SpringerLink - Book Chapter

Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection

Book Series

Lecture Notes in Computer Science

Publisher

Springer Berlin / Heidelberg

ISSN

0302-9743 (Print) 1611-3349 (Online)

Volume

Volume 1907/2000

Book

Recent Advances in Intrusion Detection

DOI

10.1007/3-540-39945-3

2000

ISBN

978-3-540-41085-0

DOI

10.1007/3-540-39945-3_3

Pages

28-48

Subject Collection

Computer Science

SpringerLink Date

Saturday, January 01, 2000

Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection

Joachim Biskup⁷ and Ulrich Flegel⁷

(7)	University of Dortmund, 44227 Dortmund, Germany

Abstract

Privacy and surveillance by intrusion detection are potentially conflicting organizational and legal requirements.In order to support a balanced solution, audit data is inspected for personal data and identifiers referring to real persons are substituted by transaction-based pseudonyms. These pseudonyms are constructed as shares for a suitably adapted version of Shamir’s cryptographic approach to secret sharing. Under sufficient suspicion, expressed as a threshold on shares, audit analyzers can perform reidentification.

Keywords privacy - anonymity - pseudonymity - audit analysis - intrusion detection - secret sharing - purpose binding

The work described here is currently partially funded by Deutsche Forschungsge-meinschaft under contract number Bi 311/10-1.

Joachim Biskup
Email: Joachim.Biskup@ls6.cs.uni-dortmund.de

Ulrich Flegel
Email: Ulrich.Flegel@ls6.cs.uni-dortmund.de

Transaction-Based Pseudonyms in Audit Data for Privacy Respecting Intrusion Detection

Fulltext Preview (Small, Large)