Options
2020
Conference Paper
Titel
Utility Requirement Description for Utility-Preserving and Privacy-Respecting Data Pseudonymization
Abstract
Many of the existing pseudonymization techniques aim at preserving the use-case specific utility of the data. However, retracing under which condition a utility is present in pseudonymized data is hard. Therefore, specifying and applying pseudonymization techniques adequately becomes challenging to non-experts. There is the need for a solution that enables non-experts to generate pseudonymizations that can be utilized in their specific use case without deep understanding of pseudonymization techniques. To address this, we introduce a methodology for describing the utility that should be kept after pseudonymizing data together with privacy restrictions that must be respected while processing the pseudonymized data. We present Util, a description language for defining utility policies, i.e. policies that document utility requirements together with privacy requirements. Using Util does not require deeper knowledge of pseudonymization function and their parametrization. We sketch rules that can be used to translate from a utility policy to an appropriate data pseudonymization. For that, we introduce pseudonymization with utility tags.