Presentation is loading. Please wait.

Presentation is loading. Please wait.

Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. Hung Dickson K.W. Chiu W.W. Fung.

Published byRuby Paul Modified over 8 years ago

Similar presentations

Presentation on theme: "Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. Hung Dickson K.W. Chiu W.W. Fung."— Presentation transcript:

1 Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. Hung Dickson K.W. Chiu W.W. Fung William K. Cheung Raymond Wong Samuel P.M. Choi Eleanna Kafeza James Kwok Jousha C.C. Pun Vivying S.Y. Cheng

2 1.Introduction 2.Background Information 3.Towards End-to-End Privacy Control 4.Conclusions and Future Works Agenda

3 Marketing is a strategy for selling products more efficiently. This includes sales promotion strategies for making consumers recognize a product’s existence and persuading them to take purchase actions, circulation strategies for efficiently delivering the desired product, and continuation strategies such as after-sales service and claim processing. Outsourcing of marketing activities has been widely adopted and raises the concern of privacy issues. Introduction

4 Consider a scenario where a bank performs a marketing campaign by calling its credit card holders. Due to resource problems or other economic reasons, the bank would like to outsource the calling activity to a third- party service provider. Usually to make tele-marketing effective, personal information including the name, credit card number, gender, age group, salary range, and even addresses might be needed for the marketing activity. Introduction (cont.)

5 Under current practices, all the necessary credit card holders’ data are transferred in bulk from the bank to the marketing company. This inevitably contains a large amount of personal information. Therefore, we have conducted a case study in the outsourcing of tele-marketing activities in a financial institute. Introduction (cont.)

6 W3C Definition of a Web Service –has a unique Uniform Resource Identifier (URI) –can be defined, described, and discovered using XML –supports exchange of XML messages via Internet- based protocols Supported by all major computing companies, e.g., IBM, Microsoft, Sun, and etc. Background Information

7 Background Information (cont.) Web services are based on a set of XML standards: –WSDL, SOAP, UDDI –Emerging standards, e.g., BPEL4WS, WS-Security

8 Privacy is a state or condition of limited access to a person. Ref: SCHOEMAN, E. D. 1984. Philosophical Dimensions of Privacy: An Anthology. New York, NY, Cambridge Univ. Press. Information privacy relates to an individual’s right to determine how, when, and to what extent information about the self will be released to another person or to an organization. Background Information (cont.)

9

10 The Enterprise Privacy Authorization Language (EPAL) is used to encode an enterprise’s privacy- related data-handling policies and practices. An EPAL policy defines lists of hierarchies of data- categories, data-users, and purposes, and sets of actions, obligations, and conditions. Online: www.zurich.ibm.com/security/enterprise-privacy/ Background Information (cont.)

11 A Layered Framework for Tackling Privacy Protection Towards End-to-End Privacy Control

12 A Conceptual Model of Web-Service-Based Privacy Access Control Towards End-to-End Privacy Control (cont.)

13 A Proposed Protocol and Architecture for Tackling Privacy Access Control Issues Towards End-to-End Privacy Control (cont.)

14 An example marketing activity of an outsourced call center Towards End-to-End Privacy Control (cont.)

15 A layered architecture and methodology for the facilitation of privacy control based-on Web services. A conceptual model of Web-service-based privacy access control to facilitate the design of an implementation architecture Outsourced marketing companies can be integrated with adequate control and auditing. Practicability showing how the call center software for a typical marketing activity can be integrated effectively with the banks’ Web service Only the required part of a customer record is retrieved through the appropriate data views and sent one at a time to achieve strict end-to- end privacy. Conclusions and Future Works

16 We are currently working on the following technical research issues: –Ontology: Adopt OWL with EPAL vocabularies; –Privacy Access Control Policy: Adopt EPAL with extended assertions; and –Privacy Access Control Preferences: Adopt A P3P Preference Exchange Language (APPEL). From the practical and commercial perspective, we are also investigating research issues like: –Critical success factors for the Web services-based end-to-end privacy control systems; –Cost and technical requirements for the involved parties; –The implementation issues of the proposed system; and –Extending the framework to other applicable scenarios such as credit reference agencies. Conclusions and Future Works (cont.)

