploads\/2024\/12\/system-diy-promo-image-96x96.png"},"featured_image_url":"https:\/\/bitcoinmagazine.com\/wp-content\/uploads\/2024\/11\/op-ed-we-can-combat-poor-data-privacy-with-blockchain-applications.jpg","_links":{"self":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/posts\/22284","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/users\/3517"}],"replies":[{"embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/comments?post=22284"}],"version-history":[{"count":0,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/posts\/22284\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/media\/22285"}],"wp:attachment":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/media?parent=22284"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/categories?post=22284"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/tags?post=22284"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}