all InfoSec news
Secure and Privacy-Preserving Authentication for Data Subject Rights Enforcement
April 25, 2024, 7:11 p.m. | Malte Hansen, Andre B\"uttner
cs.CR updates on arXiv.org arxiv.org
Abstract: In light of the GDPR, data controllers (DC) need to allow data subjects (DS) to exercise certain data subject rights. A key requirement here is that DCs can reliably authenticate a DS. Due to a lack of clear technical specifications, this has been realized in different ways, such as by requesting copies of ID documents or by email address verification. However, previous research has shown that this is associated with various security and privacy risks …
arxiv authenticate authentication can clear controllers cs.cr data dcs enforcement exercise gdpr key privacy rights technical
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
Cryptography Software Developer
@ Intel | USA - AZ - Chandler
Lead Consultant, Geology
@ WSP | Richmond, VA, United States
BISO Cybersecurity Director
@ ABM Industries | Alpharetta, GA, United States
TTECH Analista de ciberseguridad
@ Telefónica | LIMA, PE
TRANSCOM IGC - Cloud Security Engineer
@ IT Partners, Inc | St. Louis, Missouri, United States
Sr Cyber Threat Hunt Researcher
@ Peraton | Beltsville, MD, United States