Context-awareness privacy in data communications

Internet users consume online targeted advertising based on information collected about them and voluntarily share personal information in social networks. Sensor information and data from smart-phones is collected and used by applications, sometimes in unclear ways. As it happens today with smartphones, in the near future sensors will be shipped in all types of connected devices, enabling ubiquitous information gathering from the physical environment, enabling the vision of Ambient Intelligence. The value of gathered data, if not obvious, can be harnessed through data mining techniques and put to use by enabling personalized and tailored services as well as business intelligence practices, fueling the digital economy. However, the ever-expanding information gathering and use undermines the privacy conceptions of the past. Natural social practices of managing privacy in daily relations are overridden by socially-awkward communication tools, service providers struggle with security issues resulting in harmful data leaks, governments use mass surveillance techniques, the incentives of the digital economy threaten consumer privacy, and the advancement of consumergrade data-gathering technology enables new inter-personal abuses. A wide range of fields attempts to address technology-related privacy problems, however they vary immensely in terms of assumptions, scope and approach. Privacy of future use cases is typically handled vertically, instead of building upon previous work that can be re-contextualized, while current privacy problems are typically addressed per type in a more focused way. Because significant effort was required to make sense of the relations and structure of privacy-related work, this thesis attempts to transmit a structured view of it. It is multi-disciplinary - from cryptography to economics, including distributed systems and information theory - and addresses privacy issues of different natures. As existing work is framed and discussed, the contributions to the state-of-theart done in the scope of this thesis are presented. The contributions add to five distinct areas: 1) identity in distributed systems; 2) future context-aware services; 3) event-based context management; 4) low-latency information flow control; 5) high-dimensional dataset anonymity. Finally, having laid out such landscape of the privacy-preserving work, the current and future privacy challenges are discussed, considering not only technical but also socio-economic perspectives.

O ensino e aprendizagem online da estatística descritiva

Tendo em conta que a Universidade Eduardo Mondlane é a primeira instituição, em Moçambique, a oferecer cursos completamente baseados na Web, o presente estudo constitui uma das primeiras investigações com a qual se pretende perceber qual o impacto de um módulo assente na compreensão de conceitos e na resolução de tarefas, fortemente apoiadas por uma Folha de Cálculo, estruturado numa lógica de webquest e lecionado a distância, rentabilizando-se potencialidades da plataforma virtual Aulanet, no desenvolvimento de competências tecnológicas e de conhecimentos, capacidades e atitudes relacionados com a Estatística descritiva. Para dar resposta às questões de investigação formuladas, optou-se por uma abordagem qualitativa e por uma estratégia de estudo de caso que se desenvolveu num contexto próximo da lógica da investigação - ação. Os principais participantes foram alunos do Curso de Licenciatura em Gestão de Negócios da UEM em Moçambique, a frequentar a disciplina de Estatística Aplicada. Para a recolha de dados, privilegiaram-se as técnicas da inquirição, análise documental e observação direta e participante, e diversos instrumentos como questionários e entrevistas, produções dos alunos, intervenções no fórum de debate, no Chat, testes e trabalhos, diário de bordo e notas de campo, com vista à triangulação metódica. A análise estatística e de conteúdo dos dados recolhidos permite constatar que a aprendizagem, à distância, de Estatística Descritiva, explorando-se meios tecnológicos de informação e de comunicação online e folha de cálculo Excel, inscritos numa estratégia de webquest ,potencia o desenvolvimento de competências tecnológicas e de conhecimentos, capacidades e atitudes relacionados com o tema. Paralelamente, permitiu refletir sobre as condições de ensino e de aprendizagem que podem favorecer tais práticas.

DACA: architecture to implement dynamic access control mechanisms on business tier components

Access control is a software engineering challenge in database applications. Currently, there is no satisfactory solution to dynamically implement evolving fine-grained access control mechanisms (FGACM) on business tiers of relational database applications. To tackle this access control gap, we propose an architecture, herein referred to as Dynamic Access Control Architecture (DACA). DACA allows FGACM to be dynamically built and updated at runtime in accordance with the established fine-grained access control policies (FGACP). DACA explores and makes use of Call Level Interfaces (CLI) features to implement FGACM on business tiers. Among the features, we emphasize their performance and their multiple access modes to data residing on relational databases. The different access modes of CLI are wrapped by typed objects driven by FGACM, which are built and updated at runtime. Programmers prescind of traditional access modes of CLI and start using the ones dynamically implemented and updated. DACA comprises three main components: Policy Server (repository of metadata for FGACM), Dynamic Access Control Component (DACC) (business tier component responsible for implementing FGACM) and Policy Manager (broker between DACC and Policy Server). Unlike current approaches, DACA is not dependent on any particular access control model or on any access control policy, this way promoting its applicability to a wide range of different situations. In order to validate DACA, a solution based on Java, Java Database Connectivity (JDBC) and SQL Server was devised and implemented. Two evaluations were carried out. The first one evaluates DACA capability to implement and update FGACM dynamically, at runtime, and, the second one assesses DACA performance against a standard use of JDBC without any FGACM. The collected results show that DACA is an effective approach for implementing evolving FGACM on business tiers based on Call Level Interfaces, in this case JDBC.

O papel do associativismo no tecido empresarial do distrito de Aveiro

O objetivo deste estudo, que resultou de um estágio realizado na Associação Industrial do Distrito de Aveiro (AIDA), foi perceber qual o papel das associações empresariais e industriais para o tecido empresarial desta mesma região. Neste sentido, procurou-se perceber: quais os serviços procurados pelas empresas nas suas associações, as razões que motivam essa procura e o grau de satisfação com os serviços prestados; quais as vantagens e desvantagens de pertencer a uma associação empresarial/industrial; e quais as mudanças percecionadas como necessárias nas associações para a melhoria da qualidade dos serviços prestados, tornando-as, deste modo, mais relevantes para o tecido empresarial. Com vista à concretização do objetivo proposto foi utilizada uma metodologia qualitativa, tendo a informação sido recolhida através de análise documental, de observação participante e de entrevistas realizadas à Diretora-Geral da AIDA e a oito empresas pertencentes a associações empresariais e industriais. O presente estudo começa por apresentar a evolução da indústria portuguesa e do associativismo industrial ao longo do tempo, focando as alterações mais significativas ocorridas e referindo as funções desempenhadas pelas mesmas associações. Posteriormente, é analisado a Entidade de Acolhimento – a AIDA –, e relatadas as atividades realizadas ao longo do estágio nessa instituição. Seguidamente, e após a explicação da metodologia utilizada, é apresentada a análise das entrevistas realizadas a empresários. Finalmente, são tiradas as conclusões finais e delineadas perspetivas para o futuro. Este estudo permitiu reconhecer o papel importante que as associações empresarias/indústrias desempenham para as empresas e para as regiões onde estas se inserem. Porém, existem ainda mudanças a realizar, de forma a potenciar o seu trabalho e ir de encontro aos anseios e às necessidades das empresas.

Control design for multicast-aware class-based networks

The expectations of citizens from the Information Technologies (ITs) are increasing as the ITs have become integral part of our society, serving all kinds of activities whether professional, leisure, safety-critical applications or business. Hence, the limitations of the traditional network designs to provide innovative and enhanced services and applications motivated a consensus to integrate all services over packet switching infrastructures, using the Internet Protocol, so as to leverage flexible control and economical benefits in the Next Generation Networks (NGNs). However, the Internet is not capable of treating services differently while each service has its own requirements (e.g., Quality of Service - QoS). Therefore, the need for more evolved forms of communications has driven to radical changes of architectural and layering designs which demand appropriate solutions for service admission and network resources control. This Thesis addresses QoS and network control issues, aiming to improve overall control performance in current and future networks which classify services into classes. The Thesis is divided into three parts. In the first part, we propose two resource over-reservation algorithms, a Class-based bandwidth Over-Reservation (COR) and an Enhanced COR (ECOR). The over-reservation means reserving more bandwidth than a Class of Service (CoS) needs, so the QoS reservation signalling rate is reduced. COR and ECOR allow for dynamically defining over-reservation parameters for CoSs based on network interfaces resource conditions; they aim to reduce QoS signalling and related overhead without incurring CoS starvation or waste of bandwidth. ECOR differs from COR by allowing for optimizing control overhead minimization. Further, we propose a centralized control mechanism called Advanced Centralization Architecture (ACA), that uses a single state-full Control Decision Point (CDP) which maintains a good view of its underlying network topology and the related links resource statistics on real-time basis to control the overall network. It is very important to mention that, in this Thesis, we use multicast trees as the basis for session transport, not only for group communication purposes, but mainly to pin packets of a session mapped to a tree to follow the desired tree. Our simulation results prove a drastic reduction of QoS control signalling and the related overhead without QoS violation or waste of resources. Besides, we provide a generic-purpose analytical model to assess the impact of various parameters (e.g., link capacity, session dynamics, etc.) that generally challenge resource overprovisioning control. In the second part of this Thesis, we propose a decentralization control mechanism called Advanced Class-based resource OverpRovisioning (ACOR), that aims to achieve better scalability than the ACA approach. ACOR enables multiple CDPs, distributed at network edge, to cooperate and exchange appropriate control data (e.g., trees and bandwidth usage information) such that each CDP is able to maintain a good knowledge of the network topology and the related links resource statistics on real-time basis. From scalability perspective, ACOR cooperation is selective, meaning that control information is exchanged dynamically among only the CDPs which are concerned (correlated). Moreover, the synchronization is carried out through our proposed concept of Virtual Over-Provisioned Resource (VOPR), which is a share of over-reservations of each interface to each tree that uses the interface. Thus, each CDP can process several session requests over a tree without requiring synchronization between the correlated CDPs as long as the VOPR of the tree is not exhausted. Analytical and simulation results demonstrate that aggregate over-reservation control in decentralized scenarios keep low signalling without QoS violations or waste of resources. We also introduced a control signalling protocol called ACOR Protocol (ACOR-P) to support the centralization and decentralization designs in this Thesis. Further, we propose an Extended ACOR (E-ACOR) which aggregates the VOPR of all trees that originate at the same CDP, and more session requests can be processed without synchronization when compared with ACOR. In addition, E-ACOR introduces a mechanism to efficiently track network congestion information to prevent unnecessary synchronization during congestion time when VