Affiliation:
1. University of Cyprus, Cyprus
Abstract
Privacy protection constitutes a genuine human right reflected both in the legislation and in different aspects of software engineering. Sensitive information needs to be protected in end-users interaction with Web Services especially in cases, where context-aware features are included. In this work the authors address the inclusion of consumer privacy preferences in the provision of context-aware Web Services. To achieve this the authors propose, on the one hand, a preferences language, where end-users can specify their privacy options, namely Consumer Privacy Language, and, on the other hand, a seamless enforcement mechanism that considers consumer preferences by intercepting and modifying appropriately Simple Object Access Protocol request and response messages. The enforcement approach has been evaluated based on various execution metrics for an example use case consisting of various Web Services and for different user configurations demonstrating the usefulness of the approach assisting towards the provision of privacy-aware environments.
Reference38 articles.
1. Abowd, G. D., Dey, A. K., Brown, P. J., Davies, N., Smith, M., & Steggles, P. (1999). Towards a better understanding of context and context-awareness. In Proceedings of the 1st international symposium on Handheld and Ubiquitous Computing, Karlsruhe, Germany (pp. 304-307).
2. XPref: a preference language for P3P
3. Privacy Protection Framework with Defined Policies for Service-Oriented Architecture
4. Benbernou, S., Meziane, H., Hua Yin, L., & Hacid, M.-S. (2007). A privacy agreement model for web services. In Proceedings of the IEEE International Conference on Services Computing (pp. 196-203).
5. Chen, G., & Kotz, D. (2000). A survey of context-aware mobile computing research. Technical Report TR2000-381, Department of Computer Science, Dartmouth College.