Towards Client Privacy Policy Enforcement for Small-Medium Enterprises

Author

Khurat, Assadarat ; Abendroth, Joerg ; Bracher, Shane ; Krishnan, Padmanabhan

Author_Institution

Siemens AG Corp. Technol., Munich

fYear

2007

fDate

21-23 Feb. 2007

Firstpage

319

Lastpage

324

Abstract

As information and communication technologies move towards service orientation, many small-medium enterprises (SMEs) are unlikely to consider possible security implications (such as privacy) due to their limited expertise with technology. Policies are commonly used in existing service oriented environments to secure sensitive data. However, failures such as human error, software malfunction, policy contradiction, etc. can result in privacy breaches. In this paper, we propose a privacy device based on the Fail-Safe concept to show how privacy breaches can be avoided. This device uses client-defined policies to protect data released by the service provider.

Keywords

client-server systems; data privacy; electronic commerce; open systems; security of data; small-to-medium enterprises; system recovery; client privacy policy enforcement; data protection; electronic business; fail-safe concept; information and communication technology; policy contradiction; security implication; service oriented environment; service provider; small-medium enterprise; software malfunction; system interoperability; Business; Communications technology; Data privacy; Ecosystems; Electronic mail; Engines; Humans; Proposals; Protection; Security; Fail-Safe; Privacy Policy; Service Oriented Architectures; Small-Medium Enterprises;

fLanguage

English

Publisher

ieee

Conference_Titel

Digital EcoSystems and Technologies Conference, 2007. DEST '07. Inaugural IEEE-IES

Conference_Location

Cairns

Print_ISBN

1-4244-0470-3

Electronic_ISBN

1-4244-0470-3

Type

conf

DOI

10.1109/DEST.2007.371991

Filename

4233725