PPL: PrimeLife Privacy Policy Engine

Author

Trabelsi, Slim ; Sendor, Jakub ; Reinicke, Stefanie

Author_Institution

SAP Res. France, Mougins, France

fYear

2011

fDate

6-8 June 2011

Firstpage

184

Lastpage

185

Abstract

Web 2.0 introduces new breaches in the privacy protection of personal data. Most of the users of such Internet media are not aware about the risks of publishing personal information. These threats can lead to identity thefts, scams, and cyber criminal attacks. In this paper we propose a framework, based on a privacy policy language called PPL (Primelife Policy Language), in which every user can control his personal information by imposing access and usage control restrictions. Sticky policies are used in order to keep the trace ability of these privacy constrains when the data is travelling from a domain to another. In this paper we detail the demo that shows how the user can express his privacy preferences, how the servers will comply with the privacy constraints stated in the sticky policies and how the data is shared with third parties according to the user´s whishes.

Keywords

Internet; authorisation; data privacy; user interfaces; Internet media; PPL privacy policy language; Primelife policy language; Web 2.0; access control restriction; personal data privacy protection; privacy constraint; usage control restriction; Access control; Data handling; Data privacy; Electronic mail; Engines; Privacy; Servers; Access Control; Data Handling; Obligations; PPL; Policy; Privacy; Usage Control;

fLanguage

English

Publisher

ieee

Conference_Titel

Policies for Distributed Systems and Networks (POLICY), 2011 IEEE International Symposium on

Conference_Location

Pisa

Print_ISBN

978-1-4244-9879-6

Electronic_ISBN

978-0-7695-4330-7

Type

conf

DOI

10.1109/POLICY.2011.24

Filename

5976824