The Life-Cycle Policy model

Nicolas Anciaux 1, 2 Luc Bouganim 1, 2 Harold Van Heerde 3 Philippe Pucheral 1, 2 Peter Apers 3
1 SMIS - Secured and Mobile Information Systems
PRISM - Parallélisme, Réseaux, Systèmes, Modélisation, UVSQ - Université de Versailles Saint-Quentin-en-Yvelines, Inria Paris-Rocquencourt, CNRS - Centre National de la Recherche Scientifique : UMR8144
Abstract : Our daily life activity leaves digital trails in an increasing number of databases (commercial web sites, internet service providers, search engines, location tracking systems, etc). Personal digital trails are commonly exposed to accidental disclosures resulting from negligence or piracy and to ill-intentioned scrutinization and abusive usages fostered by fuzzy privacy policies. No one is sheltered because a single event (e.g., applying for a job or a credit) can suddenly make our history a precious asset. By definition, access control fails preventing trail disclosures, motivating the integration of the Limited Data Retention principle in legislations protecting data privacy. By this principle, data is withdrawn from a database after a predefined time period. However, this principle is difficult to apply in practice, leading to retain useless sensitive information for years in databases. In this paper, we propose a simple and practical data degradation model where sensitive data undergoes a progressive and irreversible degradation from an accurate state at collection time, to intermediate but still informative degraded states, up to complete disappearance when the data becomes useless. The benefits of data degradation is twofold: (i) by reducing the amount of accurate data, the privacy offence resulting from a trail disclosure is drastically reduced and (ii) degrading the data in line with the application purposes offers a new compromise between privacy preservation and application reach. We introduce in this paper a data degradation model, analyze its impact over core database techniques like storage, indexation and transaction management and propose degradation-aware techniques.
Type de document :
Rapport
[Research Report] RR-6577, INRIA. 2008
Liste complète des métadonnées

https://hal.inria.fr/inria-00294718
Contributeur : Nicolas Anciaux <>
Soumis le : jeudi 10 juillet 2008 - 12:29:33
Dernière modification le : vendredi 25 mai 2018 - 12:02:04
Document(s) archivé(s) le : vendredi 28 mai 2010 - 21:37:16

Fichier

RR-6577.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00294718, version 1

Collections

Citation

Nicolas Anciaux, Luc Bouganim, Harold Van Heerde, Philippe Pucheral, Peter Apers. The Life-Cycle Policy model. [Research Report] RR-6577, INRIA. 2008. 〈inria-00294718〉

Partager

Métriques

Consultations de la notice

242

Téléchargements de fichiers

119