Enterprise Ireland is again showcasing the best Irish technology and innovation at the 21st annual South by Southwest (SXSW) festival between March 11-20, 2016 in Austin, Texas – and we are excited!
So, why are we excited? Continue reading
This week, Dr Dimitar Shterionov, Machine Translation Researcher at KantanMT, presented at the Cloud Security workshop conducted by Irish Centre for Cloud Computing and Commerce (IC4). The information-packed workshop, which was a huge success, aimed to draw back the curtain on cloud security and help companies make more informed choices regarding cloud security within their organisation.
In this post we will highlight some of the issues discussed during the workshop as well as the best practices, tools and guidelines that will help decision making for businesses making the move to the cloud.
KantanMT is delighted to republish, with permission a post on machine translation technology and internet security that was recently written by Joseph Wojowski. Joseph Wojowski is the Director of Operations at Foreign Credits and Chief Technology Officer at Morningstar Global Translations LLC.
An issue that seems to have been brought up once in the industry and never addressed again are the data collection methods used by Microsoft, Google, Yahoo!, Skype, and Apple as well as the revelations of PRISM data collection from those same companies, thanks to Edward Snowden. More and more, it appears that the industry is moving closer and closer to full Machine Translation Integration and Usage, and with interesting, if alarming, findings being reported on Machine Translation’s usage when integrated into Translation Environments, the fact remains that Google Translate, Microsoft Bing Translator, and other publicly-available machine translation interfaces and APIs store every single word, phrase, segment, and sentence that is sent to them.
What exactly are you agreeing to when you send translation segments through the Google Translate or Bing Translator website or API?
Essentially, in using Google’s services, you are agreeing to permit them to store the segment to use for creating more accurate translations in the future, they can also publish, display, and distribute the content.
“When you upload, submit, store, send or receive content to or through our Services, you give Google (and those we work with) a worldwide license to use, host, store, reproduce, modify, create derivative works (such as those resulting from translations, adaptations or other changes we make so that your content works better with our Services), communicate, publish, publicly perform, publicly display and distribute such content.” (Google Terms of Service – 14 April 2014, accessed on 8 December 2014)
Oh, and did I mention that in using the service, the user is bearing all liability for“LOST PROFITS, REVENUES, OR DATA, FINANCIAL LOSSES OR INDIRECT, SPECIAL, CONSEQUENTIAL, EXEMPLARY, OR PUNITIVE DAMAGES.” (Google Terms of Service – 14 April 2014, accessed on 8 December 2014)
So if it is discovered that a client’s confidential content is also located on Google’s servers because of a negligent translator, that translator is liable for losses and Google relinquishes liability for distributing what should have been kept confidential.
Alright, that’s a lot of legal wording, not the best news, and a lot to take in if this is the first time you’re hearing about this. What about Microsoft Bing Translator?
In writing their services agreement, Microsoft got very tricky. They start out positively by stating that you own your own content.
“Except for material that we license to you that may be incorporated into your own content (such as clip art), we do not claim ownership of the content you provide on the services. Your content remains your content, and you are responsible for it. We do not control, verify, pay for, or endorse the content that you and others make available on the services.” (Microsoft Services Agreement – effective 19 October 2012, accessed on 8 December 2014)
Bing! Bing! Bing! Bing! Bing! We have a winner! Right? Hold your horses, don’t install the Bing API yet. It continues on in stating,
“When you transmit or upload Content to the Services, you’re giving Microsoft the worldwide right, without charge, to use Content as necessary: to provide the Services to you, to protect you, and to improve Microsoft products and services.”(Microsoft Services Agreement – effective 19 October 2012, accessed on 8 December 2014)
So again with Bing, while they originally state that you own the content you submit to their services, they also state that in doing so, you are giving them the right to use the information as they see fit and (more specifically) to improve the translation engine.
How do these terms affect the translation industry, then?
