An ontological study of data purpose for privacy policy enforcement

Publication Type:
Conference Proceeding
Citation:
Proceedings - 2011 IEEE International Conference on Privacy, Security, Risk and Trust and IEEE International Conference on Social Computing, PASSAT/SocialCom 2011, 2011, pp. 1208 - 1213
Issue Date:
2011-12-01
Full metadata record
Files in This Item:
Filename Description Size
Thumbnail2011002700OK.pdf Published version695.18 kB
Adobe PDF
Data purpose is a central concept in modeling privacy requirements. Existing purpose-based approaches for privacy protection have mainly focused on access control. The problem of ensuring the consistency between data purpose and data usage has been under-addressed. In an attempt to bridge this research gap, we develop a grounded understanding of data purpose and relevant key concepts that is fundamental to address the problem. We propose a Minimum Action Permission Principle as a basic guideline to establish a path to solutions to the consistency problem for privacy management. © 2011 IEEE.
Please use this identifier to cite or link to this item: