Abstract
Accountability becomes a necessary principle for future computer systems. This is specially critical for the cloud and Web applications that collect personal and sensitive data from end users. Accountability regards the responsibility and liability for the data handling performed by a computer system on behalf of an organization. In case of misconduct (e.g. security breaches, personal data leaks, etc.), accountability should imply remediation and redress actions. Contrary to data privacy and access control, which is already supported by several concrete languages, there is currently no language supporting accountability clauses representation. In this work, we provide an abstract language for accountability clauses representation with temporal logic semantics.
This work has been partly funded from the European Commissions 7th Framework Programme (FP7/2007-2013) under grant agreement no: 317550 (A4CLOUD).
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Weitzner, D.J., Abelson, H., Berners-Lee, T., Feigenbaum, J., Hendler, J., Sussman, G.J.: Information accountability. Commun. ACM 51(6), 82–87 (2008)
DeYoung, H., Garg, D., Jia, L., Kaynar, D., Datta, A.: Experiences in the logical specification of the HIPAA and GLBA privacy laws. In: WPES 2010, pp. 73–82 (2010)
Le Métayer, D.: A formal privacy management framework. In: Degano, P., Guttman, J., Martinelli, F. (eds.) FAST 2008. LNCS, vol. 5491, pp. 162–176. Springer, Heidelberg (2009)
Piolle, G., Demazeau, Y.: Representing privacy regulations with deontico-temporal operators. Web Intelligence and Agent Systems 9(3), 209–226 (2011)
Etalle, S., Winsborough, W.H.: A posteriori compliance control. In: Lotz, V., Thuraisingham, B.M. (eds.) SACMAT 2007, pp. 11–20. ACM (2007)
Jagadeesan, R., Jeffrey, A., Pitcher, C., Riely, J.: Towards a theory of accountability and audit. In: Backes, M., Ning, P. (eds.) ESORICS 2009. LNCS, vol. 5789, pp. 152–167. Springer, Heidelberg (2009)
Feigenbaum, J., Jaggard, A.D., Wright, R.N.: Towards a formal model of accountability. In: NSPW, pp. 45–56. ACM (2011)
Zou, J., Wang, Y., Lin, K.-J.: A formal service contract model for accountable saas and cloud services. In: SCC 2010, pp. 73–80 (2010)
Benghabrit, W., Grall, H., Royer, J.-C., Sellami, M., Ă–nen, M., Oliveira, A.S.D., Bernsmed, K.: A cloud accountability obligations representation framework. In: CLOSER (2014)
Feigenbaum, J., Jaggard, A.D., Wright, R.N., Xiao, H.: Systematizing ”accountability” in computer science. Technical Report TR-1452, University of Yale (2012)
Vaughan, J.A., Jia, L., Mazurak, K., Zdancewic, S.: Evidence-based audit. In: IEEE 25th Computer Security Foundations Symposium, pp. 177–191 (2008)
Fisher, M.: Temporal representation and reasoning. In: Handbook of Knowledge Representation, pp. 513–550. Elsevier, Amsterdam (2008)
Hodkinson, I.M., Wolter, F., Zakharyaschev, M.: Decidable fragment of first-order temporal logics. Ann. Pure Appl. Logic 106(1-3), 85–134 (2000)
Bernsmed, K., Felici, M., Oliveira, A.S.D., Sendor, J., Moe, N.B., RĂĽbsamen, T., Tountopoulos, V., Hasnain, B.: Use case descriptions. Deliverable, A4Cloud (2013)
Benghabrit, W., Grall, H., Royer, J.-C., Sellami, M.: Accountability for Abstract Component Design. In: EUROMICRO DSD/SEAA 2014, Verona, Italy (August 2014)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 IFIP International Federation for Information Processing
About this paper
Cite this paper
Benghabrit, W., Grall, H., Royer, JC., Sellami, M., Bernsmed, K., De Oliveira, A.S. (2014). Abstract Accountability Language. In: Zhou, J., Gal-Oz, N., Zhang, J., Gudes, E. (eds) Trust Management VIII. IFIPTM 2014. IFIP Advances in Information and Communication Technology, vol 430. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-662-43813-8_17
Download citation
DOI: https://doi.org/10.1007/978-3-662-43813-8_17
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-662-43812-1
Online ISBN: 978-3-662-43813-8
eBook Packages: Computer ScienceComputer Science (R0)