Supporting Semi-automated Compliance Control by a System Design Based on the Concept of Separation of Concerns - Privacy and Identity Management for Life
Conference Papers Year : 2011

Supporting Semi-automated Compliance Control by a System Design Based on the Concept of Separation of Concerns

Abstract

Manual compliance audits of information systems tend to be time consuming. This leads to the problem that actual systems are not audited properly and do not comply to data protection laws or cannot be proven to comply. As a result, personal data of the data subject are potentially threatened with loss and misuse. Automatic compliance control is able to reduce the effort of compliance checks. However, current approaches are facing several drawbacks, e.g. the effort of employing cryptographic hardware on every single subsystem. In this paper a system design is presented that is able to circumvent several drawbacks of existing solutions thereby supporting and going beyond existing mechanisms for automated compliance control.
Fichier principal
Vignette du fichier
978-3-642-20769-3_10_Chapter.pdf (981.36 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01559462 , version 1 (10-07-2017)

Licence

Identifiers

Cite

Sebastian Haas, Ralph Herkenhöner, Denis Royer, Ammar Alkassar, Hermann De Meer, et al.. Supporting Semi-automated Compliance Control by a System Design Based on the Concept of Separation of Concerns. 6th International Summer School (ISS), Aug 2010, Helsingborg, Sweden. pp.120-129, ⟨10.1007/978-3-642-20769-3_10⟩. ⟨hal-01559462⟩
350 View
118 Download

Altmetric

Share

More