Title

Privacy Engine for Context-Aware Enterprise Application Services

Publication Type

Conference Proceeding Article

Publication Date

12-2008

Abstract

Satisfying the varied privacy preferences of individuals, while exposing context data to authorized applications and individuals, remains a major challenge for context-aware computing. This paper describes our experiences in building a middleware component, the context privacy engine (CPE), that enforces a role-based, context-dependent privacy model for enterprise domains. While fundamentally an ACL-based access control scheme, CPE extends the traditional ACL mechanism with usage control and context constraints. This paper focuses on discussing issues related to managing and evaluating context-dependent privacy policies. Extensive experimental studies with a production-grade implementation and real-life context sources demonstrate that the CPE can support a large number of concurrent requests. The experiments also show valuable insight on how context-retrieval can affect the privacy evaluation process.

Discipline

Software Engineering

Research Areas

Software Systems

Publication

EUC 2008: Proceedings of the 5th International Conference on Embedded and Ubiquitous Computing, December 17-20, Shanghai, China

First Page

94

Last Page

100

ISBN

9780769534923

Identifier

10.1109/EUC.2008.130

Publisher

IEEE

City or Country

Shanghai, China

Additional URL

http://dx.doi.org/10.1109/EUC.2008.130