Privacy policies, tools and mechanisms of the future

Vincent Naessens*, Mehmet Tahir Sandikkaya, Jorn Lapon, Kristof Verslype, Pieter Verhaeghe, Girma Nigusse, Bart De Decker

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

5 Citations (Scopus)


Although many believe that we have lost the battle for privacy, protection of what's left of the user's privacy is all the more important. Not only should a user be able to minimize the disclosure of her personal data, she should also have rights to decide what happens with her data once they have been disclosed. In order to minimize user interaction when deciding whether or not to reveal personal data, privacy policy languages were developed. However, these languages are inadequate and cannot properly deal with the complex interactions between users, service providers, third parties, identity providers and others. Also, tool support for composing and verifying these policies and mechanisms for enforcing them are lagging behind. This paper argues the need for better privacy policies and proposes some solutions. Throughout the paper, our statements are applied to three sample applications in three different domains: e-health, banking and social networks.

Original languageEnglish
Title of host publicationiNetSec 2009 - Open Research Problems in Network Security
Subtitle of host publicationIFIP WG 11.4 International Workshop, Zurich, Switzerland, April 23-24, 2009, Revised Selected Papers
PublisherSpringer New York LLC
Number of pages14
ISBN (Print)9783642054365
Publication statusPublished - 2009
Externally publishedYes

Publication series

NameIFIP Advances in Information and Communication Technology
ISSN (Print)1868-4238


Dive into the research topics of 'Privacy policies, tools and mechanisms of the future'. Together they form a unique fingerprint.

Cite this