Data-Purpose Algebra: Modeling Data Usage Policies
POLICY '07 Proceedings of the Eighth IEEE International Workshop on Policies for Distributed Systems and Networks
Communications of the ACM - Organic user interfaces
Extracting causal graphs from an open provenance data model
Concurrency and Computation: Practice & Experience - The First Provenance Challenge
CSF '08 Proceedings of the 2008 21st IEEE Computer Security Foundations Symposium
Auditing a Database under Retention Restrictions
ICDE '09 Proceedings of the 2009 IEEE International Conference on Data Engineering
Specification, Verification and Explanation of Violation for Data Aware Compliance Rules
ICSOC-ServiceWave '09 Proceedings of the 7th International Joint Conference on Service-Oriented Computing
PAPEL: a language and model for provenance-aware policy definition and execution
BPM'10 Proceedings of the 8th international conference on Business process management
Design and verification of instantiable compliance rule graphs in process-aware information systems
CAiSE'10 Proceedings of the 22nd international conference on Advanced information systems engineering
The Open Provenance Model core specification (v1.1)
Future Generation Computer Systems
Electronically querying for the provenance of entities
IPAW'06 Proceedings of the 2006 international conference on Provenance and Annotation of Data
Provenance-based auditing of private data use
VoCS'08 Proceedings of the 2008 international conference on Visions of Computer Science: BCS International Academic Conference
| Hi-index | 0.00 |
Given the significant amount of personal information available on the Web, verifying its correct use emerges as an important issue. When personal information is published, it should be later used under a set of usage policies. If these policies are not followed, sensitive data could be exposed and used against its owner. Under these circumstances, processing transparency is desirable since it allows users to decide whether information is used appropriately. It has been argued that data provenance can be used as the mechanism to underpin such a transparency. Thereby, if provenance of data is available, processing becomes transparent since the provenance of data can be analysed against usage policies to decide whether processing was performed in compliance with such policies. The aim of this paper is to present a Provenance-based Compliance Framework that uses provenance to verify the compliance of processing to predefined information usage policies. It consists of a provenance-based view of past processing of information, a representation of processing policies and a comparison stage in which the past processing is analysed against the processing policies. This paper also presents an implementation using a very common on-line activity: on-line shopping.