Towards a Formal Language for Privacy Options

Abstract : Describing complex ideas requires clear and concise languages. Many domains have developed their specific languages for describing problem instances independently from solutions and thus making a reference model of the domain available to solution developers. We contribute to the zoo of domain-specific languages within the privacy area with a language for describing data disclosure and usage contracts. Our Privacy Options Language is defined by a small number of primitives which can be composed to describe complex contracts. Our major contribution is the notion of contract rights which is based on the notion of obligations and therefore establishes both concepts as first-class language citizens in a new coherent model for privacy policy languages. Our model overcomes the traditional separation of the right and obligation notions known from access control based policy language approaches. We compare our language to the PrimeLife Policy Language and provide rules for the translation from our language to PrimeLife’s language. Then, we present a canonical form of our contracts. It is used to ensure that contracts with equal semantics have the same syntax, thus eliminating the possibility of a covert channel in the syntax revealing information about the originator. Finally, we show different ways of how to extend our language.
Type de document :
Communication dans un congrès
Simone Fischer-Hübner; Penny Duquenoy; Marit Hansen; Ronald Leenes; Ge Zhang. 6th International Summer School (ISS), Aug 2010, Helsingborg, Sweden. Springer, IFIP Advances in Information and Communication Technology, AICT-352, pp.27-40, 2011, Privacy and Identity Management for Life. 〈10.1007/978-3-642-20769-3_3〉
Liste complète des métadonnées

Littérature citée [14 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01559467
Contributeur : Hal Ifip <>
Soumis le : lundi 10 juillet 2017 - 16:49:36
Dernière modification le : mardi 11 juillet 2017 - 08:41:04
Document(s) archivé(s) le : mercredi 24 janvier 2018 - 18:01:19

Fichier

978-3-642-20769-3_3_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Stefan Berthold. Towards a Formal Language for Privacy Options. Simone Fischer-Hübner; Penny Duquenoy; Marit Hansen; Ronald Leenes; Ge Zhang. 6th International Summer School (ISS), Aug 2010, Helsingborg, Sweden. Springer, IFIP Advances in Information and Communication Technology, AICT-352, pp.27-40, 2011, Privacy and Identity Management for Life. 〈10.1007/978-3-642-20769-3_3〉. 〈hal-01559467〉

Partager

Métriques

Consultations de la notice

245

Téléchargements de fichiers

19