Using purpose lattices to facilitate customisation of privacy agreements

Authors:
Wynand van Staden;Martin S. Olivier
Affiliations:
University of Pretoria, Pretoria, South Africa;University of Pretoria, Pretoria, South Africa
Venue:
TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business
Year:
2007

Citing 7
Cited 3

Untraceable electronic mail, return addresses, and digital pseudonyms

Communications of the ACM
A Privacy Policy Model for Enterprises

CSFW '02 Proceedings of the 15th IEEE workshop on Computer Security Foundations
Mixminion: Design of a Type III Anonymous Remailer Protocol

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Purpose based access control of complex data for privacy protection

Proceedings of the tenth ACM symposium on Access control models and technologies
Tor: the second-generation onion router

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
Hippocratic databases

VLDB '02 Proceedings of the 28th international conference on Very Large Data Bases
IT-security and privacy: design and use of privacy-enhancing security mechanisms

IT-security and privacy: design and use of privacy-enhancing security mechanisms

SQL's revoke with a view on privacy

Proceedings of the 2007 annual research conference of the South African institute of computer scientists and information technologists on IT research in developing countries
Enforcing purpose of use via workflows

Proceedings of the 8th ACM workshop on Privacy in the electronic society
A privacy preserving model bridging data provider and collector preferences

Proceedings of the Joint EDBT/ICDT 2013 Workshops

Quantified Score

Hi-index	0.00

Visualization

Abstract

Protecting the privacy of individuals demands that special care be taken with the handling of an individual's personal information. Either the system should store as little or no user data at all, or it should protect access to the data in cases where it is necessary that data has to be stored. A common approach to the protection of PII (in a privacy aware system) is to associate a set of purposes with the PII which indicates the enterprise's use of the data. Purposes placed in a hierarchical structure (such as a lattice) can subsume each other, which can provide flexibility in the customisation of a privacy agreement. In this article the customisation of privacy agreements using purposes placed in a lattice is considered. In particular minimal acceptance levels, maximal acceptance levels, validation and invalidation of agreements with respect to purpose lattices are introduced.