skip to main content
US FlagAn official website of the United States government
dot gov icon
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
https lock icon
Secure .gov websites use HTTPS
A lock ( lock ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Explore Research Products in the PAR
It may take a few hours for recently added research products to appear in PAR search results.


Title: Edna: Disguising and Revealing User Data in Web Applications
Edna is a system that helps web applications allow users to remove their data without permanently losing their accounts, anonymize their old data, and selectively dissociate personal data from public profiles. Edna helps developers support these features while maintaining application functionality and referential integrity via disguising and revealing transformations. Disguising selectively renders user data inaccessible via encryption, and revealing enables the user to restore their data to the application. Edna's techniques allow transformations to compose in any order, e.g., deleting a previously anonymized user's account, or restoring an account back to an anonymized state. Experiments with Edna that add disguising and revealing transformations to three real-world applications show that Edna enables new privacy features in existing applications with low developer effort, is simpler than alternative approaches, and adds limited overhead to applications.  more » « less
Award ID(s):
2045170
PAR ID:
10491353
Author(s) / Creator(s):
; ; ; ;
Publisher / Repository:
ACM
Date Published:
ISBN:
9798400702297
Page Range / eLocation ID:
434 to 450
Format(s):
Medium: X
Location:
Koblenz, Germany
Sponsoring Org:
National Science Foundation
More Like this
  1. ; ; ; ; ; ; ; ; (, Zenodo)
    Environmental DNA (eDNA) is an ideal way of researching aquatic environments and determining whatspecies are present in an area the biodiversity of an area, and if any invasive or endangered species arepresent. Traditional sampling of eDNA consists of manually filtering water, which is labor and cost-intensive for remote locations. Furthermore, commercialized solutions are either expensive or require a field operator to function. We have built a battery-powered eDNA sampler capable of autonomous multi-sampling for a greatly reduced price compared to existing technologies. Environmental DNA collection contains 3 main components: environmental DNA must be preserved, the filtered volume must be accurate, and there must be no cross-contamination between samples. The sampler operates in this way separating eDNA via filters, preserving DNA, and recording the filtered volume per sample. Our PolyWAG eDNA sampler system is a water sampling device that collects DNA samples via 47mm filter and provides a non-invasive, safe and autonomous means of eDNA collection. The sampler can hold 24 filters and is designed to be easily replaced and reusable. A browser application is used for real-time monitoring, scheduling tasks, and data logging for time, pressure, flow, and filtered volume. Additionally, the sampler design is openly published, modular and is constantly being tested to help us optimize our software and hardware to give us the best results. The 13-step sampling sequence helps reduce cross contamination significantly. Our machine can be deployed for an extended period. It is completely autonomous and costs around $3800 for components or $6000 including labor. 
    more » « less
  2. ; ; ; ; (, Network and Distributed Systems Security (NDSS) Symposium)
    Permission-based access control enables users to manage and control their sensitive data for third-party applications. In an ideal scenario, third-party application includes enough details to illustrate the usage of such data, while the reality is that many descriptions of third-party applications are vague about their security or privacy activities. As a result, users are left with insufficient details when granting sensitive data to these applications. Prior works, such as WHYPER and AutoCog, have addressed the aforementioned problem via a so-called permission correlation system. Such a system correlates third-party applications' description with their requested permissions and determines an application as overprivileged if a mismatch is found. However, although prior works are successful on their own platforms, such as Android eco-system, they are not directly applicable to new platforms, such as Chrome extensions and IFTTT, without extensive data labeling and parameter tuning. In this paper, we design, implement, and evaluate a novel system, called TKPERM, which transfers knowledges of permission correlation systems across platforms. Our key idea is that these varied platforms with different use cases---like smartphones, IoTs, and desktop browsers---are all user-facing and thus allow the knowledges to be transferrable across platforms. Particularly, we adopt a greedy selection algorithm that picks the best source domains to transfer to the target permission on a new platform. TKPERM achieves 90.02% overall F1 score after transfer, which is 12.62% higher than the one of a model trained directly on the target domain without transfer. Particularly, TKPERM has 91.83% F1 score on IFTTT, 89.13% F1 score on Chrome-Extension, and 89.1% F1 score on SmartThings. TKPERM also successfully identified many real-world overprivileged applications, such as a gaming hub requesting location permissions without legitimate use. 
