@INPROCEEDINGS{zann-jajo-mass-wije-05-WPES,
  title = {{Maintaining Privacy on Derived Objects}},
  author = {{Nicola} {Zannone} and {Sushil} {Jajodia} and {Fabio} {Massacci} and {Duminda} {Wijesekera}},
  booktitle = {Proceedings of the 2005 ACM Workshop on Privacy in the Electronic Society (WPES 2005). November 7th, 2005. Alexandria (USA)},
  pages = {10-19},
  abstract = {Protecting privacy means to ensure users that access to their personal data complies with their preferences. However, information can be manipulated in order to derive new objects that may disclose part of the original information. Therefore, control of information flow is necessary for guaranteeing privacy protection since users should know and control not only who access their personal data, but also who access information derived from their data. Actually, current approaches for access control do not provide support for managing propagation of information and for representing user preferences. This paper proposes to extend the Flexible Authorization Framework (FAF) in order to automatically verify whether a subject is entitled to process personal data and derive the authorizations associated with the outcome of data processing. In order to control information flow, users may specify the range of authorizations that can be associated with objects derived from their data. The framework guarantees that every ``valid'' derived object does not disclose more information than users want and preserves the permissions that users want to maintain. To make the discussion more concrete, we illustrate the proposal with a bank case study.},
  publisher = {ACM Press},
  year = {2005},
  url = {http://dit.unitn.it/~zannone/publication/zann-jajo-mass-wije-05-WPES.pdf},
  address = {New York},
  doi = {http://doi.acm.org/10.1145/1102199.1102202},
  status = {public},
  task = {T3.1, T7.3},
}