A practical generic privacy language

Authors:
Moritz Y. Becker;Alexander Malkis;Laurent Bussard
Affiliations:
Microsoft Research;IMDEA Software;EMIC
Venue:
ICISS'10 Proceedings of the 6th international conference on Information systems security
Year:
2010

Citing 16
Cited 3

Unification as a complexity measure for logic programming

Journal of Logic Programming
The platform for privacy preference as a social protocol: An examination within the U.S. policy context

ACM Transactions on Internet Technology (TOIT)
Obligation Monitoring in Policy Management

POLICY '02 Proceedings of the 3rd International Workshop on Policies for Distributed Systems and Networks (POLICY'02)
Decentralized Trust Management

SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
Privacy policies as decision-making tools: an evaluation of online privacy notices

Proceedings of the SIGCHI Conference on Human Factors in Computing Systems
Specifying privacy policies with P3P and EPAL: lessons learned

Proceedings of the 2004 ACM workshop on Privacy in the electronic society
Enterprise privacy promises and enforcement

WITS '05 Proceedings of the 2005 workshop on Issues in the theory of security
Privacy and Contextual Integrity: Framework and Applications

SP '06 Proceedings of the 2006 IEEE Symposium on Security and Privacy
On the modeling and analysis of obligations

Proceedings of the 13th ACM conference on Computer and communications security
P3P Adoption on E-Commerce Web sites: A Survey and Analysis

IEEE Internet Computing
On Parametric Obligation Policies: Enabling Privacy-Aware Information Lifecycle Management in Enterprises

POLICY '07 Proceedings of the Eighth IEEE International Workshop on Policies for Distributed Systems and Networks
Design and Semantics of a Decentralized Authorization Language

CSF '07 Proceedings of the 20th IEEE Computer Security Foundations Symposium
An obligation model bridging access control policies and privacy policies

Proceedings of the 13th ACM symposium on Access control models and technologies
Refinement Types for Secure Implementations

CSF '08 Proceedings of the 2008 21st IEEE Computer Security Foundations Symposium
A privacy-aware access control system

Journal of Computer Security - 20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec'06)
The role of abduction in declarative authorization policies

PADL'08 Proceedings of the 10th international conference on Practical aspects of declarative languages

Abstract privacy policy framework: addressing privacy problems in SOA

iNetSec'11 Proceedings of the 2011 IFIP WG 11.4 international conference on Open Problems in Network Security
Controlling data dissemination

DPM'11 Proceedings of the 6th international conference, and 4th international conference on Data Privacy Management and Autonomous Spontaneus Security
Privacy by design: a formal framework for the analysis of architectural choices

Proceedings of the third ACM conference on Data and application security and privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present a declarative language with a formal semantics for specifying both users' privacy preferences and services' privacy policies. Expressiveness and applicability are maximized by keeping the vocabulary and semantics of service behaviours abstract. A privacy-compliant data-handling protocol for a network of communicating principals is described.