Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

Privacy-aware blockchain for personal data sharing and tracking

Privacy-aware blockchain for personal data sharing and tracking AbstractSecure data distribution is critical for data accountability. Surveillance caused privacy breaching incidents have already questioned existing personal data collection techniques. Organizations assemble a huge amount of personally identifiable information (PII) for data-driven market analysis and prediction. However, the limitation of data tracking tools restricts the detection of exact data breaching points. Blockchain technology, an ‘immutable’ distributed ledger, can be leveraged to establish a transparent data auditing platform. However, Art. 42 and Art. 25 of general data protection regulation (GDPR) demands ‘right to forget’ and ‘right to erase’ of personal information, which goes against the immutability of blockchain technology. This paper proposes a GDPR complied decentralized and trusted PII sharing and tracking scheme. Proposed blockchain based personally identifiable information management system (BcPIIMS) demonstrates data movement among GDPR entities (user, controller and processor). Considering GDPR limitations, BcPIIMS used off-the-chain data storing architecture. A prototype was created to validate the proposed architecture using multichain. The use of off-the-chain storage reduces individual block size. Additionally, private blockchain also limits personal data leaking by collecting fast approval from restricted peers. This study presents personal data sharing, deleting, modifying and tracking features to verify the privacy of proposed blockchain based personally identifiable information management system. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png Open Computer Science de Gruyter

Privacy-aware blockchain for personal data sharing and tracking

Download PDF
12 pages

Loading next page...
 
/lp/de-gruyter/privacy-aware-blockchain-for-personal-data-sharing-and-tracking-SHHyCio1yW
Publisher
de Gruyter
Copyright
© 2019 Md Mehedi Hassan Onik et al., published by De Gruyter Open
eISSN
2299-1093
DOI
10.1515/comp-2019-0005
Publisher site
See Article on Publisher Site

Abstract

AbstractSecure data distribution is critical for data accountability. Surveillance caused privacy breaching incidents have already questioned existing personal data collection techniques. Organizations assemble a huge amount of personally identifiable information (PII) for data-driven market analysis and prediction. However, the limitation of data tracking tools restricts the detection of exact data breaching points. Blockchain technology, an ‘immutable’ distributed ledger, can be leveraged to establish a transparent data auditing platform. However, Art. 42 and Art. 25 of general data protection regulation (GDPR) demands ‘right to forget’ and ‘right to erase’ of personal information, which goes against the immutability of blockchain technology. This paper proposes a GDPR complied decentralized and trusted PII sharing and tracking scheme. Proposed blockchain based personally identifiable information management system (BcPIIMS) demonstrates data movement among GDPR entities (user, controller and processor). Considering GDPR limitations, BcPIIMS used off-the-chain data storing architecture. A prototype was created to validate the proposed architecture using multichain. The use of off-the-chain storage reduces individual block size. Additionally, private blockchain also limits personal data leaking by collecting fast approval from restricted peers. This study presents personal data sharing, deleting, modifying and tracking features to verify the privacy of proposed blockchain based personally identifiable information management system.

Journal

Open Computer Sciencede Gruyter

Published: Jan 1, 2019

References

  • new equipment for energy saving in Ethernet Technologies
    Onik
  • anonymity a model for protecting privacy of and Knowledge - Based Systems
    Sweeney
  • Guide to protecting the confidentiality of personally identifiable information Publishing
    McCallister
  • Data protection : a practical guide to UK and EU law University
    Carey
  • Portal https gdpr info eu art gdpr Accessed Mar
    EUGDPR
  • User evaluations of an app interface for cloud - based identity management In in Information Systems Development Lecture Notes in Information Systems and Organisation
    Karegar
  • First Half Breach Level Index Report : Identity Theft and Poor Internal Security Practices Take a Toll https www gemalto com press pages first half breach level index report identity theft and poor internal security practices take a toll aspx Accessed Mar
  • Decentralizing privacy Using blockchain to protect personal data In Privacy Workshops
    Zyskind
  • peer to peer electronic cash system http bitcoin org bitcoin pdf Accessed Mar
    Nakamoto
  • EU blockchain observatory and forum workshop on GDPR data policy and compliance Institute for Information Law Research Paper No Available at https ssrn com abstract orhttp dx doi org
    Ferrari
  • ve got nothing to lose : Consumers risk perceptions and protective actions after the equifax data breach In Fourteenth Symposium on Usable Privacy and SOUPS
    Zou
  • Supporting private data on Hyperledger Fabric with secure multiparty computation In International Conference on
    Benhamouda
  • media law Reuters Professional Australia Limited
    Butler
  • Novel data protection model in healthcare cloud In th International Conference on High Performance Communications
    Chen
  • design towards personally identifiable information control and awareness in openid connect identity providers In International Conference on Computer and Information Technology
    Weingärtner
  • Privacy by blockchain design : a blockchainenabled GDPR - compliant approach for handling personal data Reports of the European Society for Socially Embedded Technologies https hdl handle net
    Wirth
  • Big data s impact on privacy security and consumer welfar
    Kshetri
  • The Supreme court of Canada rules on when lenders may share personal information without violating federal privacy legislation
    Simpson
  • Application of Blockchain in Booking and Registration Systems of Securities Exchanges In International Conference on Communications iCCECE
    Miraz
  • the The Rule of Code University
    De Filippi
  • Portal https eugdpr org Accessed Mar
    EUGDPR
  • Controllable and trustworthy blockchain - based cloud data Future
    Zhu
  • Property rights in personal information : An economic defense of privacy In Privacy Routledge
    Murphy
  • Usable transparency for enhancing privacy in mobile health apps In
    Murmann
  • European Union data privacy law reform : General data protection regulation privacy shield and the right to delisting
    Voss
  • Number of social media users worldwide https www statista com statistics number of worldwide social network users Accessed Mar
    Statista
  • Implementing the ISO information security management system standard
    Humphreys
  • blockchain - based data provenance architecture in cloud environment with enhanced privacy and availability In Proceedings of the th International Symposium on Cluster
    Liang
  • Privacy of Things PoT personally identifiable information monitoring system for smart homes In Proceedings of Symposiumof the Korean Institute of Communications and
    Onik
  • Decentralized privacy preserving services for online social networks and Media
    Bahri
  • An overview of blockchain technology consensus and future trends In International Congress on Big Data ( Big - Data Congress
    Zheng
  • for achieving usable ex post transparency a survey Access
    Murmann
  • Revealed million Facebook profiles harvested for Cambridge Analytica in major data breach The Guardian
    Cadwalladr
  • Pose Taking stock of organisations protection of privacy : categorising and assessing threats to personally identifiable information in the of Information
  • Corporate governance blockchains of
    Yermack
  • Semantic approach to automatingmanagement of big data privacy policies In International Conference on Big Data ( Big Data
    Joshi
  • The Internet of Things its impact on individual privacy : An Australian perspective
    Caron
  • False data injection attacks in healthcare In Boo Data Mining in and
    Ahmed
  • security technology of CPS based on blockchains Symmetry
    Yin
  • Privacy by design Identity in the
    Schaar
  • trackers privacy regulators a global study of the mobile tracking ecosystem In Procedings of the Network and Distributed Systems San CA
    Razaghpanah
  • Customer privacy concerns and privacy protective responses In Customer Relationship Management Concept Strategy and Tools Third Edition Springer Texts in
    Kumar
  • study of enhancing privacy for intelligent transportation systems - correlation privacy model against moving preference attacks for location trajectory data Access
    Li