A privacy preserving assertion based policy language for federation systems

Saygın, Yücel (2007) A privacy preserving assertion based policy language for federation systems. In: 12th ACM Symposium on Access Control Models and Technologies, Sophia Antipolis, France

Full text not available from this repository. (Request a copy)

Abstract

Identity federation systems enable participating organizations to provide services to qualified individuals and manage their identity attributes at an inter-organizational level. Most importantly, they empower individuals with control over the usage of their attributes within the federation via enforcement of various policies. Among such policies, one of the most important yet immature one is the privacy policy. Existing frameworks proposed for privacy-preserving federations lack the capability to support complex data-usage preferences in the form of obligations, i.e. the privacy related actions that must be performed upon certain actions on a specific piece of information. Moreover, they do not account for the history of events resulting from the interactions among federation entities. To address these deficiencies we propose an extension to an existing assertion based policy language. More specifically, we provide a new set of assertions to define the privacy related properties of a federation system. We extend the com-mon definition of privacy preference policies with obligation preferences. Finally, we illustrate how the proposed framework is realized among service providers to ensure proper enforcement of privacy policies and obligations.
Item Type: Papers in Conference Proceedings
Additional Information: Source: Symposium on Access Control Models and Technologies archive - Proceedings of the 12th ACM symposium on Access control models and technologies - Session: Privacy management
Uncontrolled Keywords: digital identity management, privacy
Divisions: Faculty of Engineering and Natural Sciences
Depositing User: Yücel Saygın
Date Deposited: 31 Oct 2007 11:52
Last Modified: 26 Apr 2022 08:43
URI: https://research.sabanciuniv.edu/id/eprint/6577

Actions (login required)

View Item
View Item