Keynote at NordSec 2021

Presenter: David Arroyo, ITEFI-CSIC, Spain


Data production and exploitation are the very core of our economic and social reality. Our daily activity is more determined the day by the way we access cloud services through our smartphones and, the less the day, by means of our computer. The value chain associated to all these data interfaces and computation modalities is very dependent on the quality of information sources and the trustworthiness of the mechanisms for data coding, decision making and information security. As part of our research in information security and privacy enhancing technologies, we have addressed the main vulnerabilities in cryptographic systems and data protection policies and procedures. In this vein, we have proposed a comprehensive methodology for the design, implementation and validation of cryptographic protocols. Regarding the deployment of privacy by default solutions, we have leveraged this methodology in order to achieve privacy respectful solutions in Internet services without eroding neither functionality nor security. Considering specific applications as e-commerce and e-voting, we have shown that is possible to properly articulate business logic and privacy protection. Although privacy preserving is a must in the construction and protection of the realms of e-democracy, we have to take into account that it does not solve another of the most challenging matters in today’s data deluge: information quality. Mis and dis-information phenomena are, indeed, eroding the lifecycle of decision making. Technical solutions can be devised to contain and diminish the effects of fake news campaigns, but effectiveness calls for an integral methodology upon multidisciplinary approaches and interdisciplinary spirit. In this talk we will discuss the above concerns, in terms of our contributions and on-going works on technical and social aspects associated to the Data Lifecycle Management (DLM), ranging from the deployment of cryptographic protocols for trust anchoring and fair management of anonymity, to the design of attribution techniques for disinformation and fake news detection and countering. Short Bio: Dr. David Arroyo is Tenured Scientist in the Institute of Physical and Information Technologies (ITEFI) of the Spanish National Research Council (CSIC). He has a MSc in Telecommunication Engineering from the University of Seville (Spain) and a PhD in Physics of Complex Systems from the Polytechnic University of Madrid. Before joining CSIC, he has worked in the Computer Science and Engineering Department of the Autonomous University of Madrid for eight years. His research is mainly devoted to inter- and multidisciplinary applications in the areas of cryptography, information security and privacy, decentralized trust and blockchain, information theory and coding, signal processing, and nonlinear dynamics. As member of the CSIC, David Arroyo collaborates with the Spanish Association for Standardization (UNE) as expert in the CTN 320 “Cybersecurity and Protection of Personal Data”, CTN 71/SC 307 “Blockchain and distributed ledger technologies”, and CTN 71/SC 42 “Artificial Intelligence and Big Data”. From January 2020, Dr. Arroyo is involved in the deployment tools for fake news detection in the context of the H2020 project TRESCA (Trustworthy, Reliable and Engaging Scientific Communication Approaches), and from October 2021 he is in charge of the deployment of Privacy Enhancing Technologies in the H2020 project SPIRS (Secure Platform for ICT Systems Rooted at the Silicon manufacturing process).