Abstract
Data usage control enables data owners to enforce policies over how their data may be used after they have been released and accessed. We address distributed aspects of this problem, which arise if the protected data reside within multiple systems. We contribute by formalizing, implementing, and evaluating a fully decentralized system that (i) generically and transparently tracks protected data across systems, (ii) propagates data usage policies along, and (iii) efficiently and preventively enforces policies in a decentralized manner. The evaluation shows that (i) dataflow tracking and policy propagation achieve a throughput of 21-54% of native execution and (ii) decentralized policy enforcement outperforms a centralized approach in many situations.
Original language | English |
---|---|
Article number | 12 |
Journal | ACM Transactions on Privacy and Security |
Volume | 21 |
Issue number | 3 |
DOIs | |
State | Published - Jun 2018 |
Keywords
- Data protection
- Data usage control
- Dataflow tracking
- Distributed systems
- Policy enforcement
- Privacy
- Security