A Common-Sense Framework for Assessing Information-Based Counterterrorist Programs

Similar documents
JOINT TESTIMONY. Homeless Services United Catherine Trapani Executive Director, HSU

IMPLEMENTATION OF THE NAGOYA PROTOCOL AND PATHOGEN SHARING: PUBLIC HEALTH IMPLICATIONS

MIAMI CHILDREN S HOSPITAL POLICY AND PROCEDURE

Committed to Environment, Health, & Safety

Model the social work role, set expectations for others and contribute to the public face of the organisation.

FACT SHEET: Federal Parity Task Force Takes Steps to Strengthen Insurance Coverage for Mental Health and Substance Use Disorders

Syndromic Surveillance: Early CBRN Attack Detection by Computerized Medical Record Surveillance in Grey Bruce

International Framework for Assurance Engagements

Syndromic Surveillance in Public Health Practice

Public Safety and Health Cooperation from the Canadian Perspective

Core Standard 24. Cass Sandmann Emergency Planning Officer. Pat Fields Executive Director for Pandemic Flu Planning

Standards of Conduct for Transmission Providers

DHS H1N1 AFTER ACTION REPORT: EXECUTIVE SUMMARY BACKGROUND

Preparing For Pandemic Influenza: What the CDC and HHS Recommend You Can Do

WHO s code of conduct for open and timely sharing of pathogen genetic sequence data during outbreaks of infectious disease

Machine Learning for Population Health and Disease Surveillance

2. The role of CCG lay members and non-executive directors

IAASB Exposure Draft, Proposed ISAE 3000 (Revised), Assurance Engagements Other Than Audits or Reviews of Historical Financial Information

Visual and Decision Informatics (CVDI)

Cutanea Life Sciences, Inc. Comprehensive Compliance Program

Annex H - Pandemic or Disease Outbreak

Safeguarding Business Plan

IT and Information Acceptable Use Policy

Machine Learning and Event Detection for the Public Good

Alcohol and Substance Policy

Strengthening regional health security: Emerging diseases and disaster preparedness and response

Building Capacity for Tobacco Dependence Treatment in Japan. Request for Proposals (RFP) - Background and Rationale

Healthwatch Cheshire CIC Board Recruitment Information Pack

Strategic Planning for HIV/AIDS

Guideline for the Rational Use of Controlled Drugs

7th Mena Influenza Stakeholders Meeting. WHO Influenza Strategy Development and Vaccine-related Research Priorities

L930 IEMC: Yolo Operational Area Exercise

Job Profile, Responsibilities and Person Specification

The Ayrshire Hospice

Ebola: preparedness and solidarity. Ebola virus disease has claimed more than lives. and infected more than people in West Africa

Partnership name: Cambridgeshire & Peterborough. Novel Psychoactive Substances and Club Drugs Strategy

COMMUNITY HOSPICE & PALLIATIVE CARE NOTICE OF PRIVACY PRACTICES

Name of Event: Date of Event: Details of Event Organiser: [Name, Address, Contact number, ]

Policy Options for the Regulation of Electronic Cigarettes

Framework on the feedback of health-related findings in research March 2014

Proposed Radiation Safety Regulations: Submission form

Multi-sectoral aspects of pandemic preparedness and response

Hampshire Local Welfare Assistance

CORE COMPETENCIES IN FORENSIC PSYCHOLOGY

September 1, The Honorable Tom Price, MD Secretary Department of Health and Human Services 200 Independence Avenue SW Washington, DC 20201

2) Ethical and scientific standards that guide the use of quarantine or other movement restrictions during public health emergencies.

Stand on Guard for Thee

SAN RAFAEL CITY COUNCIL AGENDA REPORT

Darwin Marine Supply Base HSEQ Quality Management Plan

INTERNATIONAL STANDARD ON ASSURANCE ENGAGEMENTS 3000 ASSURANCE ENGAGEMENTS OTHER THAN AUDITS OR REVIEWS OF HISTORICAL FINANCIAL INFORMATION CONTENTS

THE GLOBAL HEALTH SECURITY AGENDA. We have to change our mindsets and start thinking about biological threats as the security threats that they are.

Collecting and Handling Health Data in a GDPR World

A modelling programme on bio-incidents. Submitted by the United Kingdom

Infectious Diseases-HAI Idaho Department of Health and Welfare, Division of Public Health Boise, Idaho. Assignment Description

Consultative report. Committee on Payments and Market Infrastructures. Board of the International Organization of Securities Commissions

EU REFERENCE LABORATORIES FOR AVIAN INFLUENZA AND NEWCASTLE DISEASE

Our raffles comply with the following policies:

Contents. Flu and Infectious Disease Outbreaks Business Continuity Plan

WORLD HEALTH ORGANIZATION. Revision of the International Health Regulations

Infrastructure and Methods to Support Real Time Biosurveillance. Kenneth D. Mandl, MD, MPH Children s Hospital Boston Harvard Medical School

AMERICAN BAPTIST COLLEGE

Vermont Recovery Network

Challenges for U.S. Attorneys Offices (USAO) in Opioid Cases

The functions of the LSCB prescribed in the Local Safeguarding Children Boards Regulations 2006 are as follows:

Strategies for Federal Agencies

POLICY ON DRUGS & ABUSE

Access to clinical trial information and the stockpiling of Tamiflu. Department of Health

STATE OF MINNESOTA BOARD OF ANIMAL HEALTH

Environmental, Health and Safety

Crisis, Risk and Security.

