Personal user data protection in the e-commerce

Informatics and Internet in particular favor largely the collection of data without user permission, their disclosure to third parties and their cross-analysis. The density of the human activities in the digital world thus constitutes a fertile ground for potential invasions of privacy of the users. Our works examine first the legal context of privacy protection, as well as the diverse computing means intended for the protection of personal data. A need for user centered solutions emerges, giving him/her more control over his/her personal data. In this perspective, we analyze European and French privacy legislation to extract data protection axis. Then we specify the constraints related to these axes, and we introduce them in existing security policy models. Thus we suggest the application of one model for both access control and privacy protection. The access control model should be extended by new privacy related conditions and parameters. To do so, we define the language XPACML (eXtensible Privacy aware Access Control Markup Language) based on XACML and new privacy extensions. Placed in an E-commerce context, we define a semantic model allowing to represent various electronic transactions contexts, and leading to a dynamic generation of context- aware XPACML policies. Looking for a vast protection of the personal data, we dedicate the last part of our works to the possible negotiations which can be made between a user and a service provider. Two protocols are proposed. The first one permits the negotiation of the terms and the conditions of data protection policies, while the second permits the negotiation of the requested data themselves

Data and Resources

Additional Info

Field Value
Source https://theses.hal.science/tel-00923175
Author Dari Bekara, Kheira, Bekara
Maintainer CCSD
Last Updated May 7, 2026, 16:19 (UTC)
Created May 7, 2026, 16:19 (UTC)
Identifier NNT: 2012TELE0045
Language fr
Rights https://about.hal.science/hal-authorisation-v1/
contributor Services répartis, Architectures, MOdélisation, Validation, Administration des Réseaux (SAMOVAR) ; Télécom SudParis (TSP) ; Institut Mines-Télécom [Paris] (IMT)-Institut Polytechnique de Paris (IP Paris)-Institut Mines-Télécom [Paris] (IMT)-Institut Polytechnique de Paris (IP Paris)
creator Dari Bekara, Kheira, Bekara
date 2012-12-18T00:00:00
harvest_object_id 3de283bd-7af0-4b8f-ad21-fb31279ce83a
harvest_source_id 3374d638-d20b-4672-ba96-a23232d55657
harvest_source_title test moissonnage SELUNE
metadata_modified 2026-03-31T00:00:00
set_spec type:THESE