Mandatory enforcement of privacy policies using trusted computing principles

vts_7278_10292.pdf (387.7Kb)
6 Seiten
6 Seiten
peer-reviewed
Veröffentlichung
2010-06-02Authors
Kargl, Frank
Schaub, Florian
Dietzel, Stefan
Beitrag zu einer Konferenz
Faculties
Fakultät für Ingenieurwissenschaften und InformatikConference
AAAI 2010 Spring Symposium, 2010-03-22 - 2010-03-24, Palo Alto, CA
Abstract
Modern communication systems and information technology create significant new threats to information privacy. In this paper, we discuss the need for proper privacy protection in cooperative intelligent transportation systems (cITS), one instance of such systems. We outline general principles for data protection and their legal basis and argue why pure legal protection is insufficient. Strong privacy-enhancing technologies need to be deployed in cITS to protect user data while it is generated and processed. As data minimization cannot always prevent the need for disclosing relevant personal information, we introduce the new concept of mandatory enforcement of privacy policies. This concept empowers users and data subjects to tightly couple their data with privacy policies and rely on the system to impose such policies onto any data processors. We also describe the PRECIOSA Privacy-enforcing Runtime Architecture that exemplifies our approach. Moreover, we show how an application can utilize this architecture by applying it to a pay as you drive (PAYD) car insurance scenario.
Date created
2010
Original publication
Privacy 2010 : Proceedings of the Intelligent Information Privacy Management Symposium, AAAI Spring Symposium, Stanford University, USA, March 2010http://www.aaai.org/Press/Reports/Symposia/Spring/ss-10-05.php
Subject headings
[GND]: Datenschutz | Privatsphäre | Trusted Computing[LCSH]: Privacy
[Free subject headings]: ITS | Policy enforcement
[DDC subject group]: DDC 004 / Data processing & computer science
Metadata
Show full item recordDOI & citation
Please use this identifier to cite or link to this item: http://dx.doi.org/10.18725/OPARU-1726
Kargl, Frank; Schaub, Florian; Dietzel, Stefan (2010): Mandatory enforcement of privacy policies using trusted computing principles. Open Access Repositorium der Universität Ulm und Technischen Hochschule Ulm. http://dx.doi.org/10.18725/OPARU-1726
Citation formatter >