Simplified privacy controls for aggregated services: suspend and resume of personal data

Authors:
Matthias Schunter;Michael Waidner
Affiliations:
IBM Research, Zurich Research Laboratory, Rüschlikon, Switzerland;IBM Research, Zurich Research Laboratory, Rüschlikon, Switzerland
Venue:
PET'07 Proceedings of the 7th international conference on Privacy enhancing technologies
Year:
2007

Citing 12
Cited 3

The dining cryptographers problem: unconditional sender and recipient untraceability

Journal of Cryptology
How to share a secret

Communications of the ACM
Trusting Mobile User Devices and Security Modules

Computer
A Privacy Policy Model for Enterprises

CSFW '02 Proceedings of the 15th IEEE workshop on Computer Security Foundations
Translating Privacy Practices into Privacy Promises—How to Promise What You Can Keep

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Efficient comparison of enterprise privacy policies

Proceedings of the 2004 ACM symposium on Applied computing
Specifying privacy policies with P3P and EPAL: lessons learned

Proceedings of the 2004 ACM workshop on Privacy in the electronic society
Enterprise privacy promises and enforcement

WITS '05 Proceedings of the 2005 workshop on Issues in the theory of security
Improving understanding of website privacy policies with fine-grained policy anchors

WWW '05 Proceedings of the 14th international conference on World Wide Web
Deleting Files in the Celeste Peer-to-Peer Storage System

SRDS '06 Proceedings of the 25th IEEE Symposium on Reliable Distributed Systems
Tor: the second-generation onion router

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
Federated identity-management protocols

Proceedings of the 11th international conference on Security Protocols

Privilege federation between different user profiles for service federation

Proceedings of the 4th ACM workshop on Digital identity management
Data Protection-Aware Design for Cloud Services

CloudCom '09 Proceedings of the 1st International Conference on Cloud Computing
End-to-end policy based encryption techniques for multi-party data management

Computer Standards & Interfaces

Quantified Score

Hi-index	0.00

Visualization

Abstract

The Internet is moving towards dynamic and ad-hoc service composition. The resulting so-called Web 2.0 sites maintain a unified user-experience while interacting and exchanging personal data with multiple other sites. Since the interaction is dynamic and ad-hoc, existing privacy policy mechanisms are not designed for this scenario. In this article we describe a new lightweight approach towards privacy management. The core idea is to provide a "privacy panel" - a unified and simple entry point at each site that enables consumers to review stored data and manage their privacy. Key aspects were ease-of-use and handling of recursive disclosures of personal data.