Abstract
An electronic Data Sharing Agreement (DSA) is a human-readable, yet machine-processable contract, regulating how organizations and/or individuals share data. In this paper, we shed light on DSA engineering, i.e., the process of studying how data sharing is ruled in traditional legal human-readable contracts and mapping their fields (and rules) into formats that are machine-processable, leading to the transposition of the traditional contract into the electronic DSA. Tangible creation of the electronic DSA is possible through the design and implementation of a three-step DSA definition phase, with an associated authoring tool. The tool is specifically tailored for encoding not only the terms of law but also the rules that an organization may have put in place (e.g., corporate internal policies, or privacy policies, or data processing agreements) to manage the data, as well as end users’ privacy preferences.
The research leading to these results has received funding from the EU Seventh Framework Programme (FP7/2007–2013) under grant no 610853 (Coco Cloud).
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
Notes
- 1.
With a little abuse of notation, in this paper we use these terms also referring to other kind of data, to identify the actors involved in a general data sharing agreement.
- 2.
- 3.
- 4.
- 5.
- 6.
- 7.
References
Antoniou, G., Harmelen, F.V.: Web ontology language: OWL. In: Staab, S., Studer, R. (eds.) Handbook on Ontologies in Information Systems, pp. 67–92. Springer, Heidelberg (2003)
Axiomatics. www.axiomatics.com. Accessed 22 December 2015
Brodie, C., et al.: An empirical study of natural language parsing of privacy policy rules using the SPARCLE policy workbench. In: SOUPS. ACM (2006)
Brodie, C., et al.: The coalition policy management portal for policy authoring, verification, and deployment. In: POLICY, pp. 247–249 (2008)
Casassa Mont, M., Matteucci, I., Petrocchi, M., Sbodio, M.: Towards safer information sharing in the cloud. Int. J. Inf. Secur. 14, 319–334 (2015)
Consequence Project. Infrastructure for data sharing agreements, December 2010. http://goo.gl/is7cpR
Information Commissioner’s Office (ICO). Data sharing code of practice, pp. 26, 41–45 (2011). https://goo.gl/11vXHb. Accessed 22 December 2015
Johnson, M., Karat, J., Karat, C.-M., Grueneberg, K.: Optimizing a policy authoring framework for security and privacy policies. In: SOUPS, pp. 8:1–8:9. ACM (2010)
Karat, J., et al.: Designing natural language and structured entry methods for privacy policy authoring. In: Costabile, M.F., Paternó, F. (eds.) INTERACT 2005. LNCS, vol. 3585, pp. 671–684. Springer, Heidelberg (2005)
Lunardelli, A., Matteucci, I., Mori, P., Petrocchi, M.: A prototype for solving conflicts in XACML-based e-Health policies. In: Computer-Based Medical Systems, pp. 449–452. IEEE (2013)
Matteucci, I., Mori, P., Petrocchi, M.: Prioritized execution of privacy policies. In: Di Pietro, R., Herranz, J., Damiani, E., State, R. (eds.) DPM 2012 and SETOP 2012. LNCS, vol. 7731, pp. 133–145. Springer, Heidelberg (2013)
Matteucci, I., Petrocchi, M., Sbodio, M.L.: CNL4DSA: a controlled natural language for data sharing agreements. In: SAC: Privacy on the Web Track, pp. 616–620. ACM (2010)
Matteucci, I., Petrocchi, M., Sbodio, M.L., Wiegand, L.: A design phase for data sharing agreements. In: Garcia-Alfaro, J., Navarro-Arribas, G., Cuppens-Boulahia, N., de Capitani di Vimercati, S. (eds.) DPM 2011 and SETOP 2011. LNCS, vol. 7122, pp. 25–41. Springer, Heidelberg (2012)
OASIS. eXtensible Access Control Markup Language (XACML) version 3.0, January 2013
Reeder, R.W., Karat, C.-M., Karat, J., Brodie, C.: Usability challenges in security and privacy policy-authoring interfaces. In: Baranauskas, C., Abascal, J., Barbosa, S.D.J. (eds.) INTERACT 2007. LNCS, vol. 4663, pp. 141–155. Springer, Heidelberg (2007)
Rosenthal, S.S.: Specifying data sharing agreements. In: Seventh IEEE International Workshop on Policies for Distributed Systems and Networks, pp. 157–162 (2006)
Swede, S.: Enforcing scientific data sharing agreements. In: IEEE 9th International Conference on e-Science, pp. 271–278 (2011)
Wishart, R., Corapi, D., Marinovic, S., Sloman, M.: Collaborative privacy policy authoring in a social networking context. In: POLICY, pp. 1–8. IEEE (2010)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2016 Springer International Publishing Switzerland
About this paper
Cite this paper
Caimi, C., Gambardella, C., Manea, M., Petrocchi, M., Stella, D. (2016). Legal and Technical Perspectives in Data Sharing Agreements Definition. In: Berendt, B., Engel, T., Ikonomou, D., Le Métayer, D., Schiffner, S. (eds) Privacy Technologies and Policy. APF 2015. Lecture Notes in Computer Science(), vol 9484. Springer, Cham. https://doi.org/10.1007/978-3-319-31456-3_10
Download citation
DOI: https://doi.org/10.1007/978-3-319-31456-3_10
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-31455-6
Online ISBN: 978-3-319-31456-3
eBook Packages: Computer ScienceComputer Science (R0)