Enforcing privacy as access control in a pervasive context

Aurélien Faravelon 1 Stéphanie Chollet 2, * Christine Verdier 3 Agnès Front 3, *
* Corresponding author
1 SIGMA
LIG - Laboratoire d'Informatique de Grenoble, PLC - Philosophie, Langages et Cognition
2 ADELE
LIG - Laboratoire d'Informatique de Grenoble
3 SIGMA
LIG - Laboratoire d'Informatique de Grenoble
Abstract : Pervasive applications promote a seamless integration of computer artifacts with our daily an business lives. However, they threaten privacy in two ways. Firstly, adaptation to a user's context necessitates a large collection of data. Secondly, context should be addressed when granting users access to information. This paper handles privacy management as an access control problem and argues that privacy should be specified from a global point of view. Investigating privacy specification at a high level of abstraction and its implementation leads to the proposition of a generative approach relying on model-driven engineering. This approach distinguishes a design level for privacy from its execution level. The design level provides a specification language for privacy which emphasizes its contextual features. It is implemented at the execution level as a service composition generated through model transformations. This composition gathers heterogenous entities, such as pieces of software code or devices. The approach is validated on the example of a medical workflow.
Document type :
Conference papers
CCNC 2012 - Consumer Communications and Networking Conference, Jan 2012, Las Vegas, NV, United States. IEEE, pp.380-384, <10.1109/CCNC.2012.6181011>


https://hal.archives-ouvertes.fr/hal-00745705
Contributor : Vincent Lestideau <>
Submitted on : Friday, October 26, 2012 - 11:40:28 AM
Last modification on : Tuesday, October 28, 2014 - 6:35:24 PM

File

Faravelon-Chollet-Verdier-Fron...
fileSource_public_author

Identifiers

Citation

Aurélien Faravelon, Stéphanie Chollet, Christine Verdier, Agnès Front. Enforcing privacy as access control in a pervasive context. CCNC 2012 - Consumer Communications and Networking Conference, Jan 2012, Las Vegas, NV, United States. IEEE, pp.380-384, <10.1109/CCNC.2012.6181011>. <hal-00745705>

Export

Share

Metrics

Consultation de
la notice

82

Téléchargement du document

21