article

Free access

A roadmap for comprehensive online privacy policy management

Authors:

Annie I. Antón,

Elisa Bertino,

Ninghui Li,

Ting YuAuthors Info & Claims

Communications of the ACM, Volume 50, Issue 7

Pages 109 - 116

https://doi.org/10.1145/1272516.1272522

Published: 01 July 2007 Publication History

All formats PDF

Abstract

A framework supporting the privacy policy life cycle helps guide the kind of research to consider before sound privacy answers may be realized.

References

[1]

Acquisti, A. Privacy in electronic commerce and the economics of immediate gratification. In Proceedings of the ACM Electronic Commerce Conference. ACM Press, NY, 2004, 21--29.

Digital Library

Google Scholar

[2]

Antón, A.I., Earp, J.B., Bolchini, D., He, Q., Jensen, C., and Stufflebeam, W. The lack of clarity in financial privacy policies and the need for standardization. IEEE Security & Privacy 2, 2 (2004), 36--45.

Digital Library

Google Scholar

[3]

Antón, A.I., He, Q., and Baumer, D. The complexity underlying JetBlue's privacy policy violations. IEEE Security & Privacy (to appear).

Google Scholar

[4]

Ashley, P. A privacy logging and reporting framework. In Proceedings of the Asia Pacific Information Technology Security Conference (University of Queensland, May 24--27, 2004).

Google Scholar

[5]

Bell, D. and LaPadula, L. Secure Computer Systems: Mathematical Foundations. Technical Report MTR-2547 1. MITRE Corporation, Mar. 1973.

Google Scholar

[6]

Earp, J.B., Baumer, D.L., and Poindexter, J.C. Modeling privacy values with experimental economics. Workshop on Privacy in the Electronic Society (Washington, D.C., Oct. 28, 2004).

Digital Library

Google Scholar

[7]

Karjoth, G., Schunter, M., and Van Herreweghe, E. Translating privacy practices into privacy promises---How to promise what you can keep. In Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks. June 2003, 135--146.

Digital Library

Google Scholar

[8]

Karjoth, G., Schunter, M., and Waidner, M. Platform for enterprise privacy practices: Privacy-enabled management of customer data. In Proceedings of the Second International Workshop on Privacy Enhancing Technologies, LNCS 2482, (2003), 69--84.

Digital Library

Google Scholar

[9]

Li, N., Yu, T., and Antón, A.I. A semantics-based approach to privacy languages. CERIAS Technical Report TR 2003--28. Purdue University, Nov. 2003.

Google Scholar

[10]

Schunter, M., Van Herreweghen, E., and Waidner, M. Expressive privacy promises---How to improve the Platform for Privacy Preferences (P3P). Position paper for W3C Workshop on the Future of P3P (available at www.w3.org/2002/p3p-ws/pp/ibm-zuerich.pdf).

Google Scholar

[11]

Schutzer, D.M. Citigroup P3P position paper. Position paper for W3C Workshop on the Future of P3P (available at www.w3.org/2002/p3p-ws/pp/ibm-zuerich.pdf).

Google Scholar

[12]

W3C. Platform for Privacy Preferences (P3P) project; www.w3.org/P3P/

Google Scholar

Cited By

View all

Rahat TLong MTian YHong YWang L(2022)Is Your Policy Compliant?Proceedings of the 21st Workshop on Privacy in the Electronic Society10.1145/3559613.3563195(89-102)Online publication date: 7-Nov-2022
https://dl.acm.org/doi/10.1145/3559613.3563195
Barth SIonita DHartel P(2022)Understanding Online Privacy—A Systematic Review of Privacy Visualizations and Privacy by Design GuidelinesACM Computing Surveys10.1145/350228855:3(1-37)Online publication date: 3-Feb-2022
https://dl.acm.org/doi/10.1145/3502288
Bookert NBondurant WAnwar M(2022)Data practices of internet of medical things: A look from privacy policy perspectivesSmart Health10.1016/j.smhl.2022.10034226(100342)Online publication date: Dec-2022
https://doi.org/10.1016/j.smhl.2022.100342
Show More Cited By

Index Terms

A roadmap for comprehensive online privacy policy management
1. Applied computing
  1. Document management and text processing
    1. Document preparation
      1. Multi / mixed media creation
  2. Electronic commerce
2. Human-centered computing
  1. Human computer interaction (HCI)
    1. Interaction paradigms
      1. Hypertext / hypermedia

Recommendations

Group Policy: Fundamentals, Security, and the Managed Desktop
Privacy policy enforcement in enterprises with identity management solutions
PST '06: Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services

People are usually asked by enterprises and other organizations to disclose their personal information to access web services and engage in business interactions. Enterprises need this information to enable their business processes. This is unlikely to ...
Privacy policy enforcement in enterprises with identity management solutions
Privacy, Security and Trust (PST) Technologies: Evolution and Challenges

People are usually asked by enterprises to disclose their personal information to access web services and engage in business interactions. Enterprises need this information to enable their business processes. This is unlikely to change, at least in the ...

