A dynamic logic for privacy compliance

  • Guillaume Aucher
  • Guido Boella
  • Leendert van der Torre
Article

DOI: 10.1007/s10506-011-9114-3

Cite this article as:
Aucher, G., Boella, G. & van der Torre, L. Artif Intell Law (2011) 19: 187. doi:10.1007/s10506-011-9114-3

Abstract

Knowledge based privacy policies are more declarative than traditional action based ones, because they specify only what is permitted or forbidden to know, and leave the derivation of the permitted actions to a security monitor. This inference problem is already non trivial with a static privacy policy, and becomes challenging when privacy policies can change over time. We therefore introduce a dynamic modal logic that permits not only to reason about permitted and forbidden knowledge to derive the permitted actions, but also to represent explicitly the declarative privacy policies together with their dynamics. The logic can be used to check both regulatory and behavioral compliance, respectively by checking that the permissions and obligations set up by the security monitor of an organization are not in conflict with the privacy policies, and by checking that these obligations are indeed enforced.

Copyright information

© Springer Science+Business Media B.V. 2011

Authors and Affiliations

  • Guillaume Aucher
    • 1
  • Guido Boella
    • 2
  • Leendert van der Torre
    • 3
  1. 1.IRISA, INRIARennesFrance
  2. 2.Dipartimento di InformaticaUniversità di TorinoTorinoItaly
  3. 3.Computer Science and Communication (CSC)University of LuxembourgLuxembourgLuxembourg

Personalised recommendations