Purpose is crucial for privacy protection as it makes users confident that their personal data are processed as intended. Available proposals for the specification and enforcement of purpose-aware policies are unsatisfactory for their ambiguous semantics of purposes and/or lack of support to the run-time enforcement of policies. In this paper, we propose a declarative framework based on a first-order temporal logic that allows us to give a precise semantics to purpose-aware policies and to reuse algorithms for the design of a run-time monitor enforcing purpose-aware policies. We also show the complexity of the generation and use of the monitor which, to the best of our knowledge, is the first such a result in literature on purpose-aware policies.

A declarative framework for specifying and enforcing purpose-aware policies / De Masellis, R.; Ghidini, C.; Ranise, S.. - 9331:(2015), pp. 55-71. (Intervento presentato al convegno 11th International Workshop on Security and Trust Management, STM 2015 tenutosi a aut nel 2015) [10.1007/978-3-319-24858-5_4].

A declarative framework for specifying and enforcing purpose-aware policies

Ranise S.
2015-01-01

Abstract

Purpose is crucial for privacy protection as it makes users confident that their personal data are processed as intended. Available proposals for the specification and enforcement of purpose-aware policies are unsatisfactory for their ambiguous semantics of purposes and/or lack of support to the run-time enforcement of policies. In this paper, we propose a declarative framework based on a first-order temporal logic that allows us to give a precise semantics to purpose-aware policies and to reuse algorithms for the design of a run-time monitor enforcing purpose-aware policies. We also show the complexity of the generation and use of the monitor which, to the best of our knowledge, is the first such a result in literature on purpose-aware policies.
2015
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
GEWERBESTRASSE 11, CHAM, CH-6330, SWITZERLAND
Springer Verlag
978-3-319-24857-8
978-3-319-24858-5
De Masellis, R.; Ghidini, C.; Ranise, S.
A declarative framework for specifying and enforcing purpose-aware policies / De Masellis, R.; Ghidini, C.; Ranise, S.. - 9331:(2015), pp. 55-71. (Intervento presentato al convegno 11th International Workshop on Security and Trust Management, STM 2015 tenutosi a aut nel 2015) [10.1007/978-3-319-24858-5_4].
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/332998
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 8
  • ???jsp.display-item.citation.isi??? 6
social impact