Towards a Model of User-centered Privacy Preservation

Grace, Paul; Surridge, Mike

doi:10.1145/3098954.3104054

Cited by 13 publications

(8 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Extensible access control markup language (XACML) standards include both access control (authorisation) and data management based on XML in the different systems [25]. Effectively, XACML offers features for data access and authorisation for the users at the fine-grained level, which is the most flexible and effective [26,27,28]. This technology is presented by the organization for the advancement of structured information standards (OASIS).…”

Section: Overview Of Security and Privacy Techniques In Ehr Systemsmentioning

confidence: 99%

PAX: Using Pseudonymization and Anonymization to Protect Patients’ Identities and Data in the Healthcare System

Al-Zubaidie

Zhang

2019

IJERPH

View full text Add to dashboard Cite

Electronic health record (EHR) systems are extremely useful for managing patients' data and are widely disseminated in the health sector. The main problem with these systems is how to maintain the privacy of sensitive patient information. Due to not fully protecting the records from unauthorised users, EHR systems fail to provide privacy for protected health information. Weak security measures also allow authorised users to exceed their specific privileges to access medical records. Thus, some of the systems are not a trustworthy source and are undesirable for patients and healthcare providers. Therefore, an authorisation system that provides privacy when accessing patients' data is required to address these security issues. Specifically, security and privacy precautions should be raised for specific categories of users, doctor advisors, physician researchers, emergency doctors, and patients' relatives. Presently, these users can break into the electronic systems and even violate patients' privacy because of the privileges granted to them or the inadequate security and privacy mechanisms of these systems. To address the security and privacy problems associated with specific users, we develop the Pseudonymization and Anonymization with the XACML (PAX) modular system, which depends on client and server applications. It provides a security solution to the privacy issues and the problem of safe-access decisions for patients' data in the EHR. The~results of theoretical and experimental security analysis prove that PAX provides security features in preserving the privacy of healthcare users and is safe against known attacks.

show abstract

Section: Overview Of Security and Privacy Techniques In Ehr Systemsmentioning

confidence: 99%

PAX: Using Pseudonymization and Anonymization to Protect Patients’ Identities and Data in the Healthcare System

Al-Zubaidie

Zhang

2019

IJERPH

View full text Add to dashboard Cite

show abstract

“…An important aspect of this project is to provide a simple privacy dashboard for end users, allowing them to control their privacy settings in their regularly used platforms. A tool called PlusPrivacy [2] has been launched as a web or smart phone app as part of the OPERANDO project, which allows users to specify their privacy preferences in online social networks, for purposes such as blocking ads, malware, tracker, unwanted apps or extensions, and hiding their email identities [24].…”

Section: Related Workmentioning

confidence: 99%

A Socio-Technical and Co-evolutionary Framework for Reducing Human-Related Risks in Cyber Security and Cybercrime Ecosystems

Islam

Becker

Posner

et al. 2019

Communications in Computer and Information Science

View full text Add to dashboard Cite

show abstract

“…Hence, a user's privacy changes if any of their personal data has been or can be identified by an actor. Prior models following this approach are: a Finite State Machine (FSM) [10,11] or a Labelled Transition System (LTS) [12]. The common theme in both is that the user's privacy at any point in time is represented by a state, and that actions, executed by actors, taken on their personal data can change this state.…”

Section: Step 2: Automatically Generating An Lts Privacy Modelmentioning

confidence: 99%

“…As they control more aspects of the system than just pseudonymization, for a more detailed description refer to literature describing the system overall [12]. These policies, which are derived from information obtained from a questionnaire, have three main aspects:…”

Section: Step 3: Considering User Privacy Preferencesmentioning

confidence: 99%

Pseudonymization risk analysis in distributed systems

Neumann

Grace

Burns

et al. 2019

J Internet Serv Appl

Self Cite

View full text Add to dashboard Cite

In an era of big data, online services are becoming increasingly data-centric; they collect, process, analyze and anonymously disclose growing amounts of personal data in the form of pseudonymized data sets. It is crucial that such systems are engineered to both protect individual user (data subject) privacy and give back control of personal data to the user. In terms of pseudonymized data this means that unwanted individuals should not be able to deduce sensitive information about the user. However, the plethora of pseudonymization algorithms and tuneable parameters that currently exist make it difficult for a non expert developer (data controller) to understand and realise strong privacy guarantees. In this paper we propose a principled Model-Driven Engineering (MDE) framework to model data services in terms of their pseudonymization strategies and identify the risks to breaches of user privacy. A developer can explore alternative pseudonymization strategies to determine the effectiveness of their pseudonymization strategy in terms of quantifiable metrics: i) violations of privacy requirements for every user in the current data set; ii) the trade-off between conforming to these requirements and the usefulness of the data for its intended purposes. We demonstrate through an experimental evaluation that the information provided by the framework is useful, particularly in complex situations where privacy requirements are different for different users, and can inform decisions to optimize a chosen strategy in comparison to applying an off-the-shelf algorithm.

show abstract

Towards a Model of User-centered Privacy Preservation

Cited by 13 publications

References 22 publications

PAX: Using Pseudonymization and Anonymization to Protect Patients’ Identities and Data in the Healthcare System

PAX: Using Pseudonymization and Anonymization to Protect Patients’ Identities and Data in the Healthcare System

A Socio-Technical and Co-evolutionary Framework for Reducing Human-Related Risks in Cyber Security and Cybercrime Ecosystems

Pseudonymization risk analysis in distributed systems

Contact Info

Product

Resources

About