DOI

In recent years, a number of infrastructures have been proposed for the collection and distribution of medical data for research purposes. The design of such infrastructures is challenging: on the one hand, they should link patient data collected from different hospitals; on the other hand, they can only use anonymised data because of privacy regulations. In addition, they should allow data depseudonymisation in case research results provide information relevant for patients' health. The privacy analysis of such infrastructures can be seen as a problem of data minimisation. In this work, we introduce coalition graphs, a graphical representation of knowledge of personal information to study data minimisation. We show how this representation allows identification of privacy issues in existing infrastructures. To validate our approach, we use coalition graphs to formally analyse data minimisation in two (de)-pseudonymisation infrastructures proposed by the Parelsnoer initiative.

Original languageEnglish
Title of host publicationSecurity and Trust Management - 8th International Workshop, STM 2012, Revised Selected Papers
Pages145-160
Number of pages16
Volume7783 LNCS
DOIs
StatePublished - 2013
Event8th International Workshop on Security and Trust Management, STM 2012 - Pisa, Italy
Duration: 13 Sep 201214 Sep 2012

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume7783 LNCS
ISSN (Print)03029743
ISSN (Electronic)16113349

Conference

Conference8th International Workshop on Security and Trust Management, STM 2012
CountryItaly
CityPisa
Period13/09/1214/09/12

ID: 32865501