Intentional Resolution of Privacy Protection in Database Systems

Research output: Contribution to journalArticle

10 Citations (Scopus)

Abstract

Traditionally, privacy protection in database systems is understood to be the control over what information a given user can get from a database. This paper is concerned with another, independent, dimension of privacy protection, the control over what a user is allowed to do with a piece of information supplied to him by the database. The ability to condition the supply of information on its intended use is called here “intentional resolution” of privacy protection. The practical importance of intentional resolution is demonstrated by several examples, and its realization is discussed. It is shown that intentional resolution can be achieved, but that it involves a radical change from the traditional approach to the process of user-database interaction. In particular, it appears to be necessary for the database to impose a certain amount of control over the internal behavior of users’ programs which interact with it. A model for user-database interaction which admits such a control is developed.

Original languageEnglish (US)
Pages (from-to)148-159
Number of pages12
JournalCommunications of the ACM
Volume19
Issue number3
DOIs
StatePublished - Mar 1 1976

All Science Journal Classification (ASJC) codes

  • Computer Science(all)

Keywords

  • intentional resolution of privacy
  • interaction with databases
  • privacy
  • protection in databases
  • protection in programming languages
  • security

Cite this

@article{f39637d483d44aee86f0116ceb825a43,
title = "Intentional Resolution of Privacy Protection in Database Systems",
abstract = "Traditionally, privacy protection in database systems is understood to be the control over what information a given user can get from a database. This paper is concerned with another, independent, dimension of privacy protection, the control over what a user is allowed to do with a piece of information supplied to him by the database. The ability to condition the supply of information on its intended use is called here “intentional resolution” of privacy protection. The practical importance of intentional resolution is demonstrated by several examples, and its realization is discussed. It is shown that intentional resolution can be achieved, but that it involves a radical change from the traditional approach to the process of user-database interaction. In particular, it appears to be necessary for the database to impose a certain amount of control over the internal behavior of users’ programs which interact with it. A model for user-database interaction which admits such a control is developed.",
keywords = "intentional resolution of privacy, interaction with databases, privacy, protection in databases, protection in programming languages, security",
author = "Naftaly Minsky",
year = "1976",
month = "3",
day = "1",
doi = "10.1145/360018.360027",
language = "English (US)",
volume = "19",
pages = "148--159",
journal = "Communications of the ACM",
issn = "0001-0782",
publisher = "Association for Computing Machinery (ACM)",
number = "3",

}

Intentional Resolution of Privacy Protection in Database Systems. / Minsky, Naftaly.

In: Communications of the ACM, Vol. 19, No. 3, 01.03.1976, p. 148-159.

Research output: Contribution to journalArticle

TY - JOUR

T1 - Intentional Resolution of Privacy Protection in Database Systems

AU - Minsky, Naftaly

PY - 1976/3/1

Y1 - 1976/3/1

N2 - Traditionally, privacy protection in database systems is understood to be the control over what information a given user can get from a database. This paper is concerned with another, independent, dimension of privacy protection, the control over what a user is allowed to do with a piece of information supplied to him by the database. The ability to condition the supply of information on its intended use is called here “intentional resolution” of privacy protection. The practical importance of intentional resolution is demonstrated by several examples, and its realization is discussed. It is shown that intentional resolution can be achieved, but that it involves a radical change from the traditional approach to the process of user-database interaction. In particular, it appears to be necessary for the database to impose a certain amount of control over the internal behavior of users’ programs which interact with it. A model for user-database interaction which admits such a control is developed.

AB - Traditionally, privacy protection in database systems is understood to be the control over what information a given user can get from a database. This paper is concerned with another, independent, dimension of privacy protection, the control over what a user is allowed to do with a piece of information supplied to him by the database. The ability to condition the supply of information on its intended use is called here “intentional resolution” of privacy protection. The practical importance of intentional resolution is demonstrated by several examples, and its realization is discussed. It is shown that intentional resolution can be achieved, but that it involves a radical change from the traditional approach to the process of user-database interaction. In particular, it appears to be necessary for the database to impose a certain amount of control over the internal behavior of users’ programs which interact with it. A model for user-database interaction which admits such a control is developed.

KW - intentional resolution of privacy

KW - interaction with databases

KW - privacy

KW - protection in databases

KW - protection in programming languages

KW - security

UR - http://www.scopus.com/inward/record.url?scp=0016931209&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0016931209&partnerID=8YFLogxK

U2 - 10.1145/360018.360027

DO - 10.1145/360018.360027

M3 - Article

AN - SCOPUS:0016931209

VL - 19

SP - 148

EP - 159

JO - Communications of the ACM

JF - Communications of the ACM

SN - 0001-0782

IS - 3

ER -