Temporal Mode-Checking for Runtime Monitoring of Privacy Policies

Chowdhury, Omar; Jia, Limin; Garg, Deepak; Datta, Anupam

doi:10.21236/ada609113

Cited by 7 publications

(4 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Going beyond formalism of privacy regulations, recent research also explores techniques to enforce these formalised privacy regulations in real-world data processing systems. Chowdhury et al [31] propose to use temporal model-checking for run-time monitoring of privacy policies. While Chowdhury demonstrates the effectiveness of this approach in online monitoring of privacy policies, it does not provide the capability of static analysis to decide if a analytic program satisfies a privacy policy and can only report privacy violation after it happens.…”

Section: Related Workmentioning

confidence: 99%

Data Capsule: A New Paradigm for Automatic Compliance with Data Privacy Regulations

Wang

Near

Somani

et al. 2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

The increasing pace of data collection has led to increasing awareness of privacy risks, resulting in new data privacy regulations like General data Protection Regulation (GDPR). Such regulations are an important step, but automatic compliance checking is challenging. In this work, we present a new paradigm, . We introduce a solution for static enforcement of privacy policies based on the concept of residual policies, and present a novel algorithm based on abstract interpretation for deriving residual policies in PRIVPOLICY. Our solution ensures compliance automatically, and is designed for deployment alongside existing infrastructure. We also design and develop PRIVGUARD, a reference data capsule manager that implements all the functionalities of Data Capsule paradigm.

show abstract

Section: Related Workmentioning

confidence: 99%

Data Capsule: A New Paradigm for Automatic Compliance with Data Privacy Regulations

Wang

Near

Somani

et al. 2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…The paper proves correctness, termination, time and space complexity results of reduce. Chowdhury et al [8] outlines an approach to temporal mode-checking for run-time monitoring of privacy policies by checking online event trace compliance from caching satisfying instances when it can and fall back to brute force checking when it cannot.…”

Section: Related Workmentioning

confidence: 99%

Run-Time Monitoring of Data-Handling Violations

et al. 2019

View full text Add to dashboard Cite

Organisations are coming under increasing pressure to respect and protect personal data privacy, especially with the European Union's General Data Protection Regulation (GDPR) now in effect. As legislation and regulation evolve to incentivise such data handling protection, so too does the business case for demonstrating compliance both in spirit and to the letter. Compliance will require ongoing checks as modern systems are constantly changing in terms of digital infrastructure services and business offerings, and the interaction between human and machine. Therefore, monitoring for compliance during run-time is likely to be required. There has been limited research into how to monitor how well a system respects consents given, and withheld, pertaining to handling and onward sharing. This paper proposes a finite state machine method for detecting violations of preferences (consents and revocations) expressed by Data Subjects regarding use of their personal data, and also violations of any related obligations that might be placed upon data handlers. Our approach seeks to enable detection of both accidental and malicious compromises of privacy properties. We also present a concept demonstrator to show the feasibility of our approach and discuss its design and technical implementation.

show abstract

“…It is used to describe contextual informational norms, to detect infractions of these norms, and in approaches to accountability and enforcement [13,44]. Much of the prior work in this space has focused on sophisticated formal logics for describing CI norms that involve complex temporal properties of sequences of information flows such as those involved in HIPAA [45][46][47][48]. However, these logics are typically too expressive to serve as a suitable foundation for tools that mechanize reasoning about privacy norms in real-world systems.…”

Section: Content-based Approachesmentioning

confidence: 99%

The VACCINE Framework for Building DLP Systems

Shvartzshnaider,

Pavlinovic,

Wies

et al. 2017

Preprint

View full text Add to dashboard Cite

Conventional Data Leakage Prevention (DLP) systems suffer from the following major drawback: Privacy policies that define what constitutes data leakage cannot be seamlessly defined and enforced across heterogeneous forms of communication. Administrators have the dual burden of: (1) manually selfinterpreting policies from handbooks to specify rules (which is error-prone); (2) extracting relevant information flows from heterogeneous communication protocols and enforcing policies to determine which flows should be admissible. To address these issues, we present the Verifiable and ACtionable Contextual Integrity Norms Engine (VACCINE), a framework for building adaptable and modular DLP systems. VACCINE relies on (1) the theory of contextual integrity to provide an abstraction layer suitable for specifying reusable protocolagnostic leakage prevention rules and (2) programming language techniques to check these rules against correctness properties and to enforce them faithfully within a DLP system implementation. We applied VACCINE to the Family Educational Rights and Privacy Act and Enron Corporation privacy regulations. We show that by using contextual integrity in conjunction with verification techniques, we can effectively create reusable privacy rules with specific correctness guarantees, and check the integrity of information flows against these rules. Our experiments in emulated enterprise settings indicate that VACCINE improves over current DLP system design approaches and can be deployed in enterprises involving tens of thousands of actors.

show abstract

Temporal Mode-Checking for Runtime Monitoring of Privacy Policies

Cited by 7 publications

References 22 publications

Data Capsule: A New Paradigm for Automatic Compliance with Data Privacy Regulations

Data Capsule: A New Paradigm for Automatic Compliance with Data Privacy Regulations

Run-Time Monitoring of Data-Handling Violations

The VACCINE Framework for Building DLP Systems

Contact Info

Product

Resources

About