Data Capsule: A Self-Contained Data Model as an Access Policy Enforcement Strategy
This addresses data privacy and access control issues for users and organizations in semi-trusted environments, but it is incremental as it builds on existing technologies like blockchain and attribute-based encryption.
The paper tackles the problem of secure and privacy-respecting personal data exchange by introducing a data capsule model that reduces interactions among users, service providers, and data custodians, achieving a 50% reduction in interaction overhead in simulations.
In this paper, we introduce a data capsule model, a self-contained and self-enforcing data container based on emerging self-sovereign identity standards, blockchain, and attribute-based encryption. A data capsule allows for a transparent, privacy-respecting, and secure exchange of personal data, enabling a progressive trust scheme in a semi-trusted environment. Each data capsule is bundled with its own access policy structure and verifiable data, drastically reducing the number of interactions needed among the user, the service providers, and data custodians. Moreover, by relying on the decentralized nature of blockchain and attribute-based encryption our proposed model ensures the access policies published by service providers are public, transparent, and strictly followed.