Log Design for Accountability

Butin, Denis; Chicote, Marcos; Métayer, Daniel Le

doi:10.1109/spw.2013.26

Cited by 27 publications

(16 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Le Métayer et al [3,2,7,6] have described several languages for describing architectures and deciding privacy-related properties over them. Barth et al [4] also give a formal definition of architectures, and show how to decide properties defined in temporal logic.…”

Section: Related Workmentioning

confidence: 99%

Constructing Independently Verifiable Privacy-Compliant Type Systems for Message Passing between Black-Box Components

Adams¹,

Schupp²

2018

EasyChair Preprints

View full text Add to dashboard Cite

Privacy by design (PbD) is the principle that privacy should be considered at every stage of the software engineering process. It is increasingly both viewed as best practice and required by law. It is therefore desirable to have formal methods that provide guarantees that certain privacy-relevant properties hold. We propose an approach that can be used to design a privacy-compliant architecture without needing to know the source code or internal structure of any individual component. We model an architecture as a set of agents or components that pass messages to each other. We present in this paper algorithms that take as input an architecture and a set of privacy constraints, and output an extension of the original architecture that satisfies the privacy constraints.

show abstract

Section: Related Workmentioning

confidence: 99%

Constructing Independently Verifiable Privacy-Compliant Type Systems for Message Passing between Black-Box Components

Adams¹,

Schupp²

2018

EasyChair Preprints

View full text Add to dashboard Cite

show abstract

“…Actually, one of the arguments against the use of accountability of practice is that the logs required to implement it could in fact represent an additional source of risks for personal data. As illustrated in our work [4], designing the contents of the logs is therefore far from obvious: intuitive solutions typically include too much data or omit information necessary for effective compliance. -A clear definition of the accountability process has to be provided, showing how accounts are built and analyzed.…”

Section: Context and Motivationmentioning

confidence: 99%

“…The format of the logs is a key design choice for an accountability architecture. As discussed in [4], this choice is far from obvious. In our framework, it is guided by two factors: the privacy policies which have to be verified and the aforementioned data minimization principle.…”

Section: Log Eventsmentioning

confidence: 99%

“…The formal framework presented in this paper contributes to the three types of accountability introduced in §1: it can be used to provide precise definitions of privacy policies and to build log analysers to check the compliance of a log with respect to the privacy policies of the data collected by the DC. Actual log files can be parsed and converted by log abstraction to traces that can be mechanically checked as in [4]. In addition, it suggests a number of manual checks and procedural measures required to complement the log analysis and make it fully effective.…”

Section: Proof Outlinementioning

confidence: 99%

See 1 more Smart Citation

Log Analysis for Data Protection Accountability

Butin

Métayer

2014

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

International audienceAccountability is increasingly recognised as a cornerstone of data protection, notably in European regulation, but the term is frequently used in a vague sense. For accountability to bring tangible benefits, the expected properties of personal data handling logs (used as "accounts") and the assumptions regarding the logging process must be defined with accuracy. In this paper, we provide a formal framework for accountability and show the correctness of the log analysis with respect to abstract traces used to specify privacy policies. We also show that compliance with respect to data protection policies can be checked based on logs free of personal data, and describe the integration of our formal framework in a global accountability process

show abstract

“…Available means to achieve this accountability of practice include privacy policy languages such as EPAL [7] or PPL [20], which allow the precise specification of (technical) data handling policies. These standardised policies can then be used to analyze system operation traces (audit logs) through a posteriori technical compliance control [8,11].…”

Section: Existing Work On Privacy and Video Surveillancementioning

confidence: 99%

Towards a Multidisciplinary Framework to Include Privacy in the Design of Video Surveillance Systems

Butin

Jaime

et al. 2014

Privacy Technologies and Policy

Self Cite

View full text Add to dashboard Cite

International audiencePrivacy impacts of video surveillance systems are a major concern. This paper presents our ongoing multidisciplinary approach to integrate privacy concerns in the design of video surveillance systems. The project aims at establishing a reference framework for the collection of privacy concepts and principles, the description of surveillance contexts, surveillance technologies, and accountability capabilities

show abstract

Log Design for Accountability

Cited by 27 publications

References 15 publications

Constructing Independently Verifiable Privacy-Compliant Type Systems for Message Passing between Black-Box Components

Constructing Independently Verifiable Privacy-Compliant Type Systems for Message Passing between Black-Box Components

Log Analysis for Data Protection Accountability

Towards a Multidisciplinary Framework to Include Privacy in the Design of Video Surveillance Systems

Contact Info

Product

Resources

About