DataTags, Data Handling Policy Spaces and the Tags Language

Michael Bar-Sinai, Latanya Sweeney, Merce Crosas

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

14 Scopus citations

Abstract

Widespread sharing of scientific datasets holds great promise for new scientific discoveries and great risks for personal privacy. Dataset handling policies play the critical role of balancing privacy risks and scientific value. We propose an extensible, formal, theoretical model for dataset handling policies. We define binary operators for policy composition and for comparing policy strictness, such that propositions like «this policy is stricter than that policy» can be formally phrased. Using this model, The policies are described in a machine-executable and human-readable way. We further present the Tags programming language and toolset, created especially for working with the proposed model. Tags allows composing interactive, friendly questionnaires which, when given a dataset, can suggest a data handling policy that follows legal and technical guidelines. Currently, creating such a policy is a manual process requiring access to legal and technical experts, which are not always available. We present some of Tags' tools, such as interview systems, visualizers, development environment, and questionnaire inspectors. Finally, we discuss methodologies for questionnaire development. Data for this paper include a questionnaire for suggesting a HIPAA compliant data handling policy, and formal description of the set of data tags proposed by the authors in a recent paper.

Original languageEnglish
Title of host publicationProceedings - 2016 IEEE Symposium on Security and Privacy Workshops, SPW 2016
PublisherInstitute of Electrical and Electronics Engineers
Pages1-8
Number of pages8
ISBN (Electronic)9781509008247
DOIs
StatePublished - 1 Aug 2016
Event2016 IEEE Symposium on Security and Privacy Workshops, SPW 2016 - San Jose, United States
Duration: 23 May 201625 May 2016

Publication series

NameProceedings - 2016 IEEE Symposium on Security and Privacy Workshops, SPW 2016

Conference

Conference2016 IEEE Symposium on Security and Privacy Workshops, SPW 2016
Country/TerritoryUnited States
CitySan Jose
Period23/05/1625/05/16

Keywords

  • DSL
  • data handling policy
  • data repository
  • datatags
  • legal modeling

ASJC Scopus subject areas

  • Safety, Risk, Reliability and Quality
  • Computer Networks and Communications
  • Artificial Intelligence

Fingerprint

Dive into the research topics of 'DataTags, Data Handling Policy Spaces and the Tags Language'. Together they form a unique fingerprint.

Cite this