W3C home > Mailing lists > Public > public-prov-wg@w3.org > November 2012

PROV-AQ security (privacy) considerations

From: Graham Klyne <GK@ninebynine.org>
Date: Tue, 06 Nov 2012 14:35:03 +0000
Message-ID: <50992017.8040701@ninebynine.org>
To: W3C provenance WG <public-prov-wg@w3.org>
I'm working through some outstanding TODO issues in PROV-AQ.

There are some notes for discussion of potential privacy concerns. Based on 
these notes, I've drafted the following, which might be controversial:

         Provenance information may provide a route for leakage of 
privacy-related information, combining as it does a diversity of information 
types with possible personally-identifying information; e.g. editing timestamps 
may provide clues to the working patterns of document editors, or derivation 
traces might indicate access to sensitive materials.  In particular, note that 
the fact that a resource is openly accessible does not mean that its provenance 
information should also be.  When publishing provenance, its sensitivity should 
be considered and appropriate access controls applied where necessary.  When a 
provenance-aware publishing service accepts some resource for publication, the 
contributors should have some opportunity to review and correct or conceal any 
provenance information that they don't wish to be exposed.

Are there any objections to this?

Received on Tuesday, 6 November 2012 14:36:23 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 6 November 2012 14:36:24 GMT