Cargando…
Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control
The amount of data generated in today’s world has a fair share of personal information about individuals that helps data owners and data processors in providing them with personalized services. Different legal and regulatory obligations apply to all data owners collecting personal information, speci...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2021
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8123646/ https://www.ncbi.nlm.nih.gov/pubmed/33926082 http://dx.doi.org/10.3390/s21093041 |
| _version_ | 1783692967835336704 |
|---|---|
| author | Sultan, Shizra Jensen, Christian D. |
| author_facet | Sultan, Shizra Jensen, Christian D. |
| author_sort | Sultan, Shizra |
| collection | PubMed |
| description | The amount of data generated in today’s world has a fair share of personal information about individuals that helps data owners and data processors in providing them with personalized services. Different legal and regulatory obligations apply to all data owners collecting personal information, specifying they use it only for the agreed-upon purposes and in a transparent way to preserve privacy. However, it is difficult to achieve this in large-scale and distributed infrastructures as data is continuously changing its form, such as through aggregation with other sources or the generation of new transformed resources, resulting often in the loss or misinterpretation of the collection purpose. In order to preserve the authorized collection purposes, we propose data is added as a part of immutable and append-only resource metadata (provenance), to be retrieved by an access control mechanism when required for data-usage verification. This not only ensures purpose limitation in large-scale infrastructures but also provides transparency for individuals and auditing authorities to track how personal information is used. |
| format | Online Article Text |
| id | pubmed-8123646 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2021 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-81236462021-05-16 Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control Sultan, Shizra Jensen, Christian D. Sensors (Basel) Article The amount of data generated in today’s world has a fair share of personal information about individuals that helps data owners and data processors in providing them with personalized services. Different legal and regulatory obligations apply to all data owners collecting personal information, specifying they use it only for the agreed-upon purposes and in a transparent way to preserve privacy. However, it is difficult to achieve this in large-scale and distributed infrastructures as data is continuously changing its form, such as through aggregation with other sources or the generation of new transformed resources, resulting often in the loss or misinterpretation of the collection purpose. In order to preserve the authorized collection purposes, we propose data is added as a part of immutable and append-only resource metadata (provenance), to be retrieved by an access control mechanism when required for data-usage verification. This not only ensures purpose limitation in large-scale infrastructures but also provides transparency for individuals and auditing authorities to track how personal information is used. MDPI 2021-04-26 /pmc/articles/PMC8123646/ /pubmed/33926082 http://dx.doi.org/10.3390/s21093041 Text en © 2021 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Sultan, Shizra Jensen, Christian D. Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control |
| title | Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control |
| title_full | Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control |
| title_fullStr | Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control |
| title_full_unstemmed | Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control |
| title_short | Ensuring Purpose Limitation in Large-Scale Infrastructures with Provenance-Enabled Access Control |
| title_sort | ensuring purpose limitation in large-scale infrastructures with provenance-enabled access control |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC8123646/ https://www.ncbi.nlm.nih.gov/pubmed/33926082 http://dx.doi.org/10.3390/s21093041 |
| work_keys_str_mv | AT sultanshizra ensuringpurposelimitationinlargescaleinfrastructureswithprovenanceenabledaccesscontrol AT jensenchristiand ensuringpurposelimitationinlargescaleinfrastructureswithprovenanceenabledaccesscontrol |