Automated Log Audits for Privacy Compliance Validation: A Literature Survey

Abstract : Log audits are the technical means to retrospectively reconstruct and analyze system activities for determining if the system is executed in accordance with the rules. This approach to compliance is referred to as compliance by detection. In the case of privacy adherence validation (or) privacy audits, the rules for compliance are less well defined and more contextual than in the case of traditional security audit. The aim of the paper is to understand the aims, techniques and challenges for realizing privacy compliance by detection. Using systematic literature review as the research tool we described the state-of-art privacy auditing approaches through taxonomies. We present two taxonomies, (i) classified in terms of auditing techniques and (ii) classified in terms of audit objectives. Following the observation gained from the state-of-the art we discuss challenges and suggest guidelines for utilizing log-based automated privacy audits.
Type de document :
Chapitre d'ouvrage
David Aspinall; Jan Camenisch; Marit Hansen; Simone Fischer-Hübner; Charles Raab. Privacy and Identity Management. Time for a Revolution? : 10th IFIP WG 9.2, 9.5, 9.6/11.7, 11.4, 11.6/SIG 9.2.2 International Summer School, Edinburgh, UK, August 16-21, 2015, Revised Selected Papers, AICT-476, Springer International Publishing, pp.312-326, 2016, IFIP Advances in Information and Communication Technology, 978-3-319-41762-2. 〈10.1007/978-3-319-41763-9_21〉
Liste complète des métadonnées

Littérature citée [23 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01619730
Contributeur : Hal Ifip <>
Soumis le : jeudi 19 octobre 2017 - 16:08:20
Dernière modification le : jeudi 19 octobre 2017 - 16:26:19
Document(s) archivé(s) le : samedi 20 janvier 2018 - 13:17:32

Fichier

 Accès restreint
Fichier visible le : 2019-01-01

Connectez-vous pour demander l'accès au fichier

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Jenni Reuben, Leonardo Martucci, Simone Fischer-Hübner. Automated Log Audits for Privacy Compliance Validation: A Literature Survey. David Aspinall; Jan Camenisch; Marit Hansen; Simone Fischer-Hübner; Charles Raab. Privacy and Identity Management. Time for a Revolution? : 10th IFIP WG 9.2, 9.5, 9.6/11.7, 11.4, 11.6/SIG 9.2.2 International Summer School, Edinburgh, UK, August 16-21, 2015, Revised Selected Papers, AICT-476, Springer International Publishing, pp.312-326, 2016, IFIP Advances in Information and Communication Technology, 978-3-319-41762-2. 〈10.1007/978-3-319-41763-9_21〉. 〈hal-01619730〉

Partager

Métriques

Consultations de la notice

19