Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Privacy-Friendly Cloud Storage for the Data Track: An Educational Transparency Tool
Karlstad University, Faculty of Economic Sciences, Communication and IT, Department of Computer Science. (PriSec)
2012 (English)In: Secure IT Systems: 17th Nordic Conference, NordSec 2012, Karlskrona, Sweden, October/November 2012, Proceedings / [ed] Audun Jøsang, Bengt Carlsson, Berlin/Heidelberg: Springer Berlin/Heidelberg, 2012, 231-246 p.Conference paper, (Refereed)
Abstract [en]

The Data Track is a transparency-enhancing tool that aims to educate users by providing them with an overview of all their data disclosures. In this paper, we describe a cryptographic scheme for storing all data disclosures tracked by the Data Track centrally in the cloud in a privacy-friendly way. Our scheme allows users to store their data anonymously, while keeping the cloud provider accountable with regard to the integrity of the data. Furthermore, we introduce a separation of concerns for the different components of the Data Track, well suited for tracking data disclosures from semi-trusted devices that may become compromised. We provide an informal evaluation of our scheme and briefly describe a proof of concept implementation.

Place, publisher, year, edition, pages
Berlin/Heidelberg: Springer Berlin/Heidelberg, 2012. 231-246 p.
Series
Lecture Notes in Computer Science, ISSN 0302-9743 ; 7617
National Category
Computer Science
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-15680DOI: 10.1007/978-3-642-34210-3ISBN: 978-3-642-34209-7 (Print) 978-3-642-34210-3 (Online) (print)OAI: oai:DiVA.org:kau-15680DiVA: diva2:570684
Conference
17th Nordic Conference, NordSec 2012, Karlskrona, Sweden, October/November 2012
Available from: 2012-11-20 Created: 2012-11-20 Last updated: 2012-12-17Bibliographically approved
In thesis
1. Privacy-Preserving Transparency-Enhancing Tools
Open this publication in new window or tab >>Privacy-Preserving Transparency-Enhancing Tools
2012 (English)Licentiate thesis, comprehensive summary (Other academic)
Abstract [en]

Transparency is a key principle in democratic societies. For example, the public sector is in part kept honest and fair with the help of transparency through different freedom of information (FOI) legislations. In the last decades, while FOI legislations have been adopted by more and more countries worldwide, we have entered the information age enabled by the rapid development of information technology. This has led to the need for technological solutions that enhance transparency, for example to ensure that FOI legislation can be adhered to in the digital world. These solutions are called transparency-enhancing tools (TETs), and consist of both technological and legal tools. TETs, and transparency in general, can be in conflict with the privacy principle of data minimisation.

The goal of transparency is to make information available, while the goal of data minimisation is to minimise the amount of available information. This thesis presents two privacy-preserving TETs: one cryptographic system forenabling transparency logging, and one cryptographic scheme for storing the data for the so called Data Track tool at a cloud provider. The goal of the transparency logging TET is to make data processing by data controllers transparent to the user whose data is being processed. Our work ensures that the process in which the data processing is logged does not leak sensitive information about the user, and thatthe user can anonymously read the information logged on their behalf. The goal of the Data Track is to make it transparent to users which data controllers they have disclosed data to under which conditions. Furthermore, the Data Track intends to empower users to exercise their rights, online and potentially anonymously, with regard to their disclosed data at the recipient data controllers. Our work ensures that the data kept by the Data Track can be stored at acloud storage provider, enabling easy synchronisation across multiple devices, while preserving the privacy of users by making their storage anonymous toward the provider and by enabling users to hold the provider accountable for the data it stores.

Place, publisher, year, edition, pages
Karlstad: Karlstads universitet, 2012. 22 p.
Series
Karlstad University Studies, ISSN 1403-8099 ; 2012:57
National Category
Computer Science
Research subject
Computer Science
Identifiers
urn:nbn:se:kau:diva-15685 (URN)978-91-7063-469-7 (ISBN)
Presentation
2013-01-08, 21A342, Karlstad Universitet, Karlstad, 09:15 (English)
Opponent
Supervisors
Available from: 2012-12-17 Created: 2012-11-20 Last updated: 2013-05-02Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full textPublikation

Search in DiVA

By author/editor
Pulls, Tobias
By organisation
Department of Computer Science
Computer Science

Search outside of DiVA

GoogleGoogle Scholar

Altmetric score

Total: 146 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf