HackerTrans
TopNewTrendsCommentsPastAskShowJobs

n00pn00p

no profile record

Submissions

Proton Pass: Second-Password Bypass Through Emergency Access

zolder.io
2 points·by n00pn00p·2 mesi fa·0 comments

Show HN: Pseudonymizing sensitive data for LLMs without losing context

atticsecurity.com
4 points·by n00pn00p·3 mesi fa·8 comments

comments

n00pn00p
·3 mesi fa·discuss
That's a great point. Because my tool is designed for security operations and triage, the context (like knowing an IP is from Hetzner, or a domain is a known burner) is actually the signal the LLM needs to do its job. I made a conscious trade-off to allow some contextual metadata to pass through to preserve utility.

Since I'm based in the Netherlands, I look at this strictly through the lens of the Dutch privacy law (the AVG). Under the AVG, there's a hard line between anonymized data and pseudonymized data. Because of the exact 'mosaic effect' you mentioned, pseudonymized data is legally still treated as personal data. So, the re-identification risk is an accepted reality.

Essentialy i treat the tool as an extra effort to reduce PII leaks. But its not foolproof against the context clues.
n00pn00p
·3 mesi fa·discuss
oh sweet, that would have saved allot of time!
n00pn00p
·3 mesi fa·discuss
Valid point, the proxy has the option to always allow domain names through. You will lose some context always I fear. It should be used sparingly when you need a frontier model but also want to send sensitive data.
n00pn00p
·3 mesi fa·discuss
[dead]