Sciweavers

WPES
2005
ACM

Maintaining privacy on derived objects

14 years 5 months ago
Maintaining privacy on derived objects
Protecting privacy means to ensure users that access to their personal data complies with their preferences. However, information can be manipulated in order to derive new objects that may disclose part of the original information. Therefore, control of information flow is necessary for guaranteeing privacy protection since users should know and control not only who access their personal data, but also who access information derived from their data. Actually, current approaches for access control do not provide support for managing propagation of information and for representing user preferences. This paper proposes to extend the Flexible Authorization Framework (FAF) in order to automatically verify whether a subject is entitled to process personal data and derive the authorizations associated with the outcome of data processing. In order to control information flow, users may specify the range of authorizations that can be associated with objects derived from their data. The frame...
Nicola Zannone, Sushil Jajodia, Fabio Massacci, Du
Added 26 Jun 2010
Updated 26 Jun 2010
Type Conference
Year 2005
Where WPES
Authors Nicola Zannone, Sushil Jajodia, Fabio Massacci, Duminda Wijesekera
Comments (0)