This paper introduces a new model for handling data privacy throughout data lifecycle via the introduction of a policy profile using the Abbreviated Language For Authorization (ALFA) policy language. Our approach extends previous models In three complementary ways: (1) By introducing Administration and Delegation Profile (ADP) in ALFA policy where users and companies can restrict the scope of access/usage policies related to data as well as specify a chain of custody for data (moreover such an approach eases up the tasks of handling users' consent); (2) Thanks to our framework Usage Control System Plus (UCS+) users can monitor the usage of data and revoke its usage upon specific conditions or at will; (3) By introducing new states for policy evaluation, i.e. Admissible/NotAdmissible to filter out those applicable policies that were unauthorized in the first place.

DataPAL: Data Protection and Authorization Lifecycle framework / Bandopadhyay, Subhajit; Dimitrakos, Theo; Diaz, Yair; Hariri, Ali; Dilshener, Tezcan; La Marra, Antonio; Rosetti, Alessandro. - (2021), pp. 1-8. (Intervento presentato al convegno South-East Europe Design Automation, Computer Engineering, Computer Networks and Social Media Conference (SEEDA-CECNSM) tenutosi a Greece nel 24-26 September, 2021) [10.1109/SEEDA-CECNSM53056.2021.9566212].

DataPAL: Data Protection and Authorization Lifecycle framework

Hariri, Ali
Secondo
;
2021-01-01

Abstract

This paper introduces a new model for handling data privacy throughout data lifecycle via the introduction of a policy profile using the Abbreviated Language For Authorization (ALFA) policy language. Our approach extends previous models In three complementary ways: (1) By introducing Administration and Delegation Profile (ADP) in ALFA policy where users and companies can restrict the scope of access/usage policies related to data as well as specify a chain of custody for data (moreover such an approach eases up the tasks of handling users' consent); (2) Thanks to our framework Usage Control System Plus (UCS+) users can monitor the usage of data and revoke its usage upon specific conditions or at will; (3) By introducing new states for policy evaluation, i.e. Admissible/NotAdmissible to filter out those applicable policies that were unauthorized in the first place.
2021
2021 6th South-East Europe Design Automation, Computer Engineering, Computer Networks and Social Media Conference (SEEDA-CECNSM)
Piscataway, NJ USA
IEEE
978-1-6654-2742-5
Bandopadhyay, Subhajit; Dimitrakos, Theo; Diaz, Yair; Hariri, Ali; Dilshener, Tezcan; La Marra, Antonio; Rosetti, Alessandro
DataPAL: Data Protection and Authorization Lifecycle framework / Bandopadhyay, Subhajit; Dimitrakos, Theo; Diaz, Yair; Hariri, Ali; Dilshener, Tezcan; La Marra, Antonio; Rosetti, Alessandro. - (2021), pp. 1-8. (Intervento presentato al convegno South-East Europe Design Automation, Computer Engineering, Computer Networks and Social Media Conference (SEEDA-CECNSM) tenutosi a Greece nel 24-26 September, 2021) [10.1109/SEEDA-CECNSM53056.2021.9566212].
File in questo prodotto:
File Dimensione Formato  
datapal.pdf

Solo gestori archivio

Tipologia: Post-print referato (Refereed author’s manuscript)
Licenza: Tutti i diritti riservati (All rights reserved)
Dimensione 493.12 kB
Formato Adobe PDF
493.12 kB Adobe PDF   Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/364257
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 2
  • ???jsp.display-item.citation.isi??? ND
social impact