论文信息 - Towards an Ontology-Based Definition of Data Anonymization Policy for Cloud Computing and Big Data

Towards an Ontology-Based Definition of Data Anonymization Policy for Cloud Computing and Big Data

The considerable increase in the use of cloud computing and big data solutions requires the use of advanced technologies to ensure data security, privacy and dependability. One of the possible solutions is the use of data anonymization techniques, which performs an important role in data privacy protection. There are several techniques and algorithms to implement data anonymization. However, specifications and guidelines to guide and standardize the use of these resources are needed. These guidelines, called anonymization policies, are considered an important asset in organizations that want to protect their customer personal data. Although the use of data anonymization brings great benefits, there are no clear directions for data anonymization policies, which ends up lim- iting its adoption by companies and organizations. This work presents a generic anonymization policy to be used in cloud and big data platforms. It also presents a draft ontology with explicit formal specifications for data anonymization policies. This ontology has three main intentions: (i) to standardize the use of data anonymization policies; (ii) share common understanding of the structure of data anonymization among people; (iii) enable reuse of data anonymization policies. In this work, an ongoing study case within the EUBra-BIGSEA project will be implemented.

[1] Maria Jane de Queiroz,et al. Uma Ontologia de Domínio para Preservação de Privacidade em Dados Publicados pelo Governo Brasileiro , 2016 .

[2] Ira S. Rubinstein,et al. Anonymization and Risk , 2015 .

[3] Thomas Cerqueus,et al. Ontology-Based Quality Evaluation of Value Generalization Hierarchies for Data Anonymization , 2015, ArXiv.

[4] Balaji Raghunathan,et al. The Complete Book of Data Anonymization: From Planning to Implementation , 2013 .

[5] Jianneng Cao,et al. Publishing Microdata with a Robust Privacy Guarantee , 2012, Proc. VLDB Endow..

[6] David Sánchez,et al. Ontology-Based Anonymization of Categorical Values , 2010, MDAI.

[7] Ninghui Li,et al. t-Closeness: Privacy Beyond k-Anonymity and l-Diversity , 2007, 2007 IEEE 23rd International Conference on Data Engineering.

[8] ASHWIN MACHANAVAJJHALA,et al. L-diversity: privacy beyond k-anonymity , 2006, 22nd International Conference on Data Engineering (ICDE'06).

[9] Thomas Wright. Security, privacy, and anonymity , 2004, CROS.

[10] Latanya Sweeney,et al. k-Anonymity: A Model for Protecting Privacy , 2002, Int. J. Uncertain. Fuzziness Knowl. Based Syst..

[11] N. F. Noy,et al. Ontology Development 101: A Guide to Creating Your First Ontology , 2001 .

[12] Thomas R. Gruber,et al. A translation approach to portable ontology specifications , 1993, Knowl. Acquis..