AuthApp – Portable, Reusable Solid App for GDPR-Compliant Access Granting

Both A, Kastner T, Yeboah D, Braun C, Schraudner D, Schmid SJ, Käfer T, Harth A (2024)

Publication Language: English

Publication Type: Conference contribution, Conference Contribution

Publication year: 2024

Publisher: Springer

Series: Lecture Notes in Computer Science

City/Town: Cham

Book Volume: 14629

Pages Range: 199-214

Conference Proceedings Title: Web Engineering. 24th International Conference, ICWE 2024, Tampere, Finland, June 17–20, 2024, Proceedings

Event location: Tampere FI

ISBN: 9783031623615

DOI: 10.1007/978-3-031-62362-2_14

Abstract

The Solid (Social Linked Data) technology family was developed to provide the foundation for Data Sovereignty in the context of web applications. The advantage of this innovative approach is the opportunity to dynamically bind an identity to a Solid application and a user-specific Solid data store (Solid Pod). These three basic components can be combined dynamically, allowing users to share their data with an application while retaining full control of the data in self-managed Solid Pods. This paper presents a prototype of a web-based user interface to grant access to data in a Solid Pod. To enable a dynamic binding into Solid-driven environments, we made the implementation available as a Solid application – AuthApp – with a specific focus on allowing users to configure the data access granting efficiently. To comply with data protection regulations, in particular Europe’s GDPR, we extended the standard to include the validation of the purpose of data sharing. Unlike previous work, we also make full use of robust technologies to avoid the need to copy or store data outside the personal context, meaning all data remains under the user’s control and so does the AuthApp.

Authors with CRIS profile

Daniel Schraudner Lehrstuhl für Wirtschaftsinformatik, insbesondere Technische Informationssysteme Sebastian Josef Schmid Lehrstuhl für Wirtschaftsinformatik, insbesondere Technische Informationssysteme Andreas Harth Lehrstuhl für Wirtschaftsinformatik, insbesondere Technische Informationssysteme

Involved external institutions

Karlsruhe Institute of Technology (KIT) DE Germany (DE) DATEV eG DE Germany (DE)

How to cite

APA:

Both, A., Kastner, T., Yeboah, D., Braun, C., Schraudner, D., Schmid, S.J.,... Harth, A. (2024). AuthApp – Portable, Reusable Solid App for GDPR-Compliant Access Granting. In Kostas Stefanidis, Kari Systä, Maristella Matera, Sebastian Heil, Haridimos Kondylakis, Elisa Quintarelli (Eds.), Web Engineering. 24th International Conference, ICWE 2024, Tampere, Finland, June 17–20, 2024, Proceedings (pp. 199-214). Tampere, FI: Cham: Springer.

MLA:

Both, Andreas, et al. "AuthApp – Portable, Reusable Solid App for GDPR-Compliant Access Granting." Proceedings of the 24th International Conference, ICWE 2024, Tampere Ed. Kostas Stefanidis, Kari Systä, Maristella Matera, Sebastian Heil, Haridimos Kondylakis, Elisa Quintarelli, Cham: Springer, 2024. 199-214.

BibTeX: Download