| 1. |
- Andersson, Christer, et al.
(författare)
-
Trust in PRIME
- 2005
-
Ingår i: Proceedings of the 5<sup>th </sup>IEEE International Symposium on Signal Processing and IT. - : IEEE conference proceedings. - 0780393139 ; , s. 552-559
-
Konferensbidrag (övrigt vetenskapligt/konstnärligt)abstract
- The PRIME project develops privacy enhancing identity management systems that allow users in various application areas such as e-commerce to regain control over their personal spheres. This paper introduces the PRIME technical architecture that also includes special trust-enhancing mechanisms, and shows how PRIME technologies can enhance privacy and trust of e-shopping customers. It also discusses the socio-psychological factors and HCI aspects influencing the end user's trust in privacy enhancing identity management, and shows why HCI research, user studies, and socio-psychological research, are necessary efforts to accompany system design.
|
|
| 2. |
- Fischer Hübner, Simone, 1963-, et al.
(författare)
-
Human-Computer Interaction
- 2011
-
Ingår i: Digital privacy. - Berlin, Heidelberg : Springer. - 9783642190490 ; , s. 569-595
-
Bokkapitel (refereegranskat)
|
|
| 3. |
- Pearson, Siani, et al.
(författare)
-
Accountability for cloud and other future Internet services
- 2012
-
Ingår i: 2012 IEEE 4th International Conference on Cloud Computing Technology and Science (CloudCom). - : IEEE. - 9781467345118 - 9781467345095 ; , s. 629-632
-
Konferensbidrag (refereegranskat)abstract
- Cloud and IT service providers should act as responsible stewards for the data of their customers and users. However, the current absence of accountability frameworks for distributed IT services makes it difficult for users to understand, influence and determine how their service providers honour their obligations. The A4Cloud project will create solutions to support users in deciding and tracking how their data is used by cloud service providers. By combining methods of risk analysis, policy enforcement, monitoring and compliance auditing with tailored IT mechanisms for security, assurance and redress, A4Cloud aims to extend accountability across entire cloud service value chains, covering personal and business sensitive information in the cloud
|
|
| 4. |
|
|
| 5. |
- Reuben, Jenni, 1983-
(författare)
-
Privacy-aware Use of Accountability Evidence
- 2017
-
Licentiatavhandling (övrigt vetenskapligt/konstnärligt)abstract
- This thesis deals with the evidence that enable accountability, the privacy risks involved in using them and a privacy-aware solution to the problem of unauthorized evidence disclosure. Legal means to protect privacy of an individual is anchored on the data protection perspective i.e., on the responsible collection and use of personal data. Accountability plays a crucial role in such legal privacy frameworks for assuring an individual’s privacy. In the European context, accountability principle is pervasive in the measures that are mandated by the General Data Protection Regulation. In general, these measures are technically achieved through automated privacy audits. System traces that record the system activities are the essential inputs to those automated audits. Nevertheless, the traces that enable accountability are themselves subject to privacy risks, because in most cases, they inform about processing of the personal data. Therefore, ensuring the privacy of the accountability traces is equally important as ensuring the privacy of the personal data. However, by and large, research involving accountability traces is concerned with storage, interoperability and analytics challenges rather than on the privacy implications involved in processing them.This dissertation focuses on both the application of accountability evidence such as in the automated privacy audits and the privacy aware use of them. The overall aim of the thesis is to provide a conceptual understanding of the privacy compliance research domain and to contribute to the solutions that promote privacy-aware use of the traces that enable accountability. To address the first part of the objective, a systematic study of existing body of knowledge on automated privacy compliance is conducted. As a result, the state-of-the-art is conceptualized as taxonomies. The second part of the objective is accomplished through two results; first, a systematic understanding of the privacy challenges involved in processing of the system traces is obtained, second, a model for privacy aware access restrictions are proposed and formalized in order to prevent illegitimate access to the system traces. Access to accountability traces such as provenance are required for automatic fulfillment of accountability obligations, but they themselves contain personally identifiable information, hence in this thesis we provide a solution to prevent unauthorized access to the provenance traces.
|
|
