Presentation is loading. Please wait.

Presentation is loading. Please wait.

Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. HungDickson K.W. Chiu W.W. FungWilliam.

Published byKellie Waters Modified over 9 years ago

Similar presentations

Presentation on theme: "Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. HungDickson K.W. Chiu W.W. FungWilliam."— Presentation transcript:

1 Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. HungDickson K.W. Chiu W.W. FungWilliam K. Cheung Raymond WongSamuel P.M. Choi Eleanna KafezaJames Kwok Jousha C.C. PunVivying S.Y. Cheng 1 BSIM0012

2 RECORDS MANAGEMENT 1. Introduction 2. Background Information 3. Towards End-to-End Privacy Control 4. Conclusions and Future Works Agenda

3 RECORDS MANAGEMENT Introduction  Marketing is a strategy for selling products more efficiently. ◦ sales promotion strategies for making consumers recognize a product’s existence ◦ persuading them to take purchase actions ◦ circulation strategies for efficiently delivering the desired product ◦ continuation strategies such as after-sales service and claim processing.  Outsourcing of marketing activities widely adopted ◦ raises the concern of privacy issues.

4 RECORDS MANAGEMENT Privacy  Privacy is a state or condition of limited access to a person. ◦ Ref: SCHOEMAN, E. D. 1984. Philosophical Dimensions of Privacy: An Anthology. New York, NY, Cambridge Univ. Press.  Information privacy relates to an individual’s right to determine how, when, and to what extent information about the self will be released to another person or to an organization.

5 RECORDS MANAGEMENT Example Scenario  A bank performs a marketing campaign by calling its credit card holders.  Outsource the calling activity to a third-party service provider ◦ resource problems / other economic reasons  Personal information required ◦ name, credit card number, gender, age group, salary range, and even addresses activity  Under current practices, all the necessary credit card holders’ data are transferred in bulk from the bank to the marketing company. ◦ large amount of personal information.

6 RECORDS MANAGEMENT Example Process with Web Service Solution

7 RECORDS MANAGEMENT What is Web Service W3C definition of a Web Service ◦ has a unique Uniform Resource Identifier (URI)  URI are commonly in the form of URL ◦ can be defined, described, and discovered using XML ◦ supports exchange of XML messages via Internet- based protocols ◦ http://www.w3.org/2002/ws/ http://www.w3.org/2002/ws/ Supported by all major computing companies, e.g., IBM, Microsoft, Sun, and etc.

8 RECORDS MANAGEMENT Access Control Concepts

9 RECORDS MANAGEMENT Access Control Languages  Enterprise Privacy Authorization Language (EPAL) ◦ By IBM - www.zurich.ibm.com/security/enterprise- privacy/ www.zurich.ibm.com/security/enterprise- privacy/ ◦ encode an enterprise’s privacy-related data- handling policies and practices. ◦ An EPAL policy defines lists of hierarchies of data- categories, data-users, and purposes, and sets of actions, obligations, and conditions.  Platform for Privacy Preferences (P3P) ◦ Current W3C standard ◦ http://www.w3.org/P3P/ http://www.w3.org/P3P/

10 RECORDS MANAGEMENT A Layered Framework for Tackling Privacy Protection

11 RECORDS MANAGEMENT Conceptual Model of Web-Service Based Privacy Access Control

12 RECORDS MANAGEMENT Implementation Architecture

13 RECORDS MANAGEMENT Conclusion  A layered architecture and methodology for the facilitation of privacy control based-on Web services.  A conceptual model of Web-service-based privacy access control to facilitate the design of an implementation architecture.  Outsourced marketing companies can be integrated with adequate control and auditing.  Practicability showing how the call center software for a typical marketing activity can be integrated effectively with the banks’ Web service  Only the required part of a customer record is retrieved through the appropriate data views and sent one at a time to achieve strict end-to-end privacy.

14 RECORDS MANAGEMENT Future Work  Use P3P instead of EPAL  Ontology: Adopt OWL vocabularies for classifications  Critical success factors  Cost and technical requirements  Implementation issues  Extending the framework to other applicable scenarios such as credit reference agencies.

Download ppt "Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. HungDickson K.W. Chiu W.W. FungWilliam."

Similar presentations

Web Service Architecture

Web Service Architecture
Overview of Web Services

Overview of Web Services
Tuesday, June 10, 2003 Web Services Brief Overview & Security Assertion Coordinator Pattern by Mohammad Abushadi & Riaz Ahmed for Security Group CSE -

Tuesday, June 10, 2003 Web Services Brief Overview & Security Assertion Coordinator Pattern by Mohammad Abushadi & Riaz Ahmed for Security Group CSE -
1 Understanding Web Services Presented By: Woodas Lai.

1 Understanding Web Services Presented By: Woodas Lai.
Delivering Mission Agility Through Agile SOA Governance 13 th SOA e-Government Conference 4/12/2012 Presented by Wolf Tombe Chief Technology Officer (CTO)

Delivering Mission Agility Through Agile SOA Governance 13 th SOA e-Government Conference 4/12/2012 Presented by Wolf Tombe Chief Technology Officer (CTO)
UDDI, Discovery and Web Services Registries. Introduction To facilitate e-commerce, companies needed a way to locate one another and exchange information.

UDDI, Discovery and Web Services Registries. Introduction To facilitate e-commerce, companies needed a way to locate one another and exchange information.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
E-Business Models The emphasis is on business in e-business Part 2 – B2B Adomas Svirskas Vilnius University November 2005.

E-Business Models The emphasis is on business in e-business Part 2 – B2B Adomas Svirskas Vilnius University November 2005.
Fixed Assets Management in

Fixed Assets Management in
1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.

1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.
A New Computing Paradigm. Overview of Web Services Over 66 percent of respondents to a 2001 InfoWorld magazine poll agreed that Web services are likely.

A New Computing Paradigm. Overview of Web Services Over 66 percent of respondents to a 2001 InfoWorld magazine poll agreed that "Web services are likely.
Enterprise Privacy Promises and Enforcement Adam Barth John C. Mitchell.

Enterprise Privacy Promises and Enforcement Adam Barth John C. Mitchell.
Integration of Applications MIS3502: Application Integration and Evaluation Paul Weinberg Adapted from material by Arnold Kurtz, David.

Integration of Applications MIS3502: Application Integration and Evaluation Paul Weinberg Adapted from material by Arnold Kurtz, David.
Protecting the Exchange of Medical Images in Healthcare Process Integration with Web Services Patrick C. K. HUNG Faculty of Business and Information Technology,

Protecting the Exchange of Medical Images in Healthcare Process Integration with Web Services Patrick C. K. HUNG Faculty of Business and Information Technology,
SiS Technical Training Development Track Day 10. Agenda  Introduction to Integration Broker  How to Expose and Consume WebServices.

SiS Technical Training Development Track Day 10. Agenda  Introduction to Integration Broker  How to Expose and Consume WebServices.
Mohd Saiyidi 1 Chapter 1 Introduction to Electronic Commerce.

Mohd Saiyidi 1 Chapter 1 Introduction to Electronic Commerce.
Course Module 1: Service-Oriented Programming (SOP)

Course Module 1: Service-Oriented Programming (SOP)
IT CONCEPTS An Online Course #605701 1 IT Concepts covers the concepts and vocabulary needed to grasp the basics of information technology. The course.

IT CONCEPTS An Online Course # IT Concepts covers the concepts and vocabulary needed to grasp the basics of information technology. The course.
1 Objective of today’s lesson S oftware engineering occurs as a consequence of a process called system engineering. Instead of concentrating solely on.

1 Objective of today’s lesson S oftware engineering occurs as a consequence of a process called system engineering. Instead of concentrating solely on.
SaaS, PaaS & TaaS By: Raza Usmani

SaaS, PaaS & TaaS By: Raza Usmani

Similar presentations

Ads by Google