A Language for the Composition of Privacy-Enforcement Techniques

Ronan-Alexandre Cherrueau 1, 2 Rémi Douence 1 Mario Südholt 2, 1
1 ASCOLA - Aspect and composition languages
LINA - Laboratoire d'Informatique de Nantes Atlantique, Département informatique - EMN, Inria Rennes – Bretagne Atlantique
Abstract : Today's large-scale computations, e.g., in the Cloud, are subject to a multitude of risks concerning the divulging and ownership of private data. Privacy risks are mainly addressed using a large variety of encryption-based techniques. However, these are costly to operate, lead to large aggregates of data that are highly valuable attack targets and do not allow to flexibly handle subsets of such aggregates. Furthermore, today's computations have to ensure privacy properties in the context over highly variable and complex software compositions; however, no general support for the declarative definition and implementation of privacy-preserving applications has been put forward. In this article, we present a compositional approach to the declarative and correct composition of privacy-preserving applications in the Cloud. Our approach provides language support for the compositional definition of encryption- and fragmentation-based privacy-preserving algorithms. This language comes equipped with a set of laws that allows us to verify privacy properties. Finally, we introduce implementation support in Scala that ensures certain privacy properties by construction using advanced features of Scala's type system.
Type de document :
Communication dans un congrès
IEEE RATSP 2015, The 2015 IEEE International Symposium on Recent Advances of Trust, Security and Privacy in Computing and Communications , Aug 2015, Helsinki, Finland. pp.1037 - 1044, 〈10.1109/Trustcom.2015.480〉
Liste complète des métadonnées

Littérature citée [18 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01168303
Contributeur : Ronan-Alexandre Cherrueau <>
Soumis le : mardi 25 août 2015 - 18:51:00
Dernière modification le : vendredi 22 juin 2018 - 09:32:26
Document(s) archivé(s) le : jeudi 26 novembre 2015 - 14:05:30

Fichier

cherrueau-ratsp-2015.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité - Partage selon les Conditions Initiales 4.0 International License

Identifiants

Citation

Ronan-Alexandre Cherrueau, Rémi Douence, Mario Südholt. A Language for the Composition of Privacy-Enforcement Techniques. IEEE RATSP 2015, The 2015 IEEE International Symposium on Recent Advances of Trust, Security and Privacy in Computing and Communications , Aug 2015, Helsinki, Finland. pp.1037 - 1044, 〈10.1109/Trustcom.2015.480〉. 〈hal-01168303〉

Partager

Métriques

Consultations de la notice

425

Téléchargements de fichiers

108