Personal Information Databases
Sabah S. Al-Fedaghi, Bernhard Thalheim
TL;DR
This paper discusses a framework for managing personal information within security infrastructures, emphasizing the distinction between personal identifiable information (PII) and nonidentifiable information, and proposing specialized database organizations for PII.
Contribution
It introduces a formal conceptual model for PII and designs dedicated databases focusing on PII spheres, enhancing privacy management.
Findings
Formalization of PII using propositions over infons
Categorization of PII into simple infons and relationships
Design of specialized databases for PII management
Abstract
One of the most important aspects of security organization is to establish a framework to identify security significant points where policies and procedures are declared. The (information) security infrastructure comprises entities, processes, and technology. All are participants in handling information, which is the item that needs to be protected. Privacy and security information technology is a critical and unmet need in the management of personal information. This paper proposes concepts and technologies for management of personal information. Two different types of information can be distinguished: personal information and nonpersonal information. Personal information can be either personal identifiable information (PII), or nonidentifiable information (NII). Security, policy, and technical requirements can be based on this distinction. At the conceptual level, PII is defined and…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsData Quality and Management · Access Control and Trust · Peer-to-Peer Network Technologies