This event has passed.

Confirmation Bias in the Privacy Profession: Common Misreading of the NIST Privacy Framework – PEPR’23

Name: Confirmation Bias in the Privacy Profession: Common Misreading of the NIST Privacy Framework – PEPR’23
Start: 2023-09-12T16:30:00-07:00
End: 2023-09-12T16:45:00-07:00

September 12, 2023 @ 4:30 pm - 4:45 pm

Join R Jason Cronk and Nandita Narla from the Institute of Operational Privacy Design (IOPD) Standards Committee for Confirmation Bias in the Privacy Profession: Common Misreading of the NIST Privacy Framework from 4:30 – 4:45 pm Tuesday, September 12th at the 2023 USENIX Conference on Privacy Engineering Practice and Respect (PEPR’23)!

Confirmation bias is a cognitive bias whereby people consume information in a way that reinforces their previously held beliefs. Many users and implementers of the NIST Privacy Framework do just that, diverting their attention away from many of the important and central concepts in the framework. Similar to the Cybersecurity Framework, the Privacy Framework embodies a risk based approach, but many privacy professionals are more familiar with principle based privacy with a primary goal of legal and regulatory compliance. Focusing on these mental models can lead to challenges and conflicting interpretations of NIST Privacy Framework concepts and terminology, much of which is unique to the framework and not found elsewhere in the professional literature. This presentation will highlight some of the common misconceptions and antipatterns related to the usage of NIST privacy framework drawn from real life case studies and implementation experience across industries.

Details

Date:: September 12, 2023
Time:: 4:30 pm - 4:45 pm
Event Categories:: Event, Speaking Engagement
Event Tags:: #nist
Website:: https://www.usenix.org/conference/pepr23