Provenance-based Auditing of Private Data Use

Aldeco-Pérez, Rocío; Moreau, Luc

doi:10.14236/ewic/vocs2008.13

Cited by 19 publications

(3 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the realm of data classification and grading, scholars typically commence their endeavors by establishing policies to ensure data compliance, which serves as a foundational step in constructing programs and frameworks for data classification and grading. For instance, Aldeco-Perez et al introduced a compliance analysis framework based on data source and data usage, aligned with the UK Data Protection Act [24,25]. Their approach focuses on averting the misuse of personal sensitive data and evaluating the propriety of its utilization.…”

Section: Data Classification and Grading Frameworkmentioning

confidence: 99%

UP-SDCG: A Method of Sensitive Data Classification for Collaborative Edge Computing in Financial Cloud Environment

Zu,

Qi,

et al. 2024

Future Internet

View full text Add to dashboard Cite

The digital transformation of banks has led to a paradigm shift, promoting the open sharing of data and services with third-party providers through APIs, SDKs, and other technological means. While data sharing brings personalized, convenient, and enriched services to users, it also introduces security risks, including sensitive data leakage and misuse, highlighting the importance of data classification and grading as the foundational pillar of security. This paper presents a cloud-edge collaborative banking data open application scenario, focusing on the critical need for an accurate and automated sensitive data classification and categorization method. The regulatory outpost module addresses this requirement, aiming to enhance the precision and efficiency of data classification. Firstly, regulatory policies impose strict requirements concerning data protection. Secondly, the sheer volume of business and the complexity of the work situation make it impractical to rely on manual experts, as they incur high labor costs and are unable to guarantee significant accuracy. Therefore, we propose a scheme UP-SDCG for automatically classifying and grading financially sensitive structured data. We developed a financial data hierarchical classification library. Additionally, we employed library augmentation technology and implemented a synonym discrimination model. We conducted an experimental analysis using simulation datasets, where UP-SDCG achieved precision surpassing 95%, outperforming the other three comparison models. Moreover, we performed real-world testing in financial institutions, achieving good detection results in customer data, supervision, and additional in personally sensitive information, aligning with application goals. Our ongoing work will extend the model’s capabilities to encompass unstructured data classification and grading, broadening the scope of application.

show abstract

Section: Data Classification and Grading Frameworkmentioning

confidence: 99%

UP-SDCG: A Method of Sensitive Data Classification for Collaborative Edge Computing in Financial Cloud Environment

Zu,

Qi,

et al. 2024

Future Internet

View full text Add to dashboard Cite

show abstract

“…In difference to our work they assume that a global model of the observed services is given by the BPEL specification. The authors of (Aldeco-Perez et al, 2008) present an architecture for auditing private data in IT-Systems by collecting provenance information. Their architecture is also based on requirements specified by privacy laws.…”

Section: Related Workmentioning

confidence: 99%

DiALog

Ringelstein

Staab

2010

International Journal of Web Services Research

View full text Add to dashboard Cite

Service-oriented systems facilitate business workflows to span multiple organizations (e.g., by means of Web services). As a side effect, data may be more easily transferred over organizational boundaries. Thus, privacy issues arise. At the same time, there are personal, business and legal requirements for protecting privacy and IPR and allowing customers to request information about how and by whom their data was handled. Managing these requirements constitutes an unsolved technical and organizational problem. The authors propose to solve the information request problem by attaching meta-knowledge about how data was handled to the data itself. The authors present their solution, in form of an architecture, a formalization and an implemented prototype for logging and collecting logs in service-oriented and cross-organizational systems.

show abstract

“…Therefore, on the one hand, data provenance is essential to scientific environments. Many works describe details of data provenance [ 1 , 2 ], classify their characteristics [ 3 ], propose models [ 4 - 7 ] and present practical applications [ 8 , 9 ]. Buneman et al [ 10 ] define data provenance as "the description of the origins of a piece of data and the process by which it arrived in a database" .…”

Section: Introductionmentioning

confidence: 99%

Provenance in bioinformatics workflows

et al. 2013

View full text Add to dashboard Cite

In this work, we used the PROV-DM model to manage data provenance in workflows of genome projects. This provenance model allows the storage of details of one workflow execution, e.g., raw and produced data and computational tools, their versions and parameters. Using this model, biologists can access details of one particular execution of a workflow, compare results produced by different executions, and plan new experiments more efficiently. In addition to this, a provenance simulator was created, which facilitates the inclusion of provenance data of one genome project workflow execution. Finally, we discuss one case study, which aims to identify genes involved in specific metabolic pathways of Bacillus cereus, as well as to compare this isolate with other phylogenetic related bacteria from the Bacillus group. B. cereus is an extremophilic bacteria, collected in warm water in the Midwestern Region of Brazil, its DNA samples having been sequenced with an NGS machine.

show abstract

Provenance-based Auditing of Private Data Use

Cited by 19 publications

References 6 publications

UP-SDCG: A Method of Sensitive Data Classification for Collaborative Edge Computing in Financial Cloud Environment

UP-SDCG: A Method of Sensitive Data Classification for Collaborative Edge Computing in Financial Cloud Environment

DiALog

Provenance in bioinformatics workflows

Contact Info

Product

Resources

About