Download ppt "Towards End-to-End Privacy Control in the Outsourcing of Marketing Activities: A Web Service Integration Patrick C. K. Hung Dickson K.W. Chiu W.W. Fung."

Similar presentations

Web Service Architecture

Web Service Architecture
Overview of Web Services

Overview of Web Services
Chapter 19 – Service-oriented Architecture

Chapter 19 – Service-oriented Architecture
Tuesday, June 10, 2003 Web Services Brief Overview & Security Assertion Coordinator Pattern by Mohammad Abushadi & Riaz Ahmed for Security Group CSE -

Tuesday, June 10, 2003 Web Services Brief Overview & Security Assertion Coordinator Pattern by Mohammad Abushadi & Riaz Ahmed for Security Group CSE -
1 Understanding Web Services Presented By: Woodas Lai.

1 Understanding Web Services Presented By: Woodas Lai.
UDDI, Discovery and Web Services Registries. Introduction To facilitate e-commerce, companies needed a way to locate one another and exchange information.

UDDI, Discovery and Web Services Registries. Introduction To facilitate e-commerce, companies needed a way to locate one another and exchange information.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
SEMPER: A Security Framework for the Global Electronic Marketplca Jian Zheng Nov. 30, 1998.

SEMPER: A Security Framework for the Global Electronic Marketplca Jian Zheng Nov. 30, 1998.
E-Business Models The emphasis is on business in e-business Part 2 – B2B Adomas Svirskas Vilnius University November 2005.

E-Business Models The emphasis is on business in e-business Part 2 – B2B Adomas Svirskas Vilnius University November 2005.
Interactive Systems Technical Design Seminar work: Web Services Janne Ojanaho.

Interactive Systems Technical Design Seminar work: Web Services Janne Ojanaho.
1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.

1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.
Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.

Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.
A New Computing Paradigm. Overview of Web Services Over 66 percent of respondents to a 2001 InfoWorld magazine poll agreed that Web services are likely.

A New Computing Paradigm. Overview of Web Services Over 66 percent of respondents to a 2001 InfoWorld magazine poll agreed that "Web services are likely.
Enterprise Privacy Promises and Enforcement Adam Barth John C. Mitchell.

Enterprise Privacy Promises and Enforcement Adam Barth John C. Mitchell.
2006 IEEE International Conference on Web Services ICWS 2006 Overview.

2006 IEEE International Conference on Web Services ICWS 2006 Overview.
Protecting the Exchange of Medical Images in Healthcare Process Integration with Web Services Patrick C. K. HUNG Faculty of Business and Information Technology,

Protecting the Exchange of Medical Images in Healthcare Process Integration with Web Services Patrick C. K. HUNG Faculty of Business and Information Technology,
Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment ELC 200 Day 24.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment ELC 200 Day 24.
Enterprise Privacy Promises and Enforcement Adam Barth John C. Mitchell.

Enterprise Privacy Promises and Enforcement Adam Barth John C. Mitchell.
1 CSIT600c: Web Services Programming Workflow and BPEL4WS Dickson K.W. Chiu PhD, SMIEEE Thanks to Dr. Patrick C.K. Hung (UOIT)

1 CSIT600c: Web Services Programming Workflow and BPEL4WS Dickson K.W. Chiu PhD, SMIEEE Thanks to Dr. Patrick C.K. Hung (UOIT)
ROLE OF COMMERCIAL BANKS IN THE ECONOMIC DEVELOPMENT OF A COUNTRY

ROLE OF COMMERCIAL BANKS IN THE ECONOMIC DEVELOPMENT OF A COUNTRY

Similar presentations

Ads by Google