~ Introduction ~

The Privacy Session of the Solid Symposium 2024 aims to bring together computer scientists and legal experts to discuss Solid as a concrete system for data sovereignty, in order to ground the debate on emergent problems from both a technical and legal perspective.

In this edition, we aim to continue the discussions around technical and legal privacy aspects that should be incorporated into Solid. We aim to draw from a broad interdisciplinary perspective on privacy, including human-centric perspectives on privacy and the emergence of data spaces. Towards this aim, the programme will be a mix of flash talks and presentations of short papers to showcase the current state of research and trajectories in privacy-related research in Solid.

~ Programme ~

3 May 2024 11:00 - 15:00 CEST

• 11h00 - Lola Montero Santos, Operationalizing the law through the Solid environment: opportunities and challenges. [preprint] [slides]


• 11h30 - Yongle Chao, Meihe Xu, Aurelia Tamò-Larrieux, Kimberly Garcia, Konrad Kollnig, Legal, Technical, and Social Limitations of Data Portability through Decentralized Applications. [preprint] [slides]


• 12h00 - Ben MacDonald, Ross Horne, Biagio Boi, Escaping from Identity Providers: Protecting Privacy with Verifiable Credentials in Community Solid Server. [preprint] [slides]


• 12h30 - Lunch Break


• 13h30 - Ross Horne, Ellie Forsyth, Clark-Wilson Policies in ACP: Controlling Information Flow Between Solid Apps. [preprint] [slides]


• 14h00 - Ruben Dedecker, Modeling a system for data sharing on requirements for data access, usage and origin.


• 14h15 - Wout Slabbinck, Julian Rojas, Ruben Verborgh, Enforcing Usage Control Policies in Solid Using A Rule-Based Software Agent. [preprint] [slides]


• 14h30 - Chang Sun, Michel Dumontier, A Dynamic Digital Consent Tool using SOLID. [preprint]


• 14h45 - Eleni Ilkou, Solid Pods Vs Personal Knowledge Graphs: Similarities and Differences. [preprint] [slides]

~ Call for Contributions ~

The Privacy Session of the Solid Symposium 2024 aims to bring together computer scientists and legal experts to discuss Solid as a concrete system for data sovereignty, in order to ground the debate on emergent problems from both a technical perspective and a legal perspective of data protection. The first edition of the Solid Symposium was hosted by Friedrich-Alexander-Universität Erlangen-Nürnberg and Fraunhofer Institute for Integrated Circuits IIS, Germany, on 30-31 March 2023, and explored privacy-related problems concerning identity management, authentication, and authorisation in Solid from an interdisciplinary perspective.

In this edition, we aim to continue the discussions around technical and legal privacy aspects that should be incorporated into Solid. We aim to draw from a broad interdisciplinary perspective on privacy, including human-centric perspectives on privacy and the emergence of data spaces. Towards this aim, the programme will be a mix of flash talks and presentations of short papers to showcase the current state of research and trajectories in privacy-related research in Solid. The interdisciplinary programme committee welcomes a broad range of methodologies not limited to: mathematical and logical models that can be used to analyse threats to the Solid ecosystem, evaluated proof-of-concept implementations, and methodologies drawn from the humanities, not only the legal privacy domain.

Thus, this session comprises presentations from short papers and flash talks from extended abstracts in related areas not limited to the following:

• User-centric perspectives on privacy, security, and transparency
• Access and usage control policies
• (Semi-)Automation of consent support systems
• Privacy-preserving agents and autonomous multi-agent systems
• Interfaces for consenting/consent withdrawing/rights exercising/usage control
• Usability of data-related decisions on Solid
• Regulatory/Legal compliance (e.g. EU's GDPR and DGA, CCPA)
• Impact of the European strategy for data, and related upcoming/proposed regulatory frameworks (DGA, DSA, DMA, ePrivacy, AI Act, Data Act, Health Data Spaces), on decentralised Web systems
• Solid for data spaces
• Digital identities, data wallets (e.g. impact of eIDAS regulation)
• Solutions for data sovereignty, identity management and authentication
• Auditing Pods for transparency & accountability (logging, registries, …)
• Compliance with standards (e.g. Web or security standards)
• Privacy-preserving data analysis technologies/privacy enhancing technologies
• Cybersecurity assessment and auditing
• Risk and impact assessments
• Formal threat modelling

~ Submission Instructions ~

Submitted papers must be in English, unpublished, and must not be currently under review for any other publication.

Short papers: Must have a maximum of 5-6 one-column pages, including references. Papers that do not meet the size and formatting requirements will not be reviewed. Accepted papers will be presented at the session and considered to be published online as CEUR-Workshop Proceedings. Submissions must follow the CEUR style format (overleaf, zip-file).

Authors of accepted short papers will have the possibility to add 1 or 2 more pages to their paper to address the reviewers' comments for the camera ready version (in total the camera ready should have a maximum of 8 pages).

Extended abstracts: Must have a maximum of 1-2 one-column pages, including references. Accepted abstracts will give a flash talk at the session and will be published in the session webpage (if desired by the authors).

Both types of contributions also have the possibility to feature a poster in the Symposium poster session. The posters can also be published in the session webpage (if desired by the authors).

The review process is double-blind. Papers must be anonymised prior to submission for review by removing any identifying information.

All papers must be in PDF format and submitted through OpenReview.

~ Dates ~

All deadlines are 23:59 CET

Deadline for submissions: 25 March 2024

Notifications by: 5 April 2024

Camera-ready by: 24 April 2024

Registration: 24 April 2024

Programme online by: 27 April 2024

If an early decision on a paper/talk is required, for visa and travel booking reasons for instance, please contact the organisation directly any time before the deadlines above.

~ Organisation ~

Organiser

Beatriz ESTEVES (Ghent University, Belgium)

Programme Committee

Inès AKAICHI (Vienna University of Economics and Business, Austria)

Christoph BRAUN (Karlsruhe Institute of Technology, Germany)

Rob BRENNAN (University College Dublin, Ireland)

Xengie DOAN (University of Luxembourg, Luxembourg)

Christian ESPOSITO (University of Salerno, Italy)

Marc FLOREA (University of Groningen, Netherlands)

Patrick HOCHSTENBACH (Ghent University, Belgium)

Ross HORNE (University of Strathclyde, Scotland)

Stratis KOULIERAKIS (University of Groningen, Netherlands)

Harshvardhan PANDIT (Dublin City University, Ireland)

Arianna ROSSI (Sant’Anna School of Advanced Studies, Italy)

Wout SLABBINCK (Ghent University, Belgium)

Jonas STEINBACH (Ghent University, Belgium)

Chang SUN (Maastricht University, Netherlands)

~ Contacts ~

Beatriz Esteves: mailto