An ontological study of data purpose for privacy policy enforcement

Publisher:
IEEE,CPS
Publication Type:
Conference Proceeding
Citation:
The Third IEEE International Conference on Privacy, Security, Risk and Trust, 2011, pp. 1208 - 1213
Issue Date:
2011-01
Full metadata record
Files in This Item:
Filename Description Size
Thumbnail2011002700OK.pdf Published version695.18 kB
Adobe PDF
Data purpose is a central concept in modeling privacy requirements. Existing purpose-based approaches for privacy protection have mainly focused on access control. The problem of ensuring the consistency between data purpose and data usage has been under-addressed. In an attempt to bridge this research gap, we develop a grounded understanding of data purpose and relevant key concepts that is fundamental to address the problem. We propose a Minimum Action Permission Principle as a basic guideline to establish a path to solutions to the consistency problem.
Please use this identifier to cite or link to this item: