Browsing by Subject "Privacy"
Now showing 1 - 10 of 10
Results Per Page
Sort Options
- PublicationOpen AccessA Comprehensive Model for Securing Sensitive Patient Data in a Clinical Scenario(IEEE, 2023-11-30) López Martínez, Antonio; Gil Pérez, Manuel; Ruiz-Martínez, Antonio; Ingeniería de la Información y las ComunicacionesThe clinical environment is one of the most important sources of sensitive patient data in healthcare. These data have attracted cybercriminals who pursue the theft of this information for personal gain. Therefore, protecting these data is a critical issue. This paper focuses on an analysis of the clinical environment, presents its general ecosystem and stakeholders, and inspects the main protocols implemented between the clinical components from a security and privacy perspective. Additionally, this article defines a complete use case to describe the typical workflow within a clinical setting: the life cycle of a patient sample. Moreover, we present and categorize crucial clinical information and divide it into two sensitivity levels: High and Very Sensitive, while considering the severe risks of cybercriminal access. The threat model for the use case has also been identified, in conjunction with the use case’s security and privacy needs. This work served us as basis to develop the minimum security and privacy requirements to protect the use case. Accordingly, we have defined protection mechanisms for each sensitivity level with the enabling technologies needed to satisfy each requirement. Finally, the main challenges and future steps for the use case are presented.
- PublicationOpen AccessA general approach on privacy and its implications in the digital economy(Taylor & Francis, 2022-03-25) Sánchez Romero, Mariola; Métodos Cuantitativos para la Economía y la EmpresaThe information age set off a revolution for organizations and institutions without precedent. Big production of data is a major competitive advantage for companies. Therefore, there are great economic incentives to monetize such data. However, there is evidence that indicates clear vulnerability in terms of user privacy, thereby setting a new paradigm in the search for a balance between privacy and security. This article offers a brief history of privacy to this day, deepens the scope and importance of its standardization in the regulation and future of digital markets.
- PublicationOpen AccessA Trusted Approach for Decentralised and Privacy-Preserving Identity Management(2021) Torres, R.; Garcia Rodriguez, J.; Bernal Bernabé, Jorge; Skarmeta Gomez, A. F.; Ingeniería y Tecnología de ComputadoresIdentity Management (IdM) systems have traditionally relied on a centralized model prone to privacy, trust, and security problems, like potential massive data breaches or identity spoofing. Identity providers accumulate excessive power that might allow them to become a big brother, analyzing and storing as much data as possible. Users should be able to trust identity providers and manage their personal information straightforwardly without compromising their privacy. The European OLYMPUS project introduces a distributed approach for IdM based on enhanced Attribute-Based Credentials (ABC) that splits the role of Identity Provider to limit their influence and chances to become a unique point of failure. However, the trust relationship between service providers, users, and identity providers is still a gap in those kinds of privacy-preserving ABC systems. Decentralized technologies are an opportunity to break away from the centralized model and propose systems that respect privacy while increasing users’ trust. This paper presents an evolution of the OLYMPUS architecture, maintaining all the privacy features and incorporating distributed ledger technologies to enhance trust and security in online transactions and IdM systems. The proposed system has been implemented, tested, and validated, showing its performance and feasibility to manage user’s identity in a fully privacy-preserving, distributed and reliable way.
- PublicationOpen AccessEvolution of web tracking protection in Chrome(2023-11-08) Pan, Ronghao; Ruiz-Martínez, Antonio; Ingeniería de la Información y las ComunicacionesIn our society, protecting users’ privacy is of utmost importance, especially when users access websites. Increased awareness of privacy concerns has led web browsers to implement new mechanisms to improve privacy while browsing the Internet. In each new version of web browsers, it is claimed that they provide better improvements to protect our privacy. However, there is no analysis of these improvements. To cope with this issue, in this paper, we present an analysis of the privacy of different versions of the Chrome web browser. This analysis is based on the PrivacyScanner tool, which we have improved with the detection of additional tracking techniques. Our findings reveal that tracking protection has seen modest enhancements (namely, between Chrome version 83 and 90, we observed a 7.55% reduction in trackers and 4.76% decrease in Google Analytics elements). Therefore, despite these improvements, there is still ample room for further enhancement.
- PublicationOpen AccessGeolocalización y protección de datos: el uso de sistemas GPS en vehículos de empresa.(Universidad de Murcia, Servicio de Publicaciones., 2025) Arroyo Moreno, Ana; Sin departamento asociadoLa implementación de tecnologías de geolocalización en el ámbito laboral plantea retos legales y éticos, al buscar un equilibrio entre los intereses empresariales y los derechos fundamentales de los trabajadores, como la intimidad y la protección de datos. Reguladas por el artículo 20.3 del Estatuto de los Trabajadores, el RGPD y la LOPDGDD, estas herramientas deben cumplir principios como proporcionalidad, necesidad y finalidad legítima. Este artículo analiza un caso práctico en la empresa Soluciones Integrales, S.L., explorando los límites del control empresarial y destacando jurisprudencia relevante, como el "Caso Telepizza". La reflexión final subraya la necesidad de una regulación clara que permita innovar respetando los derechos laborales.
- PublicationRestrictedPrecise: privacy-aware recommender based on context information for cloud service environments(Institute of Electrical and Electronics Engineers, 2014-08-31) Gil Pérez, Manuel; García Clemente, Félix Jesús; Martínez Pérez, Gregorio; Huertas Celdrán, Alberto; Ingeniería de la Información y las Comunicaciones; Facultad de InformáticaContext-aware systems based on location open up new possibilities to users in terms of acquiring custom services by gathering context information, especially in systems where the high mobility of users increases their usability. In this context, this article presents a privacy-preserving solution offering context-aware services based on location in MCC. We propose a middleware, called PRECISE, which provides users with custom context-aware recommendations. These recommendations are given by considering the context information, and the users' locations, privacy policies, and previously visited places. MCC plays a key role in this solution, moving the data processing and storage needs to the cloud, as well as further advantages such as elasticity and load balancing. A thorough discussion when comparing PRECISE with other related works confirms that our solution improves the most relevant proposals so far.
- PublicationOpen AccessPrivacy paradox in the mobile environment: The influence of the emotions(EPI SCP, 2019-03-25) Sarabia Sánchez, Francisco José; Aguado Terrón, Juan Miguel; Martínez Martínez, Inmaculada J.; ComunicaciónThe privacy paradox designates the contradiction between a negative perception of online privacy exploitation by users and a relaxed or passive attitude of users towards the protection of their digital privacy. Since regulation alone is not sufficient to effectively manage the digital privacy problem, promoting responsible, conscious and active behaviour towards the protection of one's own online privacy is a key element of the digital ecosystem. In this sense, understanding and helping to eliminate the privacy paradox have been research and policy objectives for digital services since the beginning of this century, which has intensified with the development of Big Data and AI. However, the existing literature has approached the privacy paradox from the perspective of perceived benefit and thus from a rational calculus perspective. This paper, in contrast, approaches the study of the privacy paradox from the perspective of emotions, their nature (active versus passive emotions) and their intensity (high or moderate). The paper develops a complex structured questionnaire with a relevant international sample of digital users. The aim is to measure the emotional response (intensity and nature of emotions involved) to an incident of unauthorised disclosure of their private data (data breach), comparing this response with the behaviour of changing privacy settings and the propensity to allow access to personal data by using the mobile device in their applications/social networks. The paper concludes that there is a clear disconnect between informational behavioural decisions about privacy management and emotions associated with perceptions of privacy in social networks and mobile apps, even when these are more intense or active in nature. This emotional dissociation reinforces the mechanics of the privacy paradox, making it difficult to intervene to promote consistent digital behaviours. The candidate has been involved in the development of the state of the question, the conceptual framework and the design of the questionnaire, as well as in the analysis of the results and the drawing of conclusions.
- PublicationRestrictedSeCoMan: a semantic-aware policy framework for developing privacy-preserving and context-aware smart applications(Institute of Electrical and Electronics Engineers, 2014-01-21) García Clemente, Félix Jesús; Gil Pérez, Manuel; Martínez Pérez, Gregorio; Huertas Celdrán, Alberto; Ingeniería de la Información y las Comunicaciones; Facultad de InformáticaThis paper is intended to provide a solution for developing context-aware smart applications preserving the users' privacy in the Internet of Things (IoT). In this sense, we present a framework called Semantic Web-based Context Management (SeCoMan) aimed at offering a set of predefined queries to provide applications with information about indoor location of users and objects, as well as context-aware services. SeCoMan uses a semantic-oriented IoT vision where semantic technologies play a key role. In fact, SeCoMan uses Semantic Web for modeling description of things, reasoning over data to infer new knowledge, and defining context-aware policies. SeCoMan also defines a layered architecture, including functions related to the management of the users' privacy in a manner that accommodate IoT requirements, in addition to not affecting system performance nor introducing excessive overheads. A thorough discussion on other related works, together with some experiments to measure the throughput and scalability, confirm that SeCoMan is a solution that improves the most relevant proposals existing so far.
- PublicationOpen AccessSecurity in digital markets(2019-01-14) Sánchez Romero, María Dolores; Urbano Salvador, A.; Métodos Cuantitativos para la Economía y la Empresa
- PublicationOpen AccessSystematic literature review on the state of the art and future research work in anonymous communications systems(Elsevier, 2018-07-11) Nia, Mehran Alidoost; Ruiz-Martínez, Antonio; Ingeniería de la Información y las ComunicacionesPrivacy is an important research topic due to its implications in society. Among the topics covered by privacy, we can highlight how to establish anonymous communications. During the latest years we have seen an important research in this field. In order to know what the state of the art in the research in anonymous communication systems (ACS) is, we have developed a systematic literature review (SLR). Namely, our SLR analyzes several issues: activity performed in the field, major research purposes, findings, what the most ACS study, the limitations of current research, how is leading the research in this field and the most highly-cited articles. Our SLR provides an analysis on 203 papers found in conferences and journals focused on anonymous communications systems between 2011 and 2016. Thus, our SLR provides an updated view on the status of the research in the field and the different future topics to be addressed.