Transcript 下載/瀏覽
Privacy Ontology Support for ECommerce This paper appears in: Internet Computing, IEEE Issue Date : March-April 2008 Volume : 12 , Issue:2 On page (s): 54 ISSN : 1089-7801 INSPEC Accession Number: 9902614 Digital Object Identifier : 10.1109/MIC.2008.4 1 Date of Current Version : 05 三 月 2008 Sponsored by : IEEE Computer Society 碩研一甲 M9990206 報告人:謝侃呈 Outline ○ ○ Abstract Introduction Developing the Privacy Ontology Privacy Concepts Standardizing Terms and Concepts Conclusion Abstract Privacy is becoming increasingly important due to the advent of e-commerce. The authors define a privacy ontology to support the provision of privacy and help derive the level of privacy associated with ecommerce transactions and applications. Introduction Privacy in e-commerce has attracted more and more attention over the past decade. Privacy on the Web faces massive problems due to two major factors: First , “the inherently open nondeterministic nature of the Web” second “ the complex, leakage-prone information flow of many Web based transactions that involve the transfer of sensitive, personal information ” Ex: DSW美國知名鞋店(Designer Shoe Warehouse) 2005年4月DSW大型零售鞋店的資料庫就被入侵,有超過140萬客戶 的名字或信用卡被偷走 Developing the Privacy Ontology Ontology 定義:用來描述某個知識領域的詞彙、基本術 語及術語跟術語之間的關係。 ○ Ex: OWL 在電腦知識領域裡, 它代表本體論語言的縮寫. 在動物知識領域裡, 它代表貓頭鷹. Privacy Concepts A privacy ontology shows different concepts and the associations between those concepts, enabling interoperability and letting us determine the impact or privacy level a given transaction has on a data subject when he or she agrees to enter it. Hence, to start creating an ontology for privacy, we use the model of classical authentication and authorization. Standardizing Terms and Concepts To create our privacy ontology, we must first develop a glossary of terms, which requires us to collect information about what privacy mechanisms and privacy principles are currently available. Generally, legislative documents provide a solid foundation for those concepts and are usually covered by individual nations’ privacy regulations. We used the privacy notions and concepts from the European Parliament Directive 95/46/EC11 because privacy legislation in the European Union is more protective than in many other countries. Conclusion In e-commerce, privacy is a significant factor in whether consumers adopt Webbased transactions.