loading
Documents

Research.Publish.Connect.

Paper

Authors: Francesco Di Cerbo 1 ; Fabio Martinelli 2 ; Ilaria Matteucci 2 and Paolo Mori 2

Affiliations: 1 Security Research, SAP and France ; 2 IIT-CNR and Italy

ISBN: 978-989-758-324-7

Keyword(s): Personal Data Protection, GDPR, Privacy, Security.

Abstract: Virtually any online website or service has a rising need for data protection mechanisms, especially for personal data, considering initiatives such as the new General Data Protection Regulation to operate on the EU economic space, or the Cybersecurity Law for the Chinese market. It seems therefore necessary to dispose of mechanisms that help both users, as well as legal experts and practitioners to automatically manage the processing of personal and sensitive data in a secure and compliant manner, to reduce the probability of human errors. To this aim, we show here our initial proposal for an automatically enforceable policy language, UPOL, for access and usage control of personal information, aiming at transparent and accountable data usage. UPOL extends and combines previous research results, U-XACML and PPL, and it is part of a more general proposal to regulate multi-party data sharing operations. A use case is proposed, considering challenges brought by the new EU’s GDPR.

PDF ImageFull Text

Download
Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.90.204.40

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Di Cerbo, F.; Martinelli, F.; Matteucci, I. and Mori, P. (2018). Towards a Declarative Approach to Stateful and Stateless Usage Control for Data Protection.In Proceedings of the 14th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST, ISBN 978-989-758-324-7, pages 308-315. DOI: 10.5220/0006962503080315

@conference{webist18,
author={Francesco Di Cerbo. and Fabio Martinelli. and Ilaria Matteucci. and Paolo Mori.},
title={Towards a Declarative Approach to Stateful and Stateless Usage Control for Data Protection},
booktitle={Proceedings of the 14th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,},
year={2018},
pages={308-315},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006962503080315},
isbn={978-989-758-324-7},
}

TY - CONF

JO - Proceedings of the 14th International Conference on Web Information Systems and Technologies - Volume 1: WEBIST,
TI - Towards a Declarative Approach to Stateful and Stateless Usage Control for Data Protection
SN - 978-989-758-324-7
AU - Di Cerbo, F.
AU - Martinelli, F.
AU - Matteucci, I.
AU - Mori, P.
PY - 2018
SP - 308
EP - 315
DO - 10.5220/0006962503080315

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.