Privacy Through Accountability

Datta, Anupam

doi:10.1007/978-1-4614-8265-9_80601

Privacy Through Accountability

Anupam Datta³

Reference work entry
First Online: 01 January 2018

37 Accesses

Definition

Privacy through accountability refers to the principle that entities that hold personal information about individuals are accountable for adopting measures that protect the privacy of the data subjects [1]. This article focuses on computational treatments of this principle. This research area has produced precise definitions of privacy properties and computational accountability mechanisms to aid in their enforcement.

Formally, privacy properties impose restrictions on personal information flows. Information flow types encompass context-specific direct flows (e.g., transfer of health information from a hospital to an insurance company) [16429,16430,4], implicit flows (e.g., the use of users’ location in a web advertising system) [5], and flows of noisy statistics from databases of personal information (e.g., the use of customers’ ratings to recommend movies) [6]. The restrictions on these types of information flow include role-based restrictions (e.g., permitting certain...

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 4,499.99; Price excludes VAT (USA)

Hardcover Book: USD 6,499.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Recommended Reading

OECD. Fair information practices principles. http://www.oecd.org/internet/ieconomy/oecdguidelinesontheprotectionofprivacyandtransborderflowsofpersonaldata.htm
Barth A, Datta A, Mitchell JC, Nissenbaum H. Privacy and contextual integrity: framework and applications. In: Proceedings of the 2006 IEEE Symposium on Security and Privacy; 2006. p. 184–98.
Google Scholar
DeYoung H, Garg D, Jia L, Kaynar DK, Datta A. Experiences in the logical specification of the HIPAA and GLBA privacy laws. In: Proceedings of the 2010 ACM Workshop on Privacy in the Electronic Society; 2010. p. 73–82.
Google Scholar
May MJ, Gunter CA, Lee I. Privacy APIs: access control techniques to analyze and verify legal privacy policies. In: Proceedings of the 19th IEEE Computer Security Foundations Workshop; 2006. p. 85–97.
Google Scholar
Sen S, Guha S, Datta A, Rajamani S, Tsai J, Wing JM. Bootstrapping privacy compliance in big data systems. In: Proceedings of the 2010 IEEE Symposium on Security and Privacy; 2014.
Google Scholar
Dwork C. Differential privacy. In: Proceedings of the 33rd International Colloquium on Automata, Languages, and Programming; 2006. p. 1–12.
Google Scholar
Tschantz MC. Formalizing and enforcing purpose restrictions. PhD thesis, Computer Science Department, Carnegie Mellon University, Technical Report CMU-CS-12-117, May 2012.
Google Scholar
Garg D, Jia L, Datta A. Policy auditing over incomplete logs: theory, implementation and applications. In: Proceedings of the 18th ACM Conference on Computer and Communication Security; 2011. p. 151–62.
Google Scholar
Basin DA, Klaedtke F, Muller S, Pfitzmann B. Runtime monitoring of metric first-order temporal properties. In: Proceedings of the 28th International Conference on Foundations of Software Technology and Theoretical Computer Science; 2008. p. 49–60.
Google Scholar
Oh SE, Chun JY, Jia L, Garg D, Gunter CA, Datta A. Privacy-preserving audit for broker-based health information exchange. In: Proceedings of the 4th ACM Conference on Data and Application Security and Privacy; 2014. p. 313–20.
Google Scholar
Tschantz MC, Datta A, Datta A, Wing JM. A methodology for information flow experiments. CoRR abs/1405.2376. 2014.
Google Scholar
Lecuyer M, Ducoffe G, Lan F, Papancea A, Petsios T, Spahn R, Chaintreau A, Geambasu R. XRay: increasing the web's transparency with differential correlation. In: Proceedings of the 23rd USENIX Security Symposium; 2014.
Google Scholar
Reed J, Pierce BC. Distance makes the types grow stronger: a calculus for differential privacy. In: Proceeding of the 15th ACM SIGPLAN International Conference on Functional Programming; 2010. p. 157–68.
Google Scholar
Weitzner DJ, Abelson H, Berners-Lee T, Feigenbaum J, Hendler JA, Sussman GJ. Information accountability. Commun ACM. 2008;51(6):82–7.
Article Google Scholar
Kagal L, Pato J. Preserving privacy based on semantic policy tools. IEEE Secur Priv. 2010;8(4):25–30.
Article Google Scholar

Download references

Author information

Authors and Affiliations

Computer Science Department and Electrical and Computer Engineering Department, Carnegie Mellon University, Pittsburgh, PA, USA
Anupam Datta

Authors

Anupam Datta
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Anupam Datta .

Editor information

Editors and Affiliations

Georgia Institute of Technology College of Computing, Atlanta, GA, USA
Ling Liu
University of Waterloo School of Computer Science, Waterloo, ON, Canada
M. Tamer Özsu

Section Editor information

DiSTA, University of Insubria, Varese, Italy
Elena Ferrari

Rights and permissions

Reprints and permissions

Copyright information

About this entry

Cite this entry

Datta, A. (2018). Privacy Through Accountability. In: Liu, L., Özsu, M.T. (eds) Encyclopedia of Database Systems. Springer, New York, NY. https://doi.org/10.1007/978-1-4614-8265-9_80601

Download citation

DOI: https://doi.org/10.1007/978-1-4614-8265-9_80601
Published: 07 December 2018
Publisher Name: Springer, New York, NY
Print ISBN: 978-1-4614-8266-6
Online ISBN: 978-1-4614-8265-9
eBook Packages: Computer ScienceReference Module Computer Science and Engineering

Publish with us

Policies and ethics