ODRL policy modelling and compliance checking

De Vos, Marina and Kirrane, Sabrina ORCID: https://orcid.org/0000-0002-6955-7718 and Padget, Julian and Satoh, Ken (2019) ODRL policy modelling and compliance checking. In: 3rd International Joint Conference on Rules and Reasoning, 16-19 September 2019 , Bolzano, Italy.

[img]
Preview
PDF
RuleML+RR_2019_Final.pdf

Download (458kB)

Abstract

This paper addresses the problem of constructing a policy pipeline that enables compliance checking of business processes against regulatory obligations. Towards this end, we propose an Open Digital Rights Language (ODRL) profile that can be used to capture the semantics of both business policies in the form of sets of required permissions and regulatory requirements in the form of deontic concepts, and present their translation into Answer Set Programming (via the Institutional Action Language (InstAL)) for compliance checking purposes. The result of the compliance checking is either a positive compliance result or an explanation pertaining to the aspects of the policy that are causing the noncompliance. The pipeline is illustrated using two (key) fragments of the General Data Protect Regulation, namely Articles 6 (Lawfulness of processing) and Articles 46 (Transfers subject to appropriate safeguards) and industrially-relevant use cases that involve the specification of sets of permissions that are needed to execute business processes. The core contributions of this paper are the ODRL profile, which is capable of modelling regulatory obligations and business policies, the exercise of modelling elements of GDPR in this semantic formalism, and the operationalisation of the model to demonstrate its capability to support personal data processing compliance checking, and a basis for explaining why the request is deemed compliant or not.

Item Type: Conference or Workshop Item (Paper)
Additional Information: To see the final version of this paper please visit the publisher's website. Access to the published version might require a subscription. Supported by the European Union's Horizon 2020 research and innovation programme under grant 731601.
Divisions: Departments > Informationsverarbeitung u Prozessmanag. > Informationswirtschaft > Polleres
Version of the Document: Published
Variance from Published Version: Minor
Depositing User: Sabrina Kirrane
Date Deposited: 30 Jul 2019 11:54
Last Modified: 04 Dec 2019 09:50
Related URLs:
FIDES Link: https://bach.wu.ac.at/d/research/results/91652/
URI: https://epub.wu.ac.at/id/eprint/7078

Actions

View Item View Item

Downloads

Downloads per month over past year

View more statistics