- Publication Type:
- Conference Proceeding
- The Third IEEE International Conference on Privacy, Security, Risk and Trust, 2012, pp. 1208 - 1213
- Issue Date:
Data purpose is a central concept in modeling privacy requirements. Existing purpose-based approaches for privacy protection have mainly focused on access control. The problem of ensuring the consistency between data purpose and data usage has been under-addressed. In an attempt to bridge this research gap, we develop a grounded understanding of data purpose and relevant key concepts that is fundamental to address the problem. We propose a Minimum Action Permission Principle as a basic guideline to establish a path to solutions to the consistency problem.
Please use this identifier to cite or link to this item: