'Institute of Electrical and Electronics Engineers (IEEE)'
Abstract
This paper presents the Trusted Integrated Knowledge Dataspace (TIKD), a new dataspace, based on linked data technologies and trusted data sharing, that supports integrated knowledge graphs for sensitive application environments such as healthcare. State-of-the-art shared dataspaces do not consider sensitive data and privacy-aware log records as part of their solutions, defining only how to access data. TIKD complements dataspace security approaches through trusted data sharing that considers personal data handling, data privileges, pseudonymization of user activity logging, and privacy-aware data interlinking services. TIKD was implemented on the Access Risk Knowledge(ARK) Platform, a socio-technical risk governance system, and deployed as part of the ARK-Virus Project which aims to govern the risk management of Personal Protection Equipment (PPE)across a group of collaborating healthcare institutions. The ARK Platform was evaluated, both before and after implementing the TIKD, using the ISO 27001 Gap Analysis Tool (GAT) which determines compliance with the information security standard.The results of the evaluation indicated that compliance with ISO 27001 increased from 50% to 85%. The evaluation also provided a set of recommended actions to meet the remaining requirements of the ISO 27001 standard. TIKD provides a collaborative environment, based on knowledge graph integration and GDPR-compliant personal data handling, as part of the data security infrastructure. As a result of this work, a new trusted data security methodology, based on personal data handling,data privileges, access control context specification, and privacy-aware data interlinking, was developed using a knowledge graph approac
