Representing Consent and Policies for Compliance
| Autor: | Jonathan Langens, Piero A. Bonatti, Luigi Sauro |
|---|---|
| Rok vydání: | 2021 |
| Předmět: | |
| Zdroj: | {IEEE} European Symposium on Security and Privacy Workshops, EuroS{\&}P 2021, Vienna, Austria, September 6-10, 2021 2021 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW) EuroS&P Workshops |
| DOI: | 10.1109/eurospw54576.2021.00036 |
| Popis: | Being compliant with the GDPR (and data protection regulations in general) is a difficult task, that calls for manifold, computer-based automated support. In this context, several use cases related to the management and the enforcement of privacy policies and consent call for a machine-understandable policy language, equipped with reliable algorithms for compliance checking and explanations. In this paper, we outline a set of requirements for such languages and algorithms, and address such requirements with a framework based on a profile of OWL2 and a set of policy serializations based on popular formats such as ODRL and JSON. Such “external” policy syntax is translated into the “internal” OWL2 syntax, thereby enabling semantic compliance checking and explanations using specialized OWL2 reasoners. We provide a precise definition of both the OWL2 profile and the external policy language based on JSON. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|