Presentation is loading. Please wait.

Presentation is loading. Please wait.

Data Sharing Spoke Northeast Big Data Innovation Hub

Published byHector Barber Modified over 7 years ago

Similar presentations

Presentation on theme: "Data Sharing Spoke Northeast Big Data Innovation Hub"— Presentation transcript:

1 Data Sharing Spoke Northeast Big Data Innovation Hub
Carsten BinniG (Brown), Jane Greenberg (Drexel), Tim kraska (Brown), Sam Madden (Mit)

2 Why Is Data Sharing Important!
Different Reasons Combining Data Sharing with Experts Promise: Better Insights into “Big Data”

3 Combining Data: Collaborative Cancer Cloud
Indeed, Dana-Farber is one of three partners in the Intel CCC pilot; the other two are Oregon Health & Science University (OHSU) and the Ontario Institute for Cancer Research (OICR). All three of these partners are working together on a variety of projects (including, notably, research to identify previously unknown cancer-causing mutations) and coding new tools to aid their efforts, using the CCC. The partners seem well-matched for each other collaboratively. "We are working with Intel, OICR, and OHSU to develop a one-year pilot project to demonstrate secure genomic data sharing across our three institutions," explained Cerami. "Each of our institutions currently perform some type of genomic sequencing on patients, and the goal of the pilot project is to pool genomic data across all three centers and make it available for joint computation. Secure genomic data sharing across our three institutions

4 Sharing Data with Researchers: Financial Data
Challenge: Consumer credit risk analysis and forecasting Approach: Machine learning FICO Score Machine-Learning Score 1% sample,10Tb This graph:2008Q4 Current 30-days late 60-days late 90+ days late The best-known and most widely used credit score model in the United States, the FICO score is calculated statistically, with information from a consumer's credit files Risk Measure vs. CScore Andrew W. Lo et al. (MIT Sloan School) Machine-learning detects potential defaults more accurately than FICO scores!

5 BUT Data Sharing is HARD!

6 Why Not Open Data?

7 Barriers To Data Sharing
Must go beyond “creative commons” Incentives – why would someone go to all the effort to share their valuable data? Concerns over sensitive information (e.g., PII) Regulations governing use of data in different domains Not just “throwing it over the wall”! Do not want to loose control over data Can I get my data back? Has to be updated, requires training, redacted etc.

8 Sharing Data Today No data sharing without a legal agreement Involve lawyers to create individual agreement -> often prevents sharing!

9 Data Sharing Spoke: Goals
Data-sharing Licensing Framework / Generator Data-Sharing Platform (Enforce Licenses) Metadata (Search Licenses & Data) Principle: Solve the 80% case!

10 Goal: Licensing Framework
Standard terms that researchers, lawyers, and compliance teams conform with Controlled access Tracking of access Usage rights (e.g., publication, copying) Duration of use Warrantees of correctness/completeness/availability Other requirements and regulations

11 Licenses: First Results
Data-Sharing Workshop 2016 (Metadata Research Drexel): Approx. 60 participants form industry + academia Hear from the trenches What works? What doesn’t? What are the biggest barriers? (What are the non-barriers?) Brainstorm solutions: would standardized licenses, use-cases/best practices help? Would better technologies help? Forge a path forward, together Agenda and Report: bigdatahubworkshop/

12 Licenses: First Results
Collected sharing agreements from academic institutions Compile list of standard terms for General (Time period, Use of data, ...) Privacy & Protection (PII, Security, Training) Access (Who?, How?) Responsibility (Indemnity clause, Ownership, Rights) Compliance (Background checks, Right to audit, ...) Data Handling (Allowed Methods of Data Transfer, ...)

13 Goal: hosted data-Sharing platform
data user Suitably aggregated, de-identified, and fingerprinted data data Traninig Access log ShareDB data owner

14 Is this possible: Technology ⨝ Sharing Agreements
Access control & rights management Expiration Logging & auditing Provenance/Finger printing De-identification “Noising” Aggregation Agreement Clauses Controlled access (who & where) Tracking of access Usage rights (e.g., publication, copying) Duration of use Warrantees of correctness/completeness/a vailability Other requirements and regulations

15 Is this possible: Technology ⨝ Sharing Agreements
Access control & rights management Expiration Logging & auditing Provenance/Finger printing De-identification “Noising” Aggregation Agreement Clauses Controlled access (who & where) Tracking of access Usage rights (e.g., publication, copying) Duration of use Warrantees of correctness/completeness/av ailability Other requirements and regulations

16 Is this possible: Technology ⨝ Sharing Agreements
Access control & rights management Expiration Logging & auditing Provenance/Finger printing De-identification “Noising” Aggregation Agreement Clauses Controlled access (who & where) Tracking of access Usage rights (e.g., publication, copying) Duration of use Warrantees of correctness/completeness/av ailability Other requirements and regulations

17 Is this possible: Technology ⨝ Sharing Agreements
Access control & rights management Expiration Logging & auditing Provenance/Finger printing De-identification “Noising” Aggregation Agreement Clauses Controlled access (who & where) Tracking of access Usage rights (e.g., publication, copying) Duration of use Warrantees of correctness/completeness/av ailability Other requirements and regulations