The problem arises whenever translators are working with documents that contain confidential or restricted-access information. Aside from his/her use of webmail hosted by Microsoft, Google, Apple, etc. – which also poses a problem with confidentiality – contents of documents that are sent through free, public machine translation engines; whether through the website or API, are leaking the information the translator agreed to keep confidential in the Non-Disclosure Agreement (if established) with the LSP; a clear and blatant breach of confidentiality.
But I’m a professional translator and have been for years, I don’t use MT and no self-respecting professional translator would.
Well, yes and no; a conflict arises from that mode of thinking. In theory, yes, a professional translator should know better than to blindly use Machine Translation because of its inaccurate and often unusable output. A professional translator; however, should also recognize that with advancements in MT Technology, Machine Translation can be a very powerful tool in the translator’s toolbox and can, at times, greatly aid in the translation of certain documents.
The current state of the use of MT more echoes the latter than the former. In 2013 research conducted by Common Sense Advisory, 64% of the 239 people who responded to the survey reported that colleagues frequently use free Machine Translation Engines; 62% of those sampled were concerned about free MT usage.
In the November/December 2014 Issue of the ATA Chronicle, Jost Zetzsche relayed information on how users were using the cloud-based translation tool MemSource. Of particular interest are the Machine Translation numbers relayed to him by David Canek, Founder of MemSource. 46.2% of its around 30,000 users (about 13,860 translators) were using Machine Translation; of those, 98% were using the Google Translate or a variant of the Bing Translator API. And of still greater alarm, a large percentage of users using Bing Translator chose to employ the “Microsoft with Feedback” option which sends the finalized target segment back to Microsoft (a financially appealing option since when selected, use of the API costs nothing).
As you can imagine, while I was reading that article, I was yelling at all 13.9 thousand of them through the magazine. How many of them were using Google or Bing MT with documents that should not have been sent to either Google or Microsoft? How many of these users knew to shut off the API for such documents – how many did?
There’s no way to be certain how much confidential information may have been leaked due to translator negligence, in the best scenario perhaps none, but it’s clear that the potential is very great.
On the other hand, in creating a tool as dynamic and ever-changing as a machine translation engine, the only way to train it and make it better is to use it, a sentiment that is echoed throughout the industry by developers of MT tools and something that can be seen in the output of Google translate over the past several years.
So what options are there for me to have an MT solution for my customers without risking a breach in confidentiality?
There are numerous non-public MT engines available – including Apertium, a developing open-source MT platform – however, none of them are as widely used (and therefore, as well-trained) as Google Translate or Bing Translator (yes, I realize that I just spent over 1,000 words talking about the risk involved in using Google Translate or Bing Translator).
So, is there another way? How can you gain the leverage of arguably the best-trained MT Engines available while keeping confidential information confidential?
There are companies who have foreseen this problem and addressed it, without pitching their product, here’s how it works. It acts as an MT API but before any segments are sent across your firewall to Google, it replaces all names, proper nouns, locations, positions, and numbers with an independent, anonymous token or placeholder. After the translated segment has returned from Google and is safely within the confines of your firewall, the potentially confidential material then replaces the tokens leaving you with the MT translated segment. On top of that, it also allows for customized tokenization rules to further anonymize sensitive data such as formulae, terminology, processes, etc.
While the purpose of this article was not to prevent translators from using MT, it is intended to get translators thinking about its use and increase awareness of the inherent risks and solution options available.
As I have been informed, the information in the original post is not as exact as it could be, there is a Microsoft Translator Privacy Agreement that more specifically addresses use of the Microsoft Translator. Apparently, with Translator, they take a sample of no more than 10% of “randomly selected, non-consecutive sentences from the text” submitted. Unused text is deleted within 48 hours after translation is provided.
If the user subscribes to their data subscriptions with a maximum of 250 million characters per month (also available at levels of 500 million, 635 million, and one billion) , he or she is then able to opt-out of logging.
There is also Microsoft Translator Hub which allows the user to personalize the translation engine where “The Hub retains and uses submitted documents in full in order to provide your personalized translation system and to improve the Translator service.” And it should be noted that, “After you remove a document from your Hub account we may continue to use it for improving the Translator service.”
