Fraunhofer-Gesellschaft

Publica

Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

A systematic approach toward extracting technically enforceable policies from data usage control requirements

 
: Hosseinzadeh, Arghavan; Eitel, Andreas; Jung, Christian

:
Volltext ()

Furnell, S. ; Institute for Systems and Technologies of Information, Control and Communication -INSTICC-, Setubal:
6th International Conference on Information Systems Security and Privacy, ICISSP 2020. Proceedings. Volume 1 : 25th - 27th February 2020, Valletta, Malta
SciTePress, 2020
ISBN: 978-989-758-399-5
S.397-405
International Conference on Information Systems Security and Privacy (ICISSP) <6, 2020, Valletta>
Bundesministerium für Bildung und Forschung BMBF (Deutschland)
01IS17031; Architekturtopologien für Datensouveränität in Geschäftsökosystemen auf Basis des Industrial Data Space
Englisch
Konferenzbeitrag, Elektronische Publikation
Fraunhofer IESE ()
Data sovereignty; Data usage control; Industrial data space; MYDATA control technologies; ODRL policy templates; Policy classes; Policy negotiation; Policy specification; Policy transformation

Abstract
Solutions for data sovereignty are in high demand as companies are willing to exchange their data in decentralized infrastructures. Data sovereignty is tightly coupled with data security and therefore, with data usage control policy specification. In this paper, we propose an approach to facilitate the processes of policy specification by data owners, policy transformation from a technology-independent to a technology-dependent language, and policy negotiation between the parties who exchange their data. We extracted an enterprise-relevant set of policy classes from the parties’ security requirements in order to implement an editor that supports users in creating their machine-readable policies. Then, we developed an algorithm that benefits from the policy classes and constructs technology-dependent security policy instances. In addition, we proposed a policy negotiation approach which is based on the parameters of the extracted policy classes.

: http://publica.fraunhofer.de/dokumente/N-586837.html