Semantic Access Control for Privacy Management of Personal Sensing in Smart Cities

Personal and home sensors generate valuable information that could be used in Smart Cities. Unfortunately, typically, this data is locked out and used only by application/system developer. While vendors are to blame, one should consider also the"binary nature"of data access. Specifically, either owner has full control over her data (e.g. in a"closed system"), or she completely looses control, when the data is"opened". In this context, we propose, a semantic technologies-based, authorization and privacy control framework that enables user to maintain flexible, yet manageable data access control policies. The proposed approach is described in detail, including implementation and testing.

[1]  V. Gay,et al.  Bringing Health and Fitness Data Together for Connected Health Care: Mobile Apps as Enablers of Interoperability , 2015, Journal of medical Internet research.

[2]  Evangelos Theodoridis,et al.  SmartSantander: IoT experimentation over a smart city testbed , 2014, Comput. Networks.

[3]  Thomas R. Gruber,et al.  A translation approach to portable ontology specifications , 1993, Knowl. Acquis..

[4]  B. Malin,et al.  Correction: A Systematic Review of Re-Identification Attacks on Health Data , 2015, PloS one.

[5]  Yutaka Watanobe,et al.  Agent-based resource management in Tsunami modeling , 2013, 2013 Federated Conference on Computer Science and Information Systems.

[6]  Carlos Fernández-Valdivielso,et al.  Towards Personal Privacy Control , 2007, OTM Workshops.

[7]  J. Wareham,et al.  A Smart City Initiative: the Case of Barcelona , 2012, Journal of the Knowledge Economy.

[8]  M. Ashburner,et al.  Gene Ontology: tool for the unification of biology , 2000, Nature Genetics.

[9]  Michael Hecker,et al.  A generic privacy ontology and its applications to different domains , 2009 .

[10]  Nora Kamprath,et al.  Supporting attribute-based access control with ontologies , 2006, First International Conference on Availability, Reliability and Security (ARES'06).

[11]  Robert Steele,et al.  Smartphone‐based public health information systems: Anonymity, privacy and intervention , 2015, J. Assoc. Inf. Sci. Technol..

[12]  Lee Feigenbaum,et al.  The Semantic Web in action. , 2007, Scientific American.

[13]  Robert Steele,et al.  How personal fitness data can be re-used by smart cities , 2011, 2011 Seventh International Conference on Intelligent Sensors, Sensor Networks and Information Processing.

[14]  Wen Hu,et al.  Towards privacy-sensitive participatory sensing , 2009, 2009 IEEE International Conference on Pervasive Computing and Communications.

[15]  Maria Ganzha,et al.  Semantically Enriched Data Access Policies in eHealth , 2016, Journal of Medical Systems.

[16]  Shuo-Yan Chou,et al.  An Activity Ontology for Context-Aware Health Promotion Application , 2013, 2013 IEEE 37th Annual Computer Software and Applications Conference Workshops.

[17]  David F. Ferraiolo,et al.  Guide to Attribute Based Access Control (ABAC) Definition and Considerations , 2014 .

[18]  Alessandro Acquisti,et al.  Follow My Recommendations: A Personalized Privacy Assistant for Mobile App Permissions , 2016, SOUPS.

[19]  Shuigeng Zhou,et al.  A novel privacy preserving method for data publication , 2019, Inf. Sci..

[20]  Maria Ganzha,et al.  Semantic Policy Information Point - preliminary considerations , 2015, ICT Innovations.

[21]  Elisa Bertino,et al.  Supporting RBAC with XACML+OWL , 2009, SACMAT '09.

[22]  Predrag V. Klasnja,et al.  Exploring Privacy Concerns about Personal Sensing , 2009, Pervasive.

[23]  Kin K. Leung,et al.  A Survey of Incentive Mechanisms for Participatory Sensing , 2015, IEEE Communications Surveys & Tutorials.

[24]  Tania Bailoni,et al.  Semantic Technologies for Healthy Lifestyle Monitoring , 2018, International Semantic Web Conference.

[25]  Norman M. Sadeh,et al.  Reconciling mobile app privacy and usability on smartphones: could user privacy profiles help? , 2014, WWW.

[26]  M. Paprzycki,et al.  Combining semantic technologies with a content-based image retrieval system – Preliminary considerations , 2017 .

[27]  Daniel Le Métayer,et al.  Analysis of Privacy Policies to Enhance Informed Consent (Extended Version) , 2019, DBSec.

[28]  Maria Ganzha,et al.  Graphical Interface for Ontology Mapping with Application to Access Control , 2017, ACIIDS.

[29]  Anupam Das,et al.  Personalized Privacy Assistants for the Internet of Things: Providing Users with Notice and Choice , 2018, IEEE Pervasive Computing.

[30]  I. Rubinstein,et al.  Systematic Government Access to Personal Data: A Comparative Analysis , 2014 .

[31]  Maria Ganzha,et al.  OntoPlay - A Flexible User-Interface for Ontology-based Systems , 2012, AT.

[32]  Deborah Estrin,et al.  Personal data vaults: a locus of control for personal data streams , 2010, CoNEXT.

[33]  Alexandre Passant,et al.  A Privacy Preference Ontology (PPO) for Linked Data , 2011, LDOW.

[34]  Liehuang Zhu,et al.  Achieving differential privacy of trajectory data publishing in participatory sensing , 2017, Inf. Sci..

[35]  Livio Robaldo,et al.  PrOnto: Privacy Ontology for Legal Reasoning , 2018, EGOVIS.

[36]  I-Ching Hsu,et al.  Extensible access control markup language integrated with Semantic Web technologies , 2013, Inf. Sci..

[37]  Peter F. Patel-Schneider,et al.  OWL 2 Web Ontology Language Primer (Second Edition) , 2012 .

[38]  Maria Ganzha,et al.  Semantic interoperability in the Internet of Things: An overview from the INTER-IoT perspective , 2017, J. Netw. Comput. Appl..

[39]  E. A. vanZoonen Privacy concerns in smart cities , 2016 .

[40]  Maria Ganzha,et al.  System for semantic technology-based access management in a port terminal , 2018 .