A System to Prevent Multi-users and Multi-sessions Attack to Breach Privacy Policies in a Trust-End Filter

Author

Canfora, Gerardo ; Visaggio, Corrado Aaron

Author_Institution

Dept. of Eng., Univ. of Sannio, Benevento

fYear

2008

fDate

July 28 2008-Aug. 1 2008

Firstpage

961

Lastpage

966

Abstract

Among the different technological solutions realized in order to preserve data privacy, the front end trust filter could be effectively applied in environments characterized by high dynamism and untrustworthiness. Unfortunately, a preliminary assessment of this approach suggested a possible weakness: by using different user´s profiles the privacy policy can be eluded and sensitive information could be obtained by inference over legal data set. This paper proposes a solution that could be helpful for two purposes: it could be used in the design phase for identifying which use scenarios (i.e., sequences of legal queries) could threaten data privacy; additionally, it could be used for identifying users which could potentially exploit inference for disclosing confidential information.

Keywords

data privacy; information filters; security of data; confidential information; data privacy; front end trust filter; legal queries; multisession attack; multiuser attack; privacy policy breach; sensitive information; trust-end filter; user profile; Application software; Computer applications; Control systems; Costs; Data privacy; Databases; Filters; Law; Legal factors; Scalability; data privacy; front end trust filter;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Software and Applications, 2008. COMPSAC '08. 32nd Annual IEEE International

Conference_Location

Turku

ISSN

0730-3157

Print_ISBN

978-0-7695-3262-2

Electronic_ISBN

0730-3157

Type

conf

DOI

10.1109/COMPSAC.2008.202

Filename

4591702