A Language for the Composition of Privacy-Enforcement Techniques

Ronan-Alexandre Cherrueau 1, 2 Rémi Douence 1 Mario Südholt 2, 1
1 ASCOLA - Aspect and composition languages
Inria Rennes – Bretagne Atlantique , Département informatique - EMN, LINA - Laboratoire d'Informatique de Nantes Atlantique
Abstract : Today's large-scale computations, e.g., in the Cloud, are subject to a multitude of risks concerning the divulging and ownership of private data. Privacy risks are mainly addressed using a large variety of encryption-based techniques. However, these are costly to operate, lead to large aggregates of data that are highly valuable attack targets and do not allow to flexibly handle subsets of such aggregates. Furthermore, today's computations have to ensure privacy properties in the context over highly variable and complex software compositions; however, no general support for the declarative definition and implementation of privacy-preserving applications has been put forward. In this article, we present a compositional approach to the declarative and correct composition of privacy-preserving applications in the Cloud. Our approach provides language support for the compositional definition of encryption- and fragmentation-based privacy-preserving algorithms. This language comes equipped with a set of laws that allows us to verify privacy properties. Finally, we introduce implementation support in Scala that ensures certain privacy properties by construction using advanced features of Scala's type system.
Document type :
Conference papers
Complete list of metadatas

Cited literature [18 references]  Display  Hide  Download

https://hal.inria.fr/hal-01168303
Contributor : Ronan-Alexandre Cherrueau <>
Submitted on : Tuesday, August 25, 2015 - 6:51:00 PM
Last modification on : Wednesday, December 5, 2018 - 1:22:11 AM
Long-term archiving on : Thursday, November 26, 2015 - 2:05:30 PM

File

cherrueau-ratsp-2015.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution - ShareAlike 4.0 International License

Identifiers

Citation

Ronan-Alexandre Cherrueau, Rémi Douence, Mario Südholt. A Language for the Composition of Privacy-Enforcement Techniques. IEEE RATSP 2015, The 2015 IEEE International Symposium on Recent Advances of Trust, Security and Privacy in Computing and Communications , Aug 2015, Helsinki, Finland. pp.1037 - 1044, ⟨10.1109/Trustcom.2015.480⟩. ⟨hal-01168303⟩

Share

Metrics

Record views

752

Files downloads

197