A Multi-privacy Policy Enforcement System
نویسندگان
چکیده
With the increase in the number of electronic services and the number of users, concerns about the privacy protection of electronic data are growing day by day. Organisations are facing a huge pressure to assure their users about the privacy protection of their personal data. Organisations need to include the privacy policies of their users when deciding who should access their personal data. The user’s privacy policy will need to be combined with the organisation’s own policy, as well as policies from different authorities such as the issuer of the data, and the law. The authorisation system will need to ensure the enforcement of all these policies. We have designed a system that will ensure the enforcement of multiple privacy policies within an organisation and throughout a distributed system.
منابع مشابه
Privacy Enforcement with an Extended Role-Based Access Control Model
Privacy enforcement has been one of the most important challenges in IT area. Current privacy practices within companies and organizations, e.g. enabling a P3P compliant policy, incorporating a privacy seal program, etc., cannot truly protect consumer privacy. Privacy protection can only be achieved by enforcing privacy policies within an organization’s online and offline data processing system...
متن کاملRequirements for a Policy-Enforceable Agent Architecture
Emerging legislation that governs consumer privacy presents a design challenge to multi-agent systems providing business, health-care and government services. As agents act on behalf of consumers and providers of goods and services, their compliance with laws governing information sharing and disclosure practices must be transparent and measurable to avoid prohibitive sanctions by regulators. H...
متن کاملPrivacy Injector - Automated Privacy Enforcement Through Aspects
Protection of personal data is essential for customer acceptance. Even though existing privacy policies can describe how data shall be handled, privacy enforcement remains a challenge. Especially for existing applications, it is unclear how one can effectively ensure correct data handling without completely redesigning the applications. In this paper we introduce Privacy Injector, which allows ...
متن کاملEnforcement of a P3P Privacy Policy
P3P is a machine readable XML language used by enterprises to express their privacy policy on a web site. The language is well supported with a number of tools now available for creating P3P policies, browsers beginning to support P3P function, and numerous web sites including P3P policy files on them. P3P is useful for declaring privacy promises but there is little experience in enforcing P3P ...
متن کاملModeling Privacy Aware Health Information Exchange Systems
Health care delivery requires the coordination of activities across many different service providers and organizations and generally requires the secure exchange of health information across organizations. Privacy and care management policies at the federal, state, and institutional level lead to a confusing array of potentially contradictory or subjective policy interpretations. Enforcement of...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2010