Enforcing privacy as access control in a pervasive context

Aurélien Faravelon 1 Stéphanie Chollet 2, * Christine Verdier 3 Agnès Front 3, *
* Corresponding author
LIG - Laboratoire d'Informatique de Grenoble, PLC - Philosophie, Langages et Cognition
2 LIG Laboratoire d'Informatique de Grenoble - ADELE
LIG - Laboratoire d'Informatique de Grenoble
LIG - Laboratoire d'Informatique de Grenoble
Abstract : Pervasive applications promote a seamless integration of computer artifacts with our daily an business lives. However, they threaten privacy in two ways. Firstly, adaptation to a user's context necessitates a large collection of data. Secondly, context should be addressed when granting users access to information. This paper handles privacy management as an access control problem and argues that privacy should be specified from a global point of view. Investigating privacy specification at a high level of abstraction and its implementation leads to the proposition of a generative approach relying on model-driven engineering. This approach distinguishes a design level for privacy from its execution level. The design level provides a specification language for privacy which emphasizes its contextual features. It is implemented at the execution level as a service composition generated through model transformations. This composition gathers heterogenous entities, such as pieces of software code or devices. The approach is validated on the example of a medical workflow.
Document type :
Conference papers
Liste complète des métadonnées

Cited literature [14 references]  Display  Hide  Download

Contributor : Vincent Lestideau <>
Submitted on : Friday, October 26, 2012 - 11:40:28 AM
Last modification on : Thursday, February 7, 2019 - 2:20:19 PM
Document(s) archivé(s) le : Sunday, January 27, 2013 - 3:40:07 AM


Files produced by the author(s)



Aurélien Faravelon, Stéphanie Chollet, Christine Verdier, Agnès Front. Enforcing privacy as access control in a pervasive context. CCNC 2012 - Consumer Communications and Networking Conference, Jan 2012, Las Vegas, NV, United States. pp.380-384, ⟨10.1109/CCNC.2012.6181011⟩. ⟨hal-00745705⟩



Record views


Files downloads