Data Privacy management using Policy compliant Blockchain structures

February 1, 2016 - December 1, 2026

An important requirement of any information management system is to protect data and resources against leak or improper modifications, while at the same time ensure data availability to legitimate users. Moreover, systems handling personal data must also track its provenance and be regularly audited to comply with regulations. By assuring auditable, privacy policy compliant actions, we can also guarantee that areas where privacy policies have been technically enforced are highlighted.

As part of this research, we have built a novel framework to automatically track details about how a consumer?s private data is stored, used and shared by a Cloud provider. We have created a semantically rich data privacy ontology and integrated it with the properties of blockchain, to develop an automated access-control and audit mechanism, called LinkShare, that enforces users' data privacy policies when sharing their data across third parties.

We are also working on ensuring accountability for data sharing in cloud, by building upon LinkShare to incorporate a secure and efficient system for End-to- End provenance. We are trying to bring in the policy(ies) which a transaction is passed through into the fold in order to achieve provenance. Our primary technical challenge is to provide people better visibility and control over their data, and at the same time ensure swift, accountable and appropriate data ?ow. Our research specifically tries to address the issue of data compliance and policy enforcement as desired by the end-user. We concur that decisions regarding the collection, sharing, and use of Personally Identifiable Information (PII) must take into account both ethical and privacy considerations.

Sponsor
This project is supported in part by NSF/DoD.

blockchain, cybersecurity, data privacy

OWL Tweet

Ph.D. Candidate

  1. James Clavin

Principal Investigator

  1. Karuna Pande Joshi

Publications

2023

  1. J. Clavin and K. P. Joshi, "Policy Integrated Blockchain to Automate HIPAA Part 2 Compliance", InProceedings, IEEE International Conference on Digital Health (ICDH) 2023 in IEEE World Congress on Services 2023, July 2023, 173 downloads.

2020

  1. J. Clavin, V. P. Janeja, K. P. Joshi, Y. Yesha, S. Duan, H. Zhang, L. Erickson, and J. D. Li, "Blockchains for Government: Use Cases and Challenges", Article, Digital Government: Research and Practice, November 2020, 706 downloads.
  2. A. Mahindrakar and K. P. Joshi, "Automating GDPR Compliance using Policy Integrated Blockchain", InProceedings, 6th IEEE International Conference on Big Data Security on Cloud (BigDataSecurity 2020), May 2020, 1341 downloads.

2019

  1. A. Kaplunovich, K. P. Joshi, and Y. Yesha, "Scalability Analysis of Blockchain on a Serverless Cloud", InProceedings, 7th International Workshop on Distributed Storage and Blockchain Technologies for Big Data, held in conjunction with IEEE International Conference on Big Data, 2019, December 2019, 916 downloads.
  2. K. P. Joshi and A. Banerjee, "Automating Privacy Compliance Using Policy Integrated Blockchain", Article, Cryptography, Special Issue Advances of Blockchain Technology and Its Applications, February 2019, 968 downloads.