Traceable and automatic compliance of privacy policies in federated digital identity management

Anna Squicciarini; Abhilasha Bhargav-Spantzel; Alexei Czeskis; Elisa Bertino

doi:10.1007/11957454_5

Traceable and automatic compliance of privacy policies in federated digital identity management

Anna Squicciarini, Abhilasha Bhargav-Spantzel, Alexei Czeskis, Elisa Bertino

College of Information Sciences and Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

8 Scopus citations

Abstract

Digital identity is defined as the digital representation of the information known about a specific individual or organization. An emerging approach for protecting identities of individuals while at the same time enhancing user convenience is to focus on inter-organization management of identity information. This is referred to as federated identity management. In this paper we develop an approach to support privacy controlled sharing of identity attributes and harmonization of privacy policies in federated environments. Policy harmonizations mechanisms make it possible to determine whether or not the transfer of identity attributes from one entity to another violate the privacy policies stated by the former. We also provide mechanisms for tracing the release of user's identity attributes within the federation. Such approach entails a form of accountability since an entity non-compliant with the users original privacy preferences can be identified. Finally, a comprehensive security analysis details security properties is also offered.

Original language	English (US)
Title of host publication	Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers
Pages	78-98
Number of pages	21
DOIs	https://doi.org/10.1007/11957454_5
State	Published - 2006
Event	6th International Workshop on Privacy Enhancing Technologies, PET 2006 - Cambridge, United Kingdom Duration: Jun 28 2006 → Jun 30 2006

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	4258 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	6th International Workshop on Privacy Enhancing Technologies, PET 2006
Country/Territory	United Kingdom
City	Cambridge
Period	6/28/06 → 6/30/06

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/11957454_5

Cite this

Squicciarini, A., Bhargav-Spantzel, A., Czeskis, A., & Bertino, E. (2006). Traceable and automatic compliance of privacy policies in federated digital identity management. In Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers (pp. 78-98). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4258 LNCS). https://doi.org/10.1007/11957454_5

Squicciarini, Anna ; Bhargav-Spantzel, Abhilasha ; Czeskis, Alexei et al. / Traceable and automatic compliance of privacy policies in federated digital identity management. Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers. 2006. pp. 78-98 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{b6798978469145df9e2226c01ed2b915,

title = "Traceable and automatic compliance of privacy policies in federated digital identity management",

abstract = "Digital identity is defined as the digital representation of the information known about a specific individual or organization. An emerging approach for protecting identities of individuals while at the same time enhancing user convenience is to focus on inter-organization management of identity information. This is referred to as federated identity management. In this paper we develop an approach to support privacy controlled sharing of identity attributes and harmonization of privacy policies in federated environments. Policy harmonizations mechanisms make it possible to determine whether or not the transfer of identity attributes from one entity to another violate the privacy policies stated by the former. We also provide mechanisms for tracing the release of user's identity attributes within the federation. Such approach entails a form of accountability since an entity non-compliant with the users original privacy preferences can be identified. Finally, a comprehensive security analysis details security properties is also offered.",

author = "Anna Squicciarini and Abhilasha Bhargav-Spantzel and Alexei Czeskis and Elisa Bertino",

year = "2006",

doi = "10.1007/11957454_5",

language = "English (US)",

isbn = "3540687904",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "78--98",

booktitle = "Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers",

note = "6th International Workshop on Privacy Enhancing Technologies, PET 2006 ; Conference date: 28-06-2006 Through 30-06-2006",

}

Squicciarini, A, Bhargav-Spantzel, A, Czeskis, A & Bertino, E 2006, Traceable and automatic compliance of privacy policies in federated digital identity management. in Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 4258 LNCS, pp. 78-98, 6th International Workshop on Privacy Enhancing Technologies, PET 2006, Cambridge, United Kingdom, 6/28/06. https://doi.org/10.1007/11957454_5

Traceable and automatic compliance of privacy policies in federated digital identity management. / Squicciarini, Anna; Bhargav-Spantzel, Abhilasha; Czeskis, Alexei et al.
Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers. 2006. p. 78-98 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4258 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Traceable and automatic compliance of privacy policies in federated digital identity management

AU - Squicciarini, Anna

AU - Bhargav-Spantzel, Abhilasha

AU - Czeskis, Alexei

AU - Bertino, Elisa

PY - 2006

Y1 - 2006

N2 - Digital identity is defined as the digital representation of the information known about a specific individual or organization. An emerging approach for protecting identities of individuals while at the same time enhancing user convenience is to focus on inter-organization management of identity information. This is referred to as federated identity management. In this paper we develop an approach to support privacy controlled sharing of identity attributes and harmonization of privacy policies in federated environments. Policy harmonizations mechanisms make it possible to determine whether or not the transfer of identity attributes from one entity to another violate the privacy policies stated by the former. We also provide mechanisms for tracing the release of user's identity attributes within the federation. Such approach entails a form of accountability since an entity non-compliant with the users original privacy preferences can be identified. Finally, a comprehensive security analysis details security properties is also offered.

AB - Digital identity is defined as the digital representation of the information known about a specific individual or organization. An emerging approach for protecting identities of individuals while at the same time enhancing user convenience is to focus on inter-organization management of identity information. This is referred to as federated identity management. In this paper we develop an approach to support privacy controlled sharing of identity attributes and harmonization of privacy policies in federated environments. Policy harmonizations mechanisms make it possible to determine whether or not the transfer of identity attributes from one entity to another violate the privacy policies stated by the former. We also provide mechanisms for tracing the release of user's identity attributes within the federation. Such approach entails a form of accountability since an entity non-compliant with the users original privacy preferences can be identified. Finally, a comprehensive security analysis details security properties is also offered.

UR - http://www.scopus.com/inward/record.url?scp=34548042240&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34548042240&partnerID=8YFLogxK

U2 - 10.1007/11957454_5

DO - 10.1007/11957454_5

M3 - Conference contribution

AN - SCOPUS:34548042240

SN - 3540687904

SN - 9783540687900

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 78

EP - 98

BT - Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers

T2 - 6th International Workshop on Privacy Enhancing Technologies, PET 2006

Y2 - 28 June 2006 through 30 June 2006

ER -

Squicciarini A, Bhargav-Spantzel A, Czeskis A, Bertino E. Traceable and automatic compliance of privacy policies in federated digital identity management. In Privacy Enhancing Technologies - 6th International Workshop, PET 2006, Revised Selected Papers. 2006. p. 78-98. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11957454_5

Traceable and automatic compliance of privacy policies in federated digital identity management

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this