A semantics based approach to privacy languages

N. Li; T. Yu; A. Antón

A semantics based approach to privacy languages

N. Li^*, T. Yu, A. Antón

^*Corresponding author for this work

Research output: Contribution to journal › Article › peer-review

17 Citations (Scopus)

Abstract

A key reason for the slow adoption of the Platform for Privacy Preferences (P3P) is the lack of a formal semantics. Without a formal semantics, a P3P policy may be semantically inconsistent and may be interpreted and represented differently by different user agents. In this paper, we redress these problems by proposing a relational formal semantics for P3P policies, which precisely models the relationships between different components of P3P statements (i.e., collected data items, purposes, recipients and retentions). Based on this semantics, we present SemPref, a simple, efficient and expressive semantics-based preference language. Unlike previously proposed preference languages, SemPref queries the meaning of a privacy policy rather than its syntactic representation. The proposed formal semantics and preference language are an important step towards improving P3P, making it more comprehensible to enterprises and individual users, and ultimately accelerating the large-scale adoption of P3P across the Internet.

Original language	English
Pages (from-to)	339-352
Number of pages	14
Journal	Computer Systems Science and Engineering
Volume	21
Issue number	5
Publication status	Published - Sept 2006
Externally published	Yes

Keywords

Formal semantics
Platfoirm for privacy preferences (P3P)
Privacy languages

Cite this

@article{433389655a28420590cc5bc1ed5b33a7,

title = "A semantics based approach to privacy languages",

abstract = "A key reason for the slow adoption of the Platform for Privacy Preferences (P3P) is the lack of a formal semantics. Without a formal semantics, a P3P policy may be semantically inconsistent and may be interpreted and represented differently by different user agents. In this paper, we redress these problems by proposing a relational formal semantics for P3P policies, which precisely models the relationships between different components of P3P statements (i.e., collected data items, purposes, recipients and retentions). Based on this semantics, we present SemPref, a simple, efficient and expressive semantics-based preference language. Unlike previously proposed preference languages, SemPref queries the meaning of a privacy policy rather than its syntactic representation. The proposed formal semantics and preference language are an important step towards improving P3P, making it more comprehensible to enterprises and individual users, and ultimately accelerating the large-scale adoption of P3P across the Internet.",

keywords = "Formal semantics, Platfoirm for privacy preferences (P3P), Privacy languages",

author = "N. Li and T. Yu and A. Ant{\'o}n",

year = "2006",

month = sep,

language = "English",

volume = "21",

pages = "339--352",

journal = "Computer Systems Science and Engineering",

issn = "0267-6192",

publisher = "Tech Science Press",

number = "5",

}

TY - JOUR

T1 - A semantics based approach to privacy languages

AU - Li, N.

AU - Yu, T.

AU - Antón, A.

PY - 2006/9

Y1 - 2006/9

N2 - A key reason for the slow adoption of the Platform for Privacy Preferences (P3P) is the lack of a formal semantics. Without a formal semantics, a P3P policy may be semantically inconsistent and may be interpreted and represented differently by different user agents. In this paper, we redress these problems by proposing a relational formal semantics for P3P policies, which precisely models the relationships between different components of P3P statements (i.e., collected data items, purposes, recipients and retentions). Based on this semantics, we present SemPref, a simple, efficient and expressive semantics-based preference language. Unlike previously proposed preference languages, SemPref queries the meaning of a privacy policy rather than its syntactic representation. The proposed formal semantics and preference language are an important step towards improving P3P, making it more comprehensible to enterprises and individual users, and ultimately accelerating the large-scale adoption of P3P across the Internet.

AB - A key reason for the slow adoption of the Platform for Privacy Preferences (P3P) is the lack of a formal semantics. Without a formal semantics, a P3P policy may be semantically inconsistent and may be interpreted and represented differently by different user agents. In this paper, we redress these problems by proposing a relational formal semantics for P3P policies, which precisely models the relationships between different components of P3P statements (i.e., collected data items, purposes, recipients and retentions). Based on this semantics, we present SemPref, a simple, efficient and expressive semantics-based preference language. Unlike previously proposed preference languages, SemPref queries the meaning of a privacy policy rather than its syntactic representation. The proposed formal semantics and preference language are an important step towards improving P3P, making it more comprehensible to enterprises and individual users, and ultimately accelerating the large-scale adoption of P3P across the Internet.

KW - Formal semantics

KW - Platfoirm for privacy preferences (P3P)

KW - Privacy languages

UR - http://www.scopus.com/inward/record.url?scp=33846410278&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:33846410278

SN - 0267-6192

VL - 21

SP - 339

EP - 352

JO - Computer Systems Science and Engineering

JF - Computer Systems Science and Engineering

IS - 5

ER -

A semantics based approach to privacy languages

Abstract

Keywords

Other files and links

Fingerprint

Cite this