Comments

Information & Contributors

Information

Published In

Communications of the ACM Volume 50, Issue 7

Creating a science of games

July 2007

120 pages

ISSN:0001-0782

EISSN:1557-7317

DOI:10.1145/1272516

Issue’s Table of Contents

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 July 2007

Published in CACM Volume 50, Issue 7

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

58
Total Citations
View Citations
2,485
Total Downloads

Downloads (Last 12 months)169
Downloads (Last 6 weeks)14

Reflects downloads up to 09 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Rahat TLong MTian YHong YWang L(2022)Is Your Policy Compliant?Proceedings of the 21st Workshop on Privacy in the Electronic Society10.1145/3559613.3563195(89-102)Online publication date: 7-Nov-2022
https://dl.acm.org/doi/10.1145/3559613.3563195
Barth SIonita DHartel P(2022)Understanding Online Privacy—A Systematic Review of Privacy Visualizations and Privacy by Design GuidelinesACM Computing Surveys10.1145/350228855:3(1-37)Online publication date: 3-Feb-2022
https://dl.acm.org/doi/10.1145/3502288
Bookert NBondurant WAnwar M(2022)Data practices of internet of medical things: A look from privacy policy perspectivesSmart Health10.1016/j.smhl.2022.10034226(100342)Online publication date: Dec-2022
https://doi.org/10.1016/j.smhl.2022.100342
Yang LChen XLuo YLan XChen L(2021)PurExtSecurity and Communication Networks10.1155/2021/55525012021Online publication date: 1-Jan-2021
https://dl.acm.org/doi/10.1155/2021/5552501
Cheng ZLi KTeng C(2021)Understanding the influence of privacy protection functions on continuance usage of push notification serviceAslib Journal of Information Management10.1108/AJIM-04-2021-0121ahead-of-print:ahead-of-printOnline publication date: 16-Nov-2021
https://doi.org/10.1108/AJIM-04-2021-0121
Rong‐na XHui LGuo‐zhen SYun‐chuan GBen NMang S(2021)Provenance‐based data flow control mechanism for Internet of thingsTransactions on Emerging Telecommunications Technologies10.1002/ett.393432:5Online publication date: 7-May-2021
https://dl.acm.org/doi/10.1002/ett.3934
Miorandi DRizzardi ASicari SCoen-Porisini A(2020)Sticky Policies: A SurveyIEEE Transactions on Knowledge and Data Engineering10.1109/TKDE.2019.293635332:12(2481-2499)Online publication date: 1-Dec-2020
https://doi.org/10.1109/TKDE.2019.2936353
Zhu RSrivastava ASutanto J(2020)Privacy-deprived e-commerce: the efficacy of consumer privacy policies on China's e-commerce websites from a legal perspectiveInformation Technology & People10.1108/ITP-03-2019-0117ahead-of-print:ahead-of-printOnline publication date: 21-Aug-2020
https://doi.org/10.1108/ITP-03-2019-0117
Caramujo JRodrigues Da Silva AMonfared SRibeiro ACalado PBreaux T(2019)RSL-IL4PrivacyRequirements Engineering10.1007/s00766-018-0305-224:1(1-26)Online publication date: 1-Mar-2019
https://dl.acm.org/doi/10.1007/s00766-018-0305-2
Thuraisingham BKantarcioglu MBertino EBakdash JFernandez MBertino ELin DLobo J(2018)Towards a Privacy-Aware Quantified Self Data Management FrameworkProceedings of the 23nd ACM on Symposium on Access Control Models and Technologies10.1145/3205977.3205997(173-184)Online publication date: 7-Jun-2018
https://dl.acm.org/doi/10.1145/3205977.3205997
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Magazine Site

View this article on the magazine site (external)

Magazine Site

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

References

Cited By

Index Terms

Recommendations

Group Policy: Fundamentals, Security, and the Managed Desktop

Privacy policy enforcement in enterprises with identity management solutions

Privacy policy enforcement in enterprises with identity management solutions

Comments

Information

Published In

Publisher

Publication History

Permissions

Check for updates

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

PDF

eReader

Magazine Site

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations