Understanding and protecting privacy: Formal semantics and principled audit mechanisms
Privacy has become a significant concern in modern society as personal information about individuals is increasingly collected, used, and shared, often using digital technologies, by a wide range of organizations. Certain information handling practices of organizations that monitor individuals’ acti...
Saved in:
| Main Authors: | , , , , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2011
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/5335 https://ink.library.smu.edu.sg/context/sis_research/article/6339/viewcontent/2011_Chapter_.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-6339 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-63392020-10-30T03:19:59Z Understanding and protecting privacy: Formal semantics and principled audit mechanisms DATTA, Anupam BLOCKI, Jeremiah CHRISTIN, Nicolas DeYOUNG, Henry GARG, Deepak JIA, Limin KAYNAR, Dilsun Arunesh SINHA, Privacy has become a significant concern in modern society as personal information about individuals is increasingly collected, used, and shared, often using digital technologies, by a wide range of organizations. Certain information handling practices of organizations that monitor individuals’ activities on the Web, data aggregation companies that compile massive databases of personal information, cell phone companies that collect and use location data about individuals, online social networks and search engines—while enabling useful services—have aroused much indignation and protest in the name of privacy. Similarly, as healthcare organizations are embracing electronic health record systems and patient portals to enable patients, employees, and business affiliates more efficient access to personal health information, there is trepidation that the privacy of patients may not be adequately protected if information handling practices are not carefully designed and enforced. Given this state of affairs, it is very important to arrive at a general understanding of (a) why certain information handling practices arouse moral indignation, what practices or policies are appropriate in a given setting, and (b) how to represent and enforce such policies using information processing systems. This article summarizes progress on a research program driven by goal (b). We describe a semantic model and logic of privacy that formalizes privacy as a right to appropriate flows of personal information—a position taken by contextual integrity, a philosphical theory of privacy for answering questions of the form identified in (a). The logic is designed with the goal of enabling specification and enforcement 2011-12-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/5335 info:doi/10.1007/978-3-642-25560-1_1 https://ink.library.smu.edu.sg/context/sis_research/article/6339/viewcontent/2011_Chapter_.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Databases and Information Systems Information Security |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Databases and Information Systems Information Security |
| spellingShingle |
Databases and Information Systems Information Security DATTA, Anupam BLOCKI, Jeremiah CHRISTIN, Nicolas DeYOUNG, Henry GARG, Deepak JIA, Limin KAYNAR, Dilsun Arunesh SINHA, Understanding and protecting privacy: Formal semantics and principled audit mechanisms |
| description |
Privacy has become a significant concern in modern society as personal information about individuals is increasingly collected, used, and shared, often using digital technologies, by a wide range of organizations. Certain information handling practices of organizations that monitor individuals’ activities on the Web, data aggregation companies that compile massive databases of personal information, cell phone companies that collect and use location data about individuals, online social networks and search engines—while enabling useful services—have aroused much indignation and protest in the name of privacy. Similarly, as healthcare organizations are embracing electronic health record systems and patient portals to enable patients, employees, and business affiliates more efficient access to personal health information, there is trepidation that the privacy of patients may not be adequately protected if information handling practices are not carefully designed and enforced. Given this state of affairs, it is very important to arrive at a general understanding of (a) why certain information handling practices arouse moral indignation, what practices or policies are appropriate in a given setting, and (b) how to represent and enforce such policies using information processing systems. This article summarizes progress on a research program driven by goal (b). We describe a semantic model and logic of privacy that formalizes privacy as a right to appropriate flows of personal information—a position taken by contextual integrity, a philosphical theory of privacy for answering questions of the form identified in (a). The logic is designed with the goal of enabling specification and enforcement |
| format |
text |
| author |
DATTA, Anupam BLOCKI, Jeremiah CHRISTIN, Nicolas DeYOUNG, Henry GARG, Deepak JIA, Limin KAYNAR, Dilsun Arunesh SINHA, |
| author_facet |
DATTA, Anupam BLOCKI, Jeremiah CHRISTIN, Nicolas DeYOUNG, Henry GARG, Deepak JIA, Limin KAYNAR, Dilsun Arunesh SINHA, |
| author_sort |
DATTA, Anupam |
| title |
Understanding and protecting privacy: Formal semantics and principled audit mechanisms |
| title_short |
Understanding and protecting privacy: Formal semantics and principled audit mechanisms |
| title_full |
Understanding and protecting privacy: Formal semantics and principled audit mechanisms |
| title_fullStr |
Understanding and protecting privacy: Formal semantics and principled audit mechanisms |
| title_full_unstemmed |
Understanding and protecting privacy: Formal semantics and principled audit mechanisms |
| title_sort |
understanding and protecting privacy: formal semantics and principled audit mechanisms |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2011 |
| url |
https://ink.library.smu.edu.sg/sis_research/5335 https://ink.library.smu.edu.sg/context/sis_research/article/6339/viewcontent/2011_Chapter_.pdf |
| _version_ |
1770575407824764928 |