Skip to main content
Pages and Files
CS department homepage
CS faculty meetings
CS talks and visitors
From Communities of Practice to Community Based Decision Making — Case Ericsson
Artificial General Intelligence and AI in Games
Cryptography Reading Group
Cybersecurity Breakfast Talks
Data Systems Group
DeIC offer Sep 2017
Draft calls April 2018
Former members of the department (partial list)
Jean Melo PhD
PhD Defense of Jean Melo
Remotely controlled drug delivery with chemical micro-robots.
State of Low-power Wireless Protocols for IoT
Talk Alan Mycroft 9 June 2017
Talk by Alexander Serebrenik on Aug 31, 2017
Add "All Pages"
Talk by Søren Debois
Speaker: Søren Debois
Title: On Purpose and by Necessity: Compliance under the GDPR
(Joint work with Thomas Hildebrandt (ITU -> KU) & David Basin (ETH))
Abstract: The European General Data Protection Regulation (GDPR) gives primacy to purpose: Data may be collected and stored only when (i) end-users have consented, often explicitly, to the purposes for which that data is collected, and (ii) the collected data is actually necessary for achieving these purposes. This development in data protection regulations begets the question: how do we audit a computer system’s adherence to a purpose?
We propose an approach that identifies a purpose with a business process, and show how formal models of interprocess communication can be used to audit or even derive privacy policies. Based on this insight, we propose a methodology for auditing GDPR compliance. Moreover, we show how given a simple interprocess dataflow model, aspects of GDPR compliance can be determined algorithmically.
help on how to format text
Turn off "Getting Started"