HackerTrans
TopNewTrendsCommentsPastAskShowJobs

n00pn00p

no profile record

Submissions

Proton Pass: Second-Password Bypass Through Emergency Access

zolder.io
2 points·by n00pn00p·2 maanden geleden·0 comments

Show HN: Pseudonymizing sensitive data for LLMs without losing context

atticsecurity.com
4 points·by n00pn00p·3 maanden geleden·8 comments

comments

n00pn00p
·3 maanden geleden·discuss
That's a great point. Because my tool is designed for security operations and triage, the context (like knowing an IP is from Hetzner, or a domain is a known burner) is actually the signal the LLM needs to do its job. I made a conscious trade-off to allow some contextual metadata to pass through to preserve utility.

Since I'm based in the Netherlands, I look at this strictly through the lens of the Dutch privacy law (the AVG). Under the AVG, there's a hard line between anonymized data and pseudonymized data. Because of the exact 'mosaic effect' you mentioned, pseudonymized data is legally still treated as personal data. So, the re-identification risk is an accepted reality.

Essentialy i treat the tool as an extra effort to reduce PII leaks. But its not foolproof against the context clues.
n00pn00p
·3 maanden geleden·discuss
oh sweet, that would have saved allot of time!
n00pn00p
·3 maanden geleden·discuss
Valid point, the proxy has the option to always allow domain names through. You will lose some context always I fear. It should be used sparingly when you need a frontier model but also want to send sensitive data.
n00pn00p
·3 maanden geleden·discuss
[dead]