W3C home > Mailing lists > Public > public-prov-wg@w3.org > November 2012

PROV-AQ security (privacy) considerations

From: Graham Klyne <GK@ninebynine.org>
Date: Tue, 06 Nov 2012 14:35:03 +0000
Message-ID: <50992017.8040701@ninebynine.org>
To: W3C provenance WG <public-prov-wg@w3.org>
I'm working through some outstanding TODO issues in PROV-AQ.

There are some notes for discussion of potential privacy concerns. Based on 
these notes, I've drafted the following, which might be controversial:

[[
         Provenance information may provide a route for leakage of 
privacy-related information, combining as it does a diversity of information 
types with possible personally-identifying information; e.g. editing timestamps 
may provide clues to the working patterns of document editors, or derivation 
traces might indicate access to sensitive materials.  In particular, note that 
the fact that a resource is openly accessible does not mean that its provenance 
information should also be.  When publishing provenance, its sensitivity should 
be considered and appropriate access controls applied where necessary.  When a 
provenance-aware publishing service accepts some resource for publication, the 
contributors should have some opportunity to review and correct or conceal any 
provenance information that they don't wish to be exposed.
]]

Are there any objections to this?

#g
Received on Tuesday, 6 November 2012 14:36:23 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 6 November 2012 14:36:24 GMT