On Usage Control in Relational Database Management Systems - Obligations and Their Enforcement in Joining Datasets

Mortaza S. Bargh; Marco Vink; sunil choenni

doi:10.5220/0006209801900201

On Usage Control in Relational Database Management Systems - Obligations and Their Enforcement in Joining Datasets

Mortaza S. Bargh, Marco Vink, sunil choenni

2017

Abstract

When datasets are collected and accessed legitimately, they must still be used appropriately according to policies, guidelines, rules, laws, and/or the (current) preferences of data subjects. Any inconsistency between the data collection and data usage processes can conflict with many principles of privacy like the transparency principle, no secondary use principle, or intended purpose usage principle. In this contribution we show how the usage control for the inner join operation in vertically separated relational datasets can be characterized as pre and post obligations of the Usage Control (UCON) model. This type of obligations is defined not only by the state of the UCON object (i.e., a dataset) itself, but also with respect to the state of another dataset. Such dependency on two datasets/objects provides a new insight in UCON obligation constructs when applied to the join operation. We describe also a mechanism to realize the identified obligation in a database management system and present an example realization of the proposed mechanism. Furthermore, we enlist a number of methods to determine whether two given datasets can be joined.

Download

Paper Citation

in Harvard Style

S. Bargh M., Vink M. and choenni S. (2017). On Usage Control in Relational Database Management Systems - Obligations and Their Enforcement in Joining Datasets . In Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-209-7, pages 190-201. DOI: 10.5220/0006209801900201

in Bibtex Style

@conference{icissp17,
author={Mortaza S. Bargh and Marco Vink and sunil choenni},
title={On Usage Control in Relational Database Management Systems - Obligations and Their Enforcement in Joining Datasets},
booktitle={Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2017},
pages={190-201},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006209801900201},
isbn={978-989-758-209-7},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - On Usage Control in Relational Database Management Systems - Obligations and Their Enforcement in Joining Datasets
SN - 978-989-758-209-7
AU - S. Bargh M.
AU - Vink M.
AU - choenni S.
PY - 2017
SP - 190
EP - 201
DO - 10.5220/0006209801900201