Discussion on Next steps
Discussion Followup
- Policy interoperability/mapping (need for data abstractions and policy
abstractions (ontologies) to allow binding policies across various
application type)
- task: standard language for evidence (backup for authentication
assertions) IDEMIX
- mechanisms for discovery of ontologies
- interested in Policy Frameworks Interest Group (PFIG): Patrica,
Anne, Piero, Giles, Renato, Hannes, Marco, Pierangela,
Jean-Christophe, Marit, Sören, Xavier, Danny
- Is there a common framework for access control, data handling and usage
control (how to use access rights developed in DRM).
- User preferences: pre-defined sets? standard expression thereof
(conditions, actions, obligations)
- use case: privacy preferences attached to disability status,
caveat: product/implementation focus and deployment time horizon
What needs more research?
- economic aspects of privacy (business cases, Privacy SLAs)
- W3C co-sponsored Symposium on economic aspects of privacy?
- what is user-centric ?
- balance between transparency tools and opacity tools/fair information
practices and confidentially
- what is beyond the US & EU data protection directives ?
- privacy agreements in closed and open groups
- Negotiation (we didn't hear much about it). Seek links with agent
community.
- Achieving user convenience in data conveyance with privacy protection,
e.g. in authentication protocols.
Other contexts
- privacy not addressed in IPTV
- how to meet the requirements of ambient intellegience