S. Bandopadhyay, T. Dimitrakos, Yair Diaz, Alicia Y Hariri, Tezcan Dilshener, Antonio La Marra, A. Rosetti
{"title":"DataPAL:数据保护和授权生命周期框架","authors":"S. Bandopadhyay, T. Dimitrakos, Yair Diaz, Alicia Y Hariri, Tezcan Dilshener, Antonio La Marra, A. Rosetti","doi":"10.1109/SEEDA-CECNSM53056.2021.9566212","DOIUrl":null,"url":null,"abstract":"This paper introduces a new model for handling data privacy throughout data lifecycle via the introduction of a policy profile using the Abbreviated Language For Authorization (ALFA) policy language. Our approach extends previous models In three complementary ways: (1) By introducing Administration and Delegation Profile (ADP) in ALFA policy where users and companies can restrict the scope of access/usage policies related to data as well as specify a chain of custody for data (moreover such an approach eases up the tasks of handling users' consent); (2) Thanks to our framework Usage Control System Plus (UCS+) users can monitor the usage of data and revoke its usage upon specific conditions or at will; (3) By introducing new states for policy evaluation, i.e. Admissible/NotAdmissible to filter out those applicable policies that were unauthorized in the first place.","PeriodicalId":68279,"journal":{"name":"计算机工程与设计","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2021-09-24","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"DataPAL: Data Protection and Authorization Lifecycle framework\",\"authors\":\"S. Bandopadhyay, T. Dimitrakos, Yair Diaz, Alicia Y Hariri, Tezcan Dilshener, Antonio La Marra, A. Rosetti\",\"doi\":\"10.1109/SEEDA-CECNSM53056.2021.9566212\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This paper introduces a new model for handling data privacy throughout data lifecycle via the introduction of a policy profile using the Abbreviated Language For Authorization (ALFA) policy language. Our approach extends previous models In three complementary ways: (1) By introducing Administration and Delegation Profile (ADP) in ALFA policy where users and companies can restrict the scope of access/usage policies related to data as well as specify a chain of custody for data (moreover such an approach eases up the tasks of handling users' consent); (2) Thanks to our framework Usage Control System Plus (UCS+) users can monitor the usage of data and revoke its usage upon specific conditions or at will; (3) By introducing new states for policy evaluation, i.e. Admissible/NotAdmissible to filter out those applicable policies that were unauthorized in the first place.\",\"PeriodicalId\":68279,\"journal\":{\"name\":\"计算机工程与设计\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-09-24\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"计算机工程与设计\",\"FirstCategoryId\":\"1093\",\"ListUrlMain\":\"https://doi.org/10.1109/SEEDA-CECNSM53056.2021.9566212\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"计算机工程与设计","FirstCategoryId":"1093","ListUrlMain":"https://doi.org/10.1109/SEEDA-CECNSM53056.2021.9566212","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
摘要
本文通过引入使用缩写授权语言(缩写Language for Authorization, ALFA)策略语言的策略概要,介绍了一个在整个数据生命周期中处理数据隐私的新模型。我们的方法以三种互补的方式扩展了以前的模型:(1)通过在ALFA政策中引入管理和授权配置文件(ADP),用户和公司可以限制与数据相关的访问/使用政策的范围,并指定数据的监管链(此外,这种方法简化了处理用户同意的任务);(2)由于我们的框架使用控制系统Plus (UCS+),用户可以监控数据的使用情况,并在特定情况下或随意撤销其使用;(3)通过引入新的状态进行策略评估,即adeable / notadeable,过滤掉那些一开始就未经授权的适用策略。
DataPAL: Data Protection and Authorization Lifecycle framework
This paper introduces a new model for handling data privacy throughout data lifecycle via the introduction of a policy profile using the Abbreviated Language For Authorization (ALFA) policy language. Our approach extends previous models In three complementary ways: (1) By introducing Administration and Delegation Profile (ADP) in ALFA policy where users and companies can restrict the scope of access/usage policies related to data as well as specify a chain of custody for data (moreover such an approach eases up the tasks of handling users' consent); (2) Thanks to our framework Usage Control System Plus (UCS+) users can monitor the usage of data and revoke its usage upon specific conditions or at will; (3) By introducing new states for policy evaluation, i.e. Admissible/NotAdmissible to filter out those applicable policies that were unauthorized in the first place.