Title :
Personal data anonymization for security and privacy in collaborative environments
Author :
El Kalam, Anas Abou ; Deswarte, Yves ; Trouessin, Gilles ; Cordonnier, Emmanuel
Author_Institution :
LIFO, ENSI Bourges
Abstract :
Nowadays, more and more applications use sensitive and personal information. Subsequently, hiding identities and respecting citizens´ privacy are becoming extremely important. Dedicated to this issue, this paper is organized as follows: after defining the topic through an example of collaborative complex and heterogeneous system, this paper analyzes the most typical anonymization procedures. Afterwards it proposes a rigorous approach to define anonymization requirements, as well as how to characterize, select and build solutions. Finally, a new generic procedure to anonymize and link identities is proposed. We suggest that a critical part of this procedure is carried out in a smart card. According to needs, anonymized data are processed through cryptographic transformations in several organizations. Our solution is suitable to collaborative environments; guarantees the user´s consent; resists dictionary attacks; respects the least privilege principle and thus fulfils the legislation requirements. Moreover, it remains flexible, adaptable to different fields, and supports some organizational changes like the merging of several systems
Keywords :
data privacy; groupware; health care; legislation; medical administrative data processing; security of data; collaborative environment; cryptographic transformation; data privacy; data security; legislation requirements; organizational change; personal data anonymization; smart card; Collaboration; Cryptography; Data privacy; Data security; Dictionaries; Information security; Legislation; Merging; Resists; Smart cards;
Conference_Titel :
Collaborative Technologies and Systems, 2005. Proceedings of the 2005 International Symposium on
Conference_Location :
St Louis, MO
Print_ISBN :
0-7695-2387-0
DOI :
10.1109/ISCST.2005.1553294
