Skip to main content
SpringerLink
Log in
Book cover

Privacy and Identity Management for Life pp 313–326Cite as

Matching Privacy Policies and Preferences:Access Control, Obligations, Authorisations, and Downstream Usage

  • Chapter
  • First Online:

Abstract

This chapter describes how users’ privacy preferences and services’ privacy policies are matched in order to decide whether personal data can be shared with services. Matching has to take into account data handling, i.e. does services handle collected data in a suitable way according to user expectations, and access control, i.e. do the service that will be granted access to the data comply with user expectations. Whereas access control describes the conditions that have to be fulfilled before data is released, data handling describes how the data has to be treated after it is released. Data handling is specified as obligations that must be fulfilled by the service and authorisations that may be used by the service. An important aspect of authorisation, especially in light of the current trend towards composed web services (so-called mash-ups), is downstream usage, i.e., with whom and under which data handling restrictions data can be shared.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   129.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   169.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD   169.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Author information

Authors and Affiliations

  1. Microsoft EMIC, Ritterstrasse 23, Aachen, D-52072, Germany

    Laurent Bussard

  2. IBM Research – Zurich, Säumerstrasse 4, Rüschlikon, CH-8803, Switzerland

    Gregory Neven & Franz-Stefan Preiss

Authors
  1. Laurent Bussard
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Gregory Neven
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Franz-Stefan Preiss
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Säumerstr. 4, Zurich, 8803, Switzerland

    Jan Camenisch

  2. Universitetsgatan 2, Karlstad, 651 88, Sweden

    Simone Fischer-Hübner

  3. , Mobile Business & Multilateral Security, Goethe University Frankfurt, Grueneburgplatz 1, Frankfurt, 60629, Germany

    Kai Rannenberg

Rights and permissions

Reprints and permissions

Copyright information

© 2011 Springer-Verlag Berlin Heidelberg

About this chapter

Cite this chapter

Bussard, L., Neven, G., Preiss, FS. (2011). Matching Privacy Policies and Preferences:Access Control, Obligations, Authorisations, and Downstream Usage. In: Camenisch, J., Fischer-Hübner, S., Rannenberg, K. (eds) Privacy and Identity Management for Life. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-20317-6_17

Download citation

Publish with us

Policies and ethics

Search

Navigation