E-P3P privacy policies and privacy authorization
Proceedings of the 2002 ACM workshop on Privacy in the Electronic Society
Extending Relational Database Systems to Automatically Enforce Privacy Policies
ICDE '05 Proceedings of the 21st International Conference on Data Engineering
VLDB '02 Proceedings of the 28th international conference on Very Large Data Bases
Purpose based access control for privacy protection in relational database systems
The VLDB Journal — The International Journal on Very Large Data Bases
BNCOD 26 Proceedings of the 26th British National Conference on Databases: Dataspace: The Final Frontier
A Lattice-Based Privacy Aware Access Control Model
CSE '09 Proceedings of the 2009 International Conference on Computational Science and Engineering - Volume 03
Quantifying privacy violations
SDM'11 Proceedings of the 8th VLDB international conference on Secure data management
Understanding privacy policies
Empirical Software Engineering
Monitoring and recommending privacy settings in social networks
Proceedings of the Joint EDBT/ICDT 2013 Workshops
A privacy preserving model bridging data provider and collector preferences
Proceedings of the Joint EDBT/ICDT 2013 Workshops
Hi-index | 0.00 |
With the increasing amount of data collected by service providers, privacy concerns increase for data owners who must provide private data to receive services. Legislative acts require service providers to protect the privacy of customers. Privacy policy frameworks, such as P3P, assist the service providers by describing their privacy policies to customers (e.g. publishing privacy policy on websites). Unfortunately, providing the policies alone does not guarantee that they are actually enforced. Furthermore, a privacy-preserving model should consider the privacy preferences of both the data provider and collector. This paper discusses the challenges in development of capturing privacy predicates in a lattice structures. A use case study is presented to show the applicability of the lattice approach to a specific domain. We also present a comprehensive study on applying a lattice-based approach to P3P. We show capturing privacy elements of P3P in a lattice format facilitates managing and enforcing policies presented in P3P and accommodates the customization of privacy practices and preferences of data and service providers. We also propose that the outcome of this approach can be used on lattice-based privacy aware access control models [8].