    more » « less
  3. ; ; ; ; ; (, PhytoFrontiers™)
    Cardwell, K.F.; Harmon, C.L; Stack, J.; Sharma, P. (Ed.)
    The cost for high-throughput sequencing (HTS) has decreased significantly and has made it possible for the application of this technology for routine plant diagnostics. There are constraints to the use of HTS as a diagnostic tool, including the need for dedicated personnel with a bioinformatic background for data analysis and the lack of a standardized analysis pipeline that makes evaluating and validating results generated at different HTS laboratories difficult. E-probe diagnostic nucleic acid analysis (EDNA) is an in-silico bioinformatic tool that utilizes short curated electronic probes (e-probes) designed from pathogen-specific sequences that allow users to detect and identify single or multiple pathogens of interest in raw HTS data sets. This platform streamlines the bioinformatic data analysis into a graphical user interface as a plant diagnostic tool used by diagnosticians. In this study, we describe the process for the development, validation, and use of e-probes for detection and identification of a wide range of taxonomically unique citrus pathogens that include citrus exocortis viroid, citrus tristeza virus, ‘ Candidatus Liberibacter asiaticus’, and Spiroplasma citri. We demonstrate the process for evaluating the analytical and diagnostic sensitivity and specificity metrics of the in-silico EDNA assays. In addition, we show the importance of including background noise (internal controls) to generate variance in noninfected samples for a valid statistical test using the quadratic discriminant analysis. The fully validated EDNA assays from this study can be readily integrated into existing citrus testing programs that utilize HTS. [Formula: see text] Copyright © 2023 The Author(s). This is an open access article distributed under the CC BY-NC-ND 4.0 International license . 
    more » « less
  4. ; (, 17th International Conference on Scientific Computing)
    Augmented Reality (AR) enables elements of a computer-generated digital world to be integrated with a user’s perception of the physical world. Smart glasses, like smart phones, have independent operating systems and they can support a variety of different applications and modes of communication to support augmented reality. This paper details the development of a novel new application that extends a widely-used mobile app for phenotyping and allows agronomists to interact with the app while keeping their hands free to perform field work. The smart glasses accept voice commands from the user and communicate with the mobile phone app via Bluetooth. In addition, changes detected by the mobile phone are displayed to the user on the smart glasses. This enables agronomists to efficiently collect phenotypic data. 
    more » « less
  5. ; ; ; (, Proceedings of the ACM on Programming Languages)
    While input-output examples are a natural form of specification for program synthesis engines, they can be imprecise for domains such as table transformations. In this paper, we investigate how extracting readily-available information about the user intent behind these input-output examples helps speed up synthesis and reduce overfitting. We present Gauss, a synthesis algorithm for table transformations that accepts partial input-output examples, along with user intent graphs. Gauss includes a novel conflict-resolution reasoning algorithm over graphs that enables it to learn from mistakes made during the search and use that knowledge to explore the space of programs even faster. It also ensures the final program is consistent with the user intent specification, reducing overfitting. We implement Gauss for the domain of table transformations (supporting Pandas and R), and compare it to three state-of-the-art synthesizers accepting only input-output examples. We find that it is able to reduce the search space by 56×, 73× and 664× on average, resulting in 7×, 26× and 7× speedups in synthesis times on average, respectively. 
    more » « less
  • Citation Formats
  • MLA
  • APA
  • Chicago
  • BibTeX
  • Save / Share this Record
  • Send to Email