Protecting Privacy with a Declarative Policy Framework
| Title | Protecting Privacy with a Declarative Policy Framework |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Martiny, Karsten, Elenius, Daniel, Denker, Grit |
| Conference Name | 2018 IEEE 12th International Conference on Semantic Computing (ICSC) |
| Keywords | -Automated-reasoning, -Data-sharing, -Ontology, -Policy, -Policy-Decision-Engine, -Privacy-Framework, -Reasoning, -Rule, -Semantic-Technology, Common Data Model, Computing Theory and Privacy, cryptography, Data models, data privacy, Databases, declarative policy framework, Engines, enterprise privacy prototype system, expressive policy specification, formal shareability theory, formal specification, formal verification, Human Behavior, Ontologies, policy decision point, privacy, privacy enhancing technologies, Privacy Policies, privacy policy creation, privacy policy decision engine, privacy policy engine decisions, privacy policy framework, privacy policy management, privacy policy validation, privacy protection, pubcrawl, Resiliency, Scalability, security of data, Semantics, technical details, user interfaces |
| Abstract | This article describes a privacy policy framework that can represent and reason about complex privacy policies. By using a Common Data Model together with a formal shareability theory, this framework enables the specification of expressive policies in a concise way without burdening the user with technical details of the underlying formalism. We also build a privacy policy decision engine that implements the framework and that has been deployed as the policy decision point in a novel enterprise privacy prototype system. Our policy decision engine supports two main uses: (1) interfacing with user interfaces for the creation, validation, and management of privacy policies; and (2) interfacing with systems that manage data requests and replies by coordinating privacy policy engine decisions and access to (encrypted) databases using various privacy enhancing technologies. |
| DOI | 10.1109/ICSC.2018.00039 |
| Citation Key | martiny_protecting_2018 |
- privacy policy framework
- formal verification
- Human behavior
- Ontologies
- policy decision point
- privacy
- privacy enhancing technologies
- Privacy Policies
- privacy policy creation
- privacy policy decision engine
- privacy policy engine decisions
- Formal Specification
- privacy policy management
- privacy policy validation
- privacy protection
- pubcrawl
- Scalability
- security of data
- Semantics
- technical details
- user interfaces
- Common Data Model
- Resiliency
- -Automated-reasoning
- -Data-sharing
- -Ontology
- -Policy
- -Policy-Decision-Engine
- -Privacy-Framework
- -Reasoning
- -Rule
- -Semantic-Technology
- Computing Theory and Privacy
- Cryptography
- Data models
- data privacy
- Databases
- declarative policy framework
- Engines
- enterprise privacy prototype system
- expressive policy specification
- formal shareability theory