Audit Mechanisms for Provable Risk Management and Accountable Data Governance (CMU-CyLab-12-020)
作者: Jeremiah Blocki , Arunesh Sinha , Anupam Datta , Nicolas Christin
DOI:
关键词: Data governance 、 Business 、 Personally identifiable information 、 Subgame perfect equilibrium 、 Data breach 、 Internal audit 、 Information system 、 Information sharing 、 Audit 、 Accounting
摘要: Organizations that collect and use large volumes of personal information are expected under the principle accountable data governance to take measures protect subjects from risks arise inapproriate uses this information. In paper, we focus on a specific class mechanisms— audits identify policy violators coupled with punishments—that organizations such as hospitals, financial institutions, Web services companies may adopt privacy security stemming inappropriate by insiders. We model interaction between organization (defender) an insider (adversary) during audit process repeated game. then present strategy for defender. The requires defender commit its action when paired adversary’s best response it, provably yields asymmetric subgame perfect equilibrium. two mechanisms allocating total budget inspections across all games plays different first mechanism allocates maximize utility organization. Observing protects organization’s interests but not subjects, introduce property, which conduct thorough impose punishments violators. second achieves property. provide evidence number parameters in game can be estimated prior empirical studies suggest help estimate other parameters. Finally, our predict observed practices industry (e.g., differences punishment rates doctors nurses same violation) effectiveness interventions breach notification laws government audits) encouraging practices. ? This work was partially supported U.S. Army Research Office contract “Perpetually Available Secure Information Systems” (DAAD19-02-1-0389) Carnegie Mellon CyLab, NSF Science Technology Center TRUST, CyberTrust grant “Privacy, Compliance Risk Complex Organizational Processes,” AFOSR MURI “Collaborative Policies Assured Sharing,” HHS Grant no. 90TR0003/01. Jeremiah Blocki also Graduate Fellowship. Arunesh Sinha CMU CIT Bertucci views conclusions contained document those authors should interpreted representing official policies, either expressed or implied, any sponsoring institution, entity.
参考文章(25)
Hal Varian, System Reliability and Free Riding Economics of Information Security. pp. 1- 15 ,(2004) , 10.1007/1-4020-8090-5_1
E Hanushek, JE Jackson, Statistical methods for social scientists ,(1977)
Dawn M. Cappelli, Randall F. Trzeciak, Lynn F. Fischer, Andrew P. Moore, Stephen R. Band, Eric D. Shaw, Comparing Insider IT Sabotage and Espionage: A Model-Based Analysis Carnegie Mellon University. ,(2006) , 10.1184/R1/6572663.V1
David Basin, Felix Klaedtke, Samuel Müller, Policy monitoring in first-order temporal logic computer aided verification. pp. 1- 18 ,(2010) , 10.1007/978-3-642-14295-6_1
George Joseph Mailath, Larry Samuelson, Repeated Games and Reputations: Long-Run Relationships ,(2006)
Radha Jagadeesan, Alan Jeffrey, Corin Pitcher, James Riely, Towards a theory of accountability and audit european symposium on research in computer security. pp. 152- 167 ,(2009) , 10.1007/978-3-642-04444-1_10
Michael Backes, Anupam Datta, Ante Derek, John C. Mitchell, Mathieu Turuani, Compositional analysis of contract-signing protocols Theoretical Computer Science. ,vol. 367, pp. 33- 56 ,(2006) , 10.1016/J.TCS.2006.08.039
Xia Zhao, M. Eric Johnson, Access Governance: Flexibility with Escalation and Audit hawaii international conference on system sciences. pp. 1- 13 ,(2010) , 10.1109/HICSS.2010.42
Lujo Bauer, Scott Garriss, Michael K. Reiter, Detecting and resolving policy misconfigurations in access-control systems Proceedings of the 13th ACM symposium on Access control models and technologies - SACMAT '08. pp. 185- 194 ,(2008) , 10.1145/1377836.1377866
Ralf K üsters, Tomasz Truderung, Andreas Vogt, Accountability: definition and relationship to verifiability computer and communications security. pp. 526- 535 ,(2010) , 10.1145/1866307.1866366