18 Is this possible: Technology ⨝ Sharing Agreements
Access control & rights management Expiration Logging & auditing Provenance/Finger printing De-identification “Noising” Aggregation Agreement Clauses Controlled access (who & where) Tracking of access Usage rights (e.g., publication, copying) Duration of use Warrantees of correctness/completeness/avail ability Other requirements and regulations

19 Platform: First Results
De-identification is a major obstacle for data sharing (e.g., HIPAA, FERPA, …) Goal: Automatic De-identification Detect sensitive columns (rule catalog, user-defined, machine learning, …) Automatically de-identify Health Insurance Portability and Accountability Act ( HIPAA) Family Educational Rights and Privacy Act (FERPA)

20 HIPAA: Interactive DE-identification
data data owner data user ShareDB

21 HIPAA: Interactive DE-identification
data data owner data user ShareDB

22 HIPAA: Interactive DE-identification
data data owner data user ShareDB De-identified data

23 NEXT Steps Next Data Sharing Spoke Workshop (Fall 2017) Collect more agreements and create license framework 0.1 Extend tooling support (watermarking, etc.) Metadata support

24 Questions?

Download ppt "Data Sharing Spoke Northeast Big Data Innovation Hub"

Similar presentations

Davis Wright Tremaine LLP HIT Legal Issues: HIPAA Implications to a Regional Health Information Organization Becky Williams, R.N., J.D. Partner, Co-Chair,

Davis Wright Tremaine LLP HIT Legal Issues: HIPAA Implications to a Regional Health Information Organization Becky Williams, R.N., J.D. Partner, Co-Chair,
29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.
INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.

INADEQUATE SECURITY POLICIES Each covered entity and business associate must have written polices that cover all the Required and Addressable HIPAA standards.
University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.

University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.
Red Flag Rules: What they are? & What you need to do

Red Flag Rules: What they are? & What you need to do
Helping you protect your customers against fraud Division of Finance and Corporate Securities.

Helping you protect your customers against fraud Division of Finance and Corporate Securities.
Powered by SIS Technology. Debt collection challenges Increase your collections Decrease your costs Optimize your time Secure your data Organize your.

Powered by SIS Technology. Debt collection challenges Increase your collections Decrease your costs Optimize your time Secure your data Organize your.
Security Controls – What Works

Security Controls – What Works
1 SAP Security and Controls Use of Security Compliance Tools to Detect and Prevent Security and Controls Violations.

1 SAP Security and Controls Use of Security Compliance Tools to Detect and Prevent Security and Controls Violations.
Ethics and Responsibility

Ethics and Responsibility
Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.

Chapter 9 Information Systems Controls for System Reliability— Part 2: Confidentiality and Privacy Copyright © 2012 Pearson Education, Inc. publishing.
Data Protection in Higher Education: Recent Experiences in Privacy and Security Institute for Computer Law and Policy Cornell University June 29, 2005.

Data Protection in Higher Education: Recent Experiences in Privacy and Security Institute for Computer Law and Policy Cornell University June 29, 2005.
Working across sectors Building collaborative eco-systems Lars Sundstrom SARTRE.

Working across sectors Building collaborative eco-systems Lars Sundstrom SARTRE.
Electronic Records Management: What Management Needs to Know May 2009.

Electronic Records Management: What Management Needs to Know May 2009.
DATA GOVERNANCE Presentation to CSG September 27, 2007 Mary Weisse Manager, MIT Data & Reporting Services 617-253-5398.

DATA GOVERNANCE Presentation to CSG September 27, 2007 Mary Weisse Manager, MIT Data & Reporting Services
What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.

What Keeps You Awake at Night Compliance Corporate Governance Critical Infrastructure Are there regulatory risks? Do employees respect and adhere to internal.
18 th Annual Canadian IT Law Association Conference Insider View from the EU Expert Group on Cloud Computing Dr Sam De Silva Partner, Head of IT & Outsourcing.

18 th Annual Canadian IT Law Association Conference Insider View from the EU Expert Group on Cloud Computing Dr Sam De Silva Partner, Head of IT & Outsourcing.
Risk Assessment. InfoSec and Legal Aspects Risk assessment Laws governing InfoSec Privacy.

Risk Assessment. InfoSec and Legal Aspects Risk assessment Laws governing InfoSec Privacy.
The analyses upon which this publication is based were performed under Contract Number HHSM-500-2009-00046C sponsored by the Center for Medicare and Medicaid.

The analyses upon which this publication is based were performed under Contract Number HHSM C sponsored by the Center for Medicare and Medicaid.
© Copyright 2009 EMC Corporation. All rights reserved. Controlling Content Helps Achieve Compliance EMC & Informative Graphics Corp. EMC World 2010.

© Copyright 2009 EMC Corporation. All rights reserved. Controlling Content Helps Achieve Compliance EMC & Informative Graphics Corp. EMC World 2010.

Similar presentations

Ads by Google