Data Base Management Systems (DBMSs): Meeting the requirements of the EU data protection legislation

Authors:
Anastasios Gounaris;Babis Theodoulidis
Affiliations:
Department of Computer Science, University of Manchester, Oxford Road, Manchester M13 9PL, UK;CRIM, Department of Computation, UMIST, P.O. Box 88, Sackville Street, Manchester M60 1QD, UK
Venue:
International Journal of Information Management: The Journal for Information Professionals
Year:
2003

Citing 4
Cited 0

Managing security and privacy of information

ACM Computing Surveys (CSUR) - Special issue: position statements on strategic directions in computing research
Information warfare and security

Information warfare and security
Private information retrieval

Journal of the ACM (JACM)
Secure Databases: Constraints, Inference Channels, and Monitoring Disclosures

IEEE Transactions on Knowledge and Data Engineering

Quantified Score

Hi-index	0.00

Visualization

Abstract

As the size of the databases containing personal data is expanding very fast worldwide, the mass collection and processing of personal data has raised a lot of concerns about the manner in which the personal data of an individual are processed. In an effort to address privacy concerns, the European Parliament adopted the Data Protection Directive, which enforces organisations to take steps to ensure their compliance. Current database technology fails to allow organisations to comply with the requirements of the new data protection legislation. In this paper, a complete set of the DBMS operability requirements is presented, in order to support the EU Directive. These requirements affect the database facilities to identify individuals and for audit trail, the security and processing mechanisms of the DBMSs, and the kind of data that needs to be stored. An implementation model is also proposed.