Technical Enforcement of European Privacy Legislation: An Access Control Approach

Author

Bekara, Kheira ; Laurent, Maryline ; Nguyen, Than Ha

Author_Institution

Inst. Telecom, Telecom SudParis, Evry, France

fYear

2012

fDate

7-10 May 2012

Firstpage

1

Lastpage

7

Abstract

Until today, the protection of personal data is mainly left to the legislation by means of guidelines. This paper aims to increase the perceived control by users over their data by helping the user´s agent to check the service requests conformity to the legislation. To do so, it discusses the main concepts involved in the legislative privacy principles, and deduces a privacy semantic information model. The proposed model focuses on the main concepts involved in legislative privacy principles. For proof of concept, we describe our proposed privacy semantic information model by means of privacy ontology. We use OWL as an implementation basis for defining privacy knowledge base, and SQWRL and the Jess rule engine to dynamically interact with that base and enforce legislative requirements as privacy access control rules.

Keywords

authorisation; data privacy; knowledge based systems; knowledge representation languages; legislation; ontologies (artificial intelligence); European privacy legislation; Jess rule engine; OWL; SQWRL; access control approach; legislative privacy principles; personal data protection; privacy knowledge base; privacy ontology; privacy semantic information model; service requests conformity check; Access control; Data privacy; Legislation; OWL; Ontologies; Privacy; Semantics;

fLanguage

English

Publisher

ieee

Conference_Titel

New Technologies, Mobility and Security (NTMS), 2012 5th International Conference on

Conference_Location

Istanbul

ISSN

2157-4952

Print_ISBN

978-1-4673-0228-9

Electronic_ISBN

2157-4952

Type

conf

DOI

10.1109/NTMS.2012.6208724

Filename

6208724