Mandatory enforcement of privacy policies using trusted computing principles

vts_7278_10292.pdf (387.7Kb)
6 Seiten
6 Seiten
peer-reviewed
Veröffentlichung
2010-06-02Autoren
Kargl, Frank
Schaub, Florian
Dietzel, Stefan
Beitrag zu einer Konferenz
Fakultäten
Fakultät für Ingenieurwissenschaften und InformatikKonferenz
AAAI 2010 Spring Symposium, 2010-03-22 - 2010-03-24, Palo Alto, CA
Zusammenfassung
Modern communication systems and information technology create significant new threats to information privacy. In this paper, we discuss the need for proper privacy protection in cooperative intelligent transportation systems (cITS), one instance of such systems. We outline general principles for data protection and their legal basis and argue why pure legal protection is insufficient. Strong privacy-enhancing technologies need to be deployed in cITS to protect user data while it is generated and processed. As data minimization cannot always prevent the need for disclosing relevant personal information, we introduce the new concept of mandatory enforcement of privacy policies. This concept empowers users and data subjects to tightly couple their data with privacy policies and rely on the system to impose such policies onto any data processors. We also describe the PRECIOSA Privacy-enforcing Runtime Architecture that exemplifies our approach. Moreover, we show how an application can utilize this architecture by applying it to a pay as you drive (PAYD) car insurance scenario.
Erstellung / Fertigstellung
2010
Originalpublikation
Privacy 2010 : Proceedings of the Intelligent Information Privacy Management Symposium, AAAI Spring Symposium, Stanford University, USA, March 2010http://www.aaai.org/Press/Reports/Symposia/Spring/ss-10-05.php
Schlagwörter
[GND]: Datenschutz | Privatsphäre | Trusted Computing[LCSH]: Privacy
[Freie Schlagwörter]: ITS | Policy enforcement
[DDC Sachgruppe]: DDC 004 / Data processing & computer science
Metadata
Zur LanganzeigeDOI & Zitiervorlage
Nutzen Sie bitte diesen Identifier für Zitate & Links: http://dx.doi.org/10.18725/OPARU-1726
Kargl, Frank; Schaub, Florian; Dietzel, Stefan (2010): Mandatory enforcement of privacy policies using trusted computing principles. Open Access Repositorium der Universität Ulm und Technischen Hochschule Ulm. http://dx.doi.org/10.18725/OPARU-1726
Verschiedene Zitierstile >