Enhancing Data Protection in Dynamic Consent Management Systems: Formalizing Privacy and Security Definitions with Differential Privacy, Decentralization, and Zero-Knowledge Proofs-Reference-Cited by-同舟云学术

Enhancing Data Protection in Dynamic Consent Management Systems: Formalizing Privacy and Security Definitions with Differential Privacy, Decentralization, and Zero-Knowledge Proofs

Published:2023-09-01 Issue:17 Volume:23 Page:7604
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Khalid Muhammad Irfan¹^ORCID,Ahmed Mansoor²^ORCID,Kim Jungsuk³⁴

Affiliation:

1. Department of Information and Electrical Engineering and Applied Mathematics, University of Salerno Fisciano, 84084 Fisciano, Italy

2. ADAPT Centre, Innovative Value Institute, Maynooth University, W23 A3HY Maynooth, Ireland

3. Research Laboratory, Cellico Inc., Seongnam-si 13449, Gyeonggi-do, Republic of Korea

4. Department of Biomedical Engineering, Gachon University, Seongnam-si 13120, Gyeonggi-do, Republic of Korea

Abstract

Dynamic consent management allows a data subject to dynamically govern her consent to access her data. Clearly, security and privacy guarantees are vital for the adoption of dynamic consent management systems. In particular, specific data protection guarantees can be required to comply with rules and laws (e.g., the General Data Protection Regulation (GDPR)). Since the primary instantiation of the dynamic consent management systems in the existing literature is towards developing sustainable e-healthcare services, in this paper, we study data protection issues in dynamic consent management systems, identifying crucial security and privacy properties and discussing severe limitations of systems described in the state of the art. We have presented the precise definitions of security and privacy properties that are essential to confirm the robustness of the dynamic consent management systems against diverse adversaries. Finally, under those precise formal definitions of security and privacy, we have proposed the implications of state-of-the-art tools and technologies such as differential privacy, blockchain technologies, zero-knowledge proofs, and cryptographic procedures that can be used to build dynamic consent management systems that are secure and private by design.

Funder

National Research Foundation of Korea

Ministry of Trade, Industry and Energy and the Korea Institute of Industrial Technology Evaluation and Management

Publisher

MDPI AG

Subject

Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry

Link

https://www.mdpi.com/1424-8220/23/17/7604/pdf

Reference64 articles.

1. Asghar, M.R., and Russello, G. (2011, January 9). Flexible and dynamic consent-capturing. Proceedings of the Open Problems in Network Security: IFIP WG 11.4 International Workshop, iNetSec 2011, Lucerne, Switzerland. Revised Selected Papers.

2. Broad consent versus dynamic consent in biobank research: Is passive participation an ethical problem?;Steinsbekk;Eur. J. Hum. Genet.,2013

3. Personal data usage and privacy considerations in the COVID-19 global pandemic;Almeida;Cienc. Saude Coletiva,2020

4. COVID-19 mobile positioning data contact tracing and patient privacy regulations: Exploratory search of global response strategies and the use of digital tools in Nigeria;Ekong;JMIR mHealth uHealth,2020

5. Voigt, P., and Von dem Bussche, A. (2017). The EU General Data Protection Regulation (gdpr), A Practical Guide; Springer International Publishing. [1st ed.].

Cited by 2 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Safeguarding the Future;Advances in Healthcare Information Systems and Administration;2024-05-28

2. Artificial intelligence (AI) in pharmacy: an overview of innovations;Journal of Medical Economics;2023-10-12