The Community for Technology Leaders
2014 IEEE International Conference on Big Data and Cloud Computing (BdCloud) (2014)
Sydney, Australia
Dec. 3, 2014 to Dec. 5, 2014
ISBN: 978-1-4799-6719-3
pp: 753-760
N. V. Narendra Kumar , Sch. of Technol. & Comput. Sci., Tata Inst. of Fundamental Res., Mumbai, India
R. K. Shyamasundar , Sch. of Technol. & Comput. Sci., Tata Inst. of Fundamental Res., Mumbai, India
ABSTRACT
Privacy policies are often defined in terms of purposes for which the information may be used. Recent work on specification and enforcement of purpose-based privacy policies proceeds by expressing purpose constraints using modal logics for defining when a sequence of actions is "only for" and "not for" a purpose, where a purpose is modelled using either Markov decision processes or workflows. In this paper, we argue that purpose-based privacy policies can be naturally captured by assigning labels to subjects and objects for tracking the information flows in the system. We model the underlying application in terms of information flow diagrams, and demonstrate the advantages of these diagrams for specifying and enforcing purpose restrictions. Note that, most of the existing work assigns purpose annotations to actions and discusses privacy in terms of human users of the information system. In contrast, our work explicitly recognizes the significance of many-to-many relations between actions and subjects (computer programs as opposed to human users) and between actions and data for enforcing purpose restrictions in privacy policies. We illustrate our approach through examples and compare it with existing literature.
INDEX TERMS
Privacy, Hospitals, Data privacy, Security, Information systems, Lattices
CITATION

N. V. Kumar and R. K. Shyamasundar, "Realizing Purpose-Based Privacy Policies Succinctly via Information-Flow Labels," 2014 IEEE International Conference on Big Data and Cloud Computing (BdCloud)(BDCLOUD), Sydney, Australia, 2015, pp. 753-760.
doi:10.1109/BDCloud.2014.89
170 ms
(Ver 3.3 (11022016))