Accountability and Enforceability of Enterprise Privacy Policies

نویسندگان

  • Yolanta Beres
  • Pete Bramhall
  • Marco Casassa Mont
  • Mickey Gittler
  • Siani Pearson
چکیده

This paper describes our approach to the evolution of enterprise privacy policies and related privacy management ecosystems. We argue that it is important to be able to express enforceable privacy policies, to explicitly manage accountability and to develop the whole privacy infrastructure, rather than just one part of this. In this paper we briefly illustrate our philosophy and vision, present a list of key requirements and describe our ongoing research. In our approach we emphasise three key aspects: extension of policy languages to allow specification of the use of trust and security techniques, enforceability of such privacy languages and management of accountability across enterprises in respect of privacy policy enforcement.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

On the Importance of Accountability and Enforceability of Enterprise Privacy Languages

This paper describes our approach to the long-term evolution of enterprise privacy languages and related privacy management ecosystems. We believe in the importance of privacy languages that express enforceable policies, in the need for an explicit management of accountability and in the development of the whole privacy infrastructure, rather than just one part of this. In this document we brie...

متن کامل

Privacy through Accountability: A Computer Science Perspective

Privacy has become a significant concern in modern society as personal information about individuals is increasingly collected, used, and shared, often using digital technologies, by a wide range of organizations. To mitigate privacy concerns, organizations are required to respect privacy laws in regulated sectors (e.g., HIPAA in healthcare, GLBA in financial sector) and to adhere to self-decla...

متن کامل

Integration of Clinical Workflows with Privacy Policies on a Common Semantic Platform

As healthcare organizations (HCOs) migrate to electronic systems, they must ensure compliance with complex data protection legislation, such as the Health Insurance Portability and Accountability Act (HIPAA). Legislation specifies rules that must be enforced, but regulatory language is often imprecise, forcing HCOs to define local policies and procedures, as well as specific enforcement technol...

متن کامل

Information Accountability with Policy Languages for e-Health

ICT is becoming a prominent part of healthcare delivery but brings with it information privacy concerns for patients and competing concerns by caregivers. A proper balance between these must be established in order to fully utilise ICT capabilities in healthcare. Information accountability is a fairly new concept to computer science which focuses on fair use of information. In this paper we inv...

متن کامل

An Algebra for Composing Enterprise Privacy Policies

Enterprise privacy enforcement allows enterprises to internally enforce a privacy policy that the enterprise has decided to comply to. To facilitate the compliance with different privacy policies when several parts of an organization or different enterprises cooperate, it is crucial to have tools at hand that allow for a practical management of varying privacy requirements. We propose an algebr...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2003