A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility

Sarah Syed-Winkler; Sebastian Pape; Ahmad Sabouri

A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility

Syed-Winkler, S.; Pape, S. and Sabouri, A.

In CSCS '22: ACM Computer Science in Cars Symposium, Ingolstadt, Germany, December 8th, 2022, ACM, 2022.

Abstract

Cars are getting rapidly connected with their environment allowing all kind of mobility services based on the data from various sensors in the car. Data privacy is in many cases only ensured by legislation, i.e., the European General Data Protection Regulation (GDPR), but not technically enforced. Therefore, we present a system model for enforcing purpose limitation based on data tagging and attribute-based encryption. By encrypting sensitive data in a way only services for a certain purpose can decrypt the data, we ensure access control based on the purpose of a service. In this paper, we present and discuss our system model with the aim to improve technical enforcement of GDPR principles..

Bibtex

@InProceedings{SPS22cscs,
  author    = {Sarah Syed-Winkler and Sebastian Pape and Ahmad Sabouri},
  title     = {A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility},
  booktitle = {{{CSCS} '22: ACM Computer Science in Cars Symposium, Ingolstadt, Germany, December 8th, 2022}},
  year      = {2022},
  month     = {12},
  publisher = {ACM},
  doi       = {10.1145/3568160.3570231},
  keywords  = {privacy, PETs, IoT, cloud computing, AUTOPSY},
  url       = {https://dl.acm.org/doi/abs/10.1145/3568160.3570231},
}

A Data Protection-Oriented System Model Enforcing Purpose Limitation for Connected Mobility

Syed-Winkler, S.; Pape, S. and Sabouri, A.

Abstract

Bibtex

PDF