Privacy Engine for Context-Aware Enterprise Application Services
Conference Proceeding Article
Satisfying the varied privacy preferences of individuals, while exposing context data to authorized applications and individuals, remains a major challenge for context-aware computing. This paper describes our experiences in building a middleware component, the context privacy engine (CPE), that enforces a role-based, context-dependent privacy model for enterprise domains. While fundamentally an ACL-based access control scheme, CPE extends the traditional ACL mechanism with usage control and context constraints. This paper focuses on discussing issues related to managing and evaluating context-dependent privacy policies. Extensive experimental studies with a production-grade implementation and real-life context sources demonstrate that the CPE can support a large number of concurrent requests. The experiments also show valuable insight on how context-retrieval can affect the privacy evaluation process.
EUC 2008: Proceedings of the 5th International Conference on Embedded and Ubiquitous Computing, December 17-20, Shanghai, China
City or Country
BLOUNT, M.; DAVIS, J.; Ebling, M.; Jerome, W.; LEIBA, B.; LIU, X.; and MISRA, Archan.
Privacy Engine for Context-Aware Enterprise Application Services. (2008). EUC 2008: Proceedings of the 5th International Conference on Embedded and Ubiquitous Computing, December 17-20, Shanghai, China. 94-100. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/672