So let’s analyze this development. 10% of the full text submitted is sampled and unused text is deleted within 48 hours of its service to the user. The text is still potentially from a sensitive document and still warrants awareness of the issue.
If you use The Translator Hub, it uses the full document to train the engine and even after you remove the document from your Hub, and they may also use it to continue improving the Translator service.
Now break out the calculators and slide rules, kids, it’s time to do some math.
In order to opt-out of logging, you need to purchase a data subscription of 250 million characters per month or more (the 250 million character level costs $2,055.00/month). If every word were 50 characters each, that would be 5 million words per month (where a month is 31 days) and a post-editor would have to process 161,290 words per day (working every single day of this 31-day month). It’s physically impossible for a post-editor to process 161,290 words in a day, let alone a month (working 8 hours a day for 20 days a month, 161,290 words per month would be 8,064.5 words per day). So we can safely assume that no freelance translator can afford to buy in at the 250 million character/month level especially when even in the busiest month, a single translator comes no where near being able to edit the amount of words necessary to make it a financially sound expense.
In the end, I still come to the same conclusion, we need to be more cognizant of what we send through free, public, and semi-public Machine Translation engines and educate ourselves on the risks associated with their use and the safer, more secure solutions available when working with confidential or restricted-access information.
At KantanMT, security, integrity and the privacy of our customers’ data is a top priority. We believe this is vital to their business operations and to our own success. Therefore, we use a multilayered approach to protect and encrypt this information. The KantanMT Data Privacy statement ensures that no client data is re-published, re-tasked or re-purposed and will also be fully encrypted during storage and transmission.
Read more about the KantanMT Data Privacy Infrastructure (PDF Download)
For more information about our security infrastructure please contact the KantanMT Sales Team (email@example.com).
Cloud migration – business communities are now embracing this concept, where utilizing cloud technologies benefits the “more for less” modern business approaches. It is all about paying for what you use without the big overheads and without the big carbon footprint.
CompTIA, a non-profit trade organization recently published their fourth annual study on cloud computing, using a sample of approx. 900 IT respondents. The Study identified not only an increase in the number of cloud based IT systems, but also a 10% increase since last year, in the number of businesses using cloud computing services. It shows, businesses are demonstrating greater confidence in the use of cloud models such as; Software as a Service (SaaS), Platform as a Service (PaaS) and Infrastructure as a Service (IaaS).
Benefits driving business to the cloud:
Data security was a major concern for cloud migration, especially, during the early stages of cloud computing. The cloud has been around a few years now and its security has been tested. Cloud security is just as secure if not, more secure than more traditional IT structures, with cloud hosting services benefitting from economies of scale, specialised staff and a strong security focus. These benefits are rolled back to cloud users who can leave security to the experts.
Data security is at the centre of a security services ecosystem of monitoring, encryption, cloud-archiving and data recovery services. Organizations like the Cloud Security Alliance (CSA) endorse best practices to set industry standards, which are consistently upgraded and modified in compliance with governing bodies.
KantanMT also embraced cloud integration into its software architecture, with four layers of security protecting client data.
The multi-tenant architecture gives each member full functional access on the platform, while keeping data completely isolated from other members. Each member has their own password protected account, and all data is encrypted to meet the advanced encryption standards, AES 256-bit encryption. KantanMT uses a secure amazon server to host data services.
Basically, when data is uploaded to the KantanMT platform, it is stored on secure amazon servers, and protected behind amazon firewalls. Accessing the data requires a pass key, which has two parts. One part is used by the client and the other kept by the cloud service provider (CSP). Access requires both parts of the key, the CSP alone cannot access the data.
KantanMT selected Amazon Web Services (AWS) to host cloud services for their excellent data security practices and compliance with IT security standards. AWS is in a bid war against IBM for a $600 million cloud contract with the CIA. Compared with IBM’s more cost effective solution, the CIA considered AWS to be “a superior technical solution”. Notable other AWS clients are Intuit Inc., SAP AG, Spotify, Sage, Pfizer and Thomson Reuters.
More detailed information on how KantanMT manages security will be published in our data security whitepaper coming out in the next few months.