Obligations: Building a bridge between personal and enterprise privacy in pervasive computing

Susana Alcalde Bagüés; Jelena Mitic; Andreas Zeidler; Marta Tejada; Ignacio R. Matias; Carlos Fernandez Valdivielso

doi:10.1007/978-3-540-85735-8_17

Obligations: Building a bridge between personal and enterprise privacy in pervasive computing

Susana Alcalde Bagüés^*
, Jelena Mitic
, Andreas Zeidler
, Marta Tejada
, Ignacio R. Matias
, Carlos Fernandez Valdivielso

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Citations (Scopus)

Abstract

In this paper we present a novel architecture for extending the traditional notion of access control to privacy-related data toward a holistic privacy management system. The key elements used are obligations. They constitute a means for controlling the use of private data even after the data was disclosed to some third-party. Today's laws mostly are regulating the conduct of business between an individual and some enterprise. They mainly focus on long-lived and static relationships between a user and a service provider. However, due to the dynamic nature of pervasive computing environments, rather more sophisticated mechanisms than a simple offer/accept-based privacy negotiation are required. Thus, we introduce a privacy architecture which allows a user not only to negotiate the level of privacy needed in a rather automated way but also to track and monitor the whole life-cycle of data once it has been disclosed.

Original language	English
Title of host publication	Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings
Pages	173-184
Number of pages	12
DOIs	https://doi.org/10.1007/978-3-540-85735-8_17
Publication status	Published - 2008
Externally published	Yes
Event	5th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2008 - Turin, Italy Duration: 4 Sept 2008 → 5 Sept 2008

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	5185 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	5th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2008
Country/Territory	Italy
City	Turin
Period	4/09/08 → 5/09/08

Access to Document

10.1007/978-3-540-85735-8_17

Cite this

Alcalde Bagüés, S., Mitic, J., Zeidler, A., Tejada, M., Matias, I. R., & Fernandez Valdivielso, C. (2008). Obligations: Building a bridge between personal and enterprise privacy in pervasive computing. In Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings (pp. 173-184). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5185 LNCS). https://doi.org/10.1007/978-3-540-85735-8_17

Alcalde Bagüés, Susana ; Mitic, Jelena ; Zeidler, Andreas et al. / Obligations : Building a bridge between personal and enterprise privacy in pervasive computing. Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings. 2008. pp. 173-184 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{dde6cb6c7037491bb5c35a2d35c6dc57,

title = "Obligations: Building a bridge between personal and enterprise privacy in pervasive computing",

abstract = "In this paper we present a novel architecture for extending the traditional notion of access control to privacy-related data toward a holistic privacy management system. The key elements used are obligations. They constitute a means for controlling the use of private data even after the data was disclosed to some third-party. Today's laws mostly are regulating the conduct of business between an individual and some enterprise. They mainly focus on long-lived and static relationships between a user and a service provider. However, due to the dynamic nature of pervasive computing environments, rather more sophisticated mechanisms than a simple offer/accept-based privacy negotiation are required. Thus, we introduce a privacy architecture which allows a user not only to negotiate the level of privacy needed in a rather automated way but also to track and monitor the whole life-cycle of data once it has been disclosed.",

author = "\{Alcalde Bag{\"u}{\'e}s\}, Susana and Jelena Mitic and Andreas Zeidler and Marta Tejada and Matias, \{Ignacio R.\} and \{Fernandez Valdivielso\}, Carlos",

year = "2008",

doi = "10.1007/978-3-540-85735-8\_17",

language = "English",

isbn = "3540857346",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "173--184",

booktitle = "Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings",

note = "5th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2008 ; Conference date: 04-09-2008 Through 05-09-2008",

}

Alcalde Bagüés, S, Mitic, J, Zeidler, A, Tejada, M, Matias, IR & Fernandez Valdivielso, C 2008, Obligations: Building a bridge between personal and enterprise privacy in pervasive computing. in Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 5185 LNCS, pp. 173-184, 5th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2008, Turin, Italy, 4/09/08. https://doi.org/10.1007/978-3-540-85735-8_17

Obligations: Building a bridge between personal and enterprise privacy in pervasive computing. / Alcalde Bagüés, Susana; Mitic, Jelena; Zeidler, Andreas et al.
Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings. 2008. p. 173-184 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 5185 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Obligations

T2 - 5th International Conference on Trust, Privacy and Security in Digital Business, TrustBus 2008

AU - Alcalde Bagüés, Susana

AU - Mitic, Jelena

AU - Zeidler, Andreas

AU - Tejada, Marta

AU - Matias, Ignacio R.

AU - Fernandez Valdivielso, Carlos

PY - 2008

Y1 - 2008

N2 - In this paper we present a novel architecture for extending the traditional notion of access control to privacy-related data toward a holistic privacy management system. The key elements used are obligations. They constitute a means for controlling the use of private data even after the data was disclosed to some third-party. Today's laws mostly are regulating the conduct of business between an individual and some enterprise. They mainly focus on long-lived and static relationships between a user and a service provider. However, due to the dynamic nature of pervasive computing environments, rather more sophisticated mechanisms than a simple offer/accept-based privacy negotiation are required. Thus, we introduce a privacy architecture which allows a user not only to negotiate the level of privacy needed in a rather automated way but also to track and monitor the whole life-cycle of data once it has been disclosed.

AB - In this paper we present a novel architecture for extending the traditional notion of access control to privacy-related data toward a holistic privacy management system. The key elements used are obligations. They constitute a means for controlling the use of private data even after the data was disclosed to some third-party. Today's laws mostly are regulating the conduct of business between an individual and some enterprise. They mainly focus on long-lived and static relationships between a user and a service provider. However, due to the dynamic nature of pervasive computing environments, rather more sophisticated mechanisms than a simple offer/accept-based privacy negotiation are required. Thus, we introduce a privacy architecture which allows a user not only to negotiate the level of privacy needed in a rather automated way but also to track and monitor the whole life-cycle of data once it has been disclosed.

UR - https://www.scopus.com/pages/publications/52149100729

U2 - 10.1007/978-3-540-85735-8_17

DO - 10.1007/978-3-540-85735-8_17

M3 - Conference contribution

AN - SCOPUS:52149100729

SN - 3540857346

SN - 9783540857341

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 173

EP - 184

BT - Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings

Y2 - 4 September 2008 through 5 September 2008

ER -

Alcalde Bagüés S, Mitic J, Zeidler A, Tejada M, Matias IR, Fernandez Valdivielso C. Obligations: Building a bridge between personal and enterprise privacy in pervasive computing. In Trust, Privacy and Security in Digital Business - 5th International Conference, TrustBus 2008, Proceedings. 2008. p. 173-184. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-540-85735-8_17

Obligations: Building a bridge between personal and enterprise privacy in pervasive computing

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this