Workplace Alcohol and Drugs Policy. (Example Use Only)

A Review of The Polygraph: History, Current Status and Emerging Research

Problem Gambling and Crime: Impacts and Solutions

STAFF REPORT City of Lancaster NB 2

Committed to Environment, Health and Safety

November 19, Dear Messrs. Holdren and Lander:

Assurance Engagements Other than Audits or Review of Historical Financial Statements

Project Goal(s) and Objectives What is a goal? What is an objective? Measurable Objectives

Second intercountry meeting on the Eastern Mediterranean Acute Respiratory Infection Surveillance (EMARIS) network

Sharing of EP 200 Inspection Findings

University of Colorado Denver. Pandemic Preparedness and Response Plan. April 30, 2009

Assurance Engagements Other Than Audits or Reviews of Historical Financial Information

GAUGING LONG-TERM IMPACT IN THE SOCIAL SECTOR

Pandemic Influenza Continuity of Operations Plan (COOP) For. Bradford Management Group & Talent Bridge

M I L L E R T H O M S O N LLP Barristers & Solicitors, Patent & Trade Mark Agents

Interstate Interfacility Transport of a Patient with


Public Health Emergencies: Mass Dispensing in the Community

a major Public Health & Technology Transfer challenge

Review of the response to the H1N1 Flu Pandemic 2009/2010 WLMHT

Deconcentration as a Remedy for the Oligopoly Problem : A Comparative Law Perspective

Tri-County Region Opioid Trends Clackamas, Multnomah, and Washington, Oregon. Executive Summary

Emerging Infectious Disease Threats. Margaret A. Hamburg M.D. Foreign Secretary, U.S. National Academy of Medicine

A conversation with Michael Osterholm on July 30, 2013 about pandemics

Strategic Plan

Global Challenges of Pandemic and Avian Influenza. 19 December 2006 Keiji Fukuda Global influenza Programme

Community and Healthcare Preparedness Tools

The Inclusion of Seasonal Influenza Viruses and Genetic Sequence Data (GSD) in the Context of the Pandemic Influenza Preparedness (PIP) Framework

Pandemic Influenza Preparedness and Response

Developing an ethical framework for One Health policy analysis: suggested first steps

Transcription:

A Common-Sense Framework for Assessing Information-Based Counterterrorist Programs Fred H. Cate Distinguished Professor and Director Center for Applied Cybersecurity Research, Indiana University Herbert Lin Chief Scientist, Computer Science and Telecommunications Board National Academies

PROTECTING INDIVIDUAL PRIVACY IN THE STRUGGLE AGAINST TERRORISTS: A FRAMEWORK FOR PROGRAM ASSESSMENT National Research Council National Academy of Sciences October 2008

Among the report s premises and conclusions: Terrorist challenges do not warrant fundamental changes in our level of privacy protection. Science and technologies are important dimensions of counterterrorism efforts. Program deployment and use must be based on criteria more demanding than it s better than doing nothing. Government agencies using information-based programs for counter-terrorist purposes should follow a systematic process such as the one described in the committee s framework to evaluate the desirability and feasibility of any given program before such a program is set into motion.

The Core of the Report A Framework for Evaluating Information-Based Programs for Effectiveness and Consistency with U.S. Laws and Values Applicable to all information-based programs for specific government purposes, such as counterterrorism, both classified and unclassified. To be applied before systems are deployed and regularly thereafter.

Effectiveness Programs should have or be: Clearly stated purpose-what are you trying to achieve? Rational Basis why should we even think it might work? Sound Experimental Basis is there empirical demonstration that it can work? Scalable will it work at scale? Operations or Business Processes how does the program work within the organization? Capable of being integrated with other systems how does it interact with other elements outside of the organization?

Effectiveness (cont d) Robust is it resistant to countermeasures? Appropriate and Reliable Data are the data good? Data Stewardship are the data protected properly? Objectivity in testing who evaluates the program? (not program advocates!) Ongoing Assessment programs evolve, and evolved version requires examination as well Documented are effectiveness and compliance documented, or merely asserted?

Consistency with U.S. Laws and Values Data Need why are personal data needed? Sources where do data come from? Is it legal? Appropriateness are data appropriate for the intended use? Third-Party Data require additional protections Repurposing of data should be explicit and thoughtful, especially if subsequent use is inconsistent with original purpose for collection Leave data in place if possible

Consistency with U.S. Laws and Values (cont d) Programs Objective of program clear and lawful? Compliance with existing law Effectiveness scientifically demonstrated to be effective? Frequency of false positives acceptable? Reporting and redress of false positives How to report? How to correct? Impact on individuals Data minimization are data in excess of what is necessary? Audit trail can users of the data be held individually accountable for abuse or non-compliance? Security and access are unauthorized users kept out? Transparency are the impacts and operation of the program understood by those affected by it?

Consistency with U.S. Laws and Values (cont d) Administration and Oversight Training are users properly trained to use the program? Agency authorization is the program actually authorized by a senior agency official? External authorization Sensitive PII Surreptitiously collected PII PII obtained for third party without individual consent Repurposed PII Auditing for compliance is compliance reviewed at least annually? Privacy Officer is a policy-level officer in place to manage privacy issues? Reporting are relevant policy makers and, where possible, the public informed about program operation?

The Committee believes this framework: Is realistic; Broadly applicable; Consistent with U.S. laws and values; Based on common sense, best practice, and lessons learned; Leads to continuous improvement and accountability; and Is necessary to win public support and predictable compliance, while providing government officials with appropriate protection.

Application to Syndromic Surveillance Effectiveness

Effectiveness Clearly stated purpose-what are you trying to achieve? Early warning of bioattack may provide more time to deploy countermeasures and to conduct investigations into where the attack occurred and who is at risk. Rational Basis why should we even think it might work? Disease case reports traditionally the leading indicator of onset of epidemic. More potentially relevant data streams available today (e.g., OTC drugs, electronic health records, absentee rates from work/school) More computer power to detect subtle signals hidden in these data; easier to do signal correlations. Common sense suggests that mining other data may provide indicators earlier than disease case reports.

Effectiveness Sound Experimental Basis is there empirical demonstration that it can work? Syndromic surveillance systems can detect large disease outbreaks, but not the same as better PH response. Observable behaviors that might precede patients seeking medical care for an illness are not precisely known. Spike in syndromic signals generally prompts search for more definitive evidence rather than action. Overall net result may not be improvement over disease case reports. One simulation study compared clinical case findings to syndromic surveillance for anthrax small improvement in detection (one day) but would many false positives. NYC experience with syndromic surveillance systems is mixed. (Seasonal influenza outbreaks and gastrointestinal problems caught, West Nile Virus and anthrax cases not caught)

Effectiveness Scalable will it work at scale? Is this approach is viable for all localities of any size? Are some data streams are more important than others? Must data streams have some minimal scope to be useful Trade-offs between the number and size of different data streams and the sensitivity and specificity of the result (i.e. number of false positives and negatives). Operations or Business Processes how does the program work within the organization? Capable of being integrated with other systems how does it interact with other elements outside of the organization? Different organizations have different business processes that define how the system can be used, who the agents are, who are authorized to use it, Example S1 allows anyone above G-16 to execute a report but S2 allows only three designated individuals to do so. Business process will help determine how syndromic surveillance systems can be integrated into routine public health practice and what additional resources are required. Issues arise when private contractors or university partners operate the syndromic surveillance systems (more handoffs mean more uncertainties re quality of analysis).

Effectiveness Appropriate and Reliable Data are the data good? Data Stewardship are the data protected properly? Is the system collecting only the data necessary to detect a threat? Can syndromic data be forwarded to health departments routinely protecting privacy but exceptionally allowing identification? How do privacy protection measures (e.g., geographic aggregation) affect system utility? How accurate is the data from different sources? How long do data streams need to be retained? Can records of illness patterns be retained without individual data streams?

Application to Syndromic Surveillance Law and Values

Compliance with Laws and Values - Data Need why are personal data needed? Appropriateness are data appropriate for the intended use? Personal names not required (and not used) for SS per se, but are required for followup IAW standard public health procedures. Much greater discriminating power is possible when data are linked (e.g., individual purchases of OTC meds correlated with school absences) use only if effectiveness is improved. (Today, sales associated with stores rather than individuals.) Such linking would be unprecedented. Sources where do data come from? Is it legal? ER rooms are major source of data today re disease case reports.

Compliance with Laws and Values - Programs Objective of program clear and lawful? Public health agencies do have legal authority to personal medical data if such information is pertinent to public health. Effectiveness scientifically demonstrated to be effective? Perjaps. May not improve public health response. Frequency of false positives acceptable? False positive rate is difficult to predict before actual deployment, as it depends on how the sensitivity of the SS is tuned. Big issue how much work is doable to investigate possible warnings? More important that the frequency of FP for SSS is the existence of standing procedures for dealing with consequences of false positives.

Some framework questions not addressed in report Effectiveness Robustness and resistance to countermeasures? Objectivity in testing who evaluates the program? Ongoing Assessment programs evolve, and evolved version requires examination as well Documented are effectiveness and compliance documented, or merely asserted? Compliance with Laws and Values Program Data minimization are data in excess of what is necessary? Audit trail can users of the data be held individually accountable for abuse or non-compliance? Security and access are unauthorized users kept out? Transparency are the impacts and operation of the program understood by those affected by it? Administration and Oversight

2024 © healthdocbox.com Privacy Policy | Terms of Service | Feedback