umu.sePublikationer
Ändra sökning
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf
Balancing data protection and privacy: The case of information security sensor systems
Umeå universitet, Samhällsvetenskapliga fakulteten, Juridiska institutionen.ORCID-id: 0000-0002-4642-3872
2018 (Engelska)Ingår i: The Computer Law and Security Review, ISSN 0267-3649, Vol. 34, nr 5, s. 1019-1038Artikel i tidskrift (Refereegranskat) Published
Abstract [en]

This article analyses government deployment of information security sensor systems from primarily a European human rights perspective. Sensor systems are designed to detect attacks against information networks by analysing network traffic and comparing this traffic to known attack-vectors, suspicious traffic profiles or content, while also recording attacks and providing information for the prevention of future attacks. The article examines how these sensor systems may be one way of ensuring the necessary protection of personal data stored in government IT-systems, helping governments fulfil positive obligations with regards to data protection under the European Convention on Human Rights (ECHR), the EU Charter of Fundamental Rights (The Charter), as well as data protection and IT-security requirements established in EU-secondary law. It concludes that the implementation of sensor systems illustrates the need to balance data protection against the negative privacy obligations of the state under the ECHR and the Charter and the accompanying need to ensure that surveillance of communications and associated metadata reach established principles of legality and proportionality. The article highlights the difficulty in balancing these positive and negative obligations, makes recommendations on the scope of such sensor systems and the legal safeguards surrounding them to ensure compliance with European human rights law and concludes that there is a risk of privatised policymaking in this field barring further guidance in EU-secondary law or case law.

Ort, förlag, år, upplaga, sidor
Elsevier, 2018. Vol. 34, nr 5, s. 1019-1038
Nyckelord [en]
Data protection, Privacy, Information security, Sensor systems, Communications monitoring, Metadata, Surveillance, Hacking, GDPR, ePrivacy, Workplace surveillance, Government information systems
Nationell ämneskategori
Juridik (exklusive juridik och samhälle)
Forskningsämne
juridik
Identifikatorer
URN: urn:nbn:se:umu:diva-148079DOI: 10.1016/j.clsr.2018.04.006ISI: 000447580100004Scopus ID: 2-s2.0-85047394052OAI: oai:DiVA.org:umu-148079DiVA, id: diva2:1210389
Forskningsfinansiär
Ragnar Söderbergs stiftelse, R23/14Tillgänglig från: 2018-05-28 Skapad: 2018-05-28 Senast uppdaterad: 2018-12-13Bibliografiskt granskad

Open Access i DiVA

Publikationen är tillgänglig i fulltext från 2020-05-25 00:00
Tillgänglig från 2020-05-25 00:00

Övriga länkar

Förlagets fulltextScopus

Personposter BETA

Naarttijärvi, Markus

Sök vidare i DiVA

Av författaren/redaktören
Naarttijärvi, Markus
Av organisationen
Juridiska institutionen
I samma tidskrift
The Computer Law and Security Review
Juridik (exklusive juridik och samhälle)

Sök vidare utanför DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetricpoäng

doi
urn-nbn
Totalt: 384 träffar
RefereraExporteraLänk till posten
Permanent länk

Direktlänk
Referera
Referensformat
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Annat format
Fler format
Språk
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Annat språk
Fler språk
Utmatningsformat
  • html
  • text
  • asciidoc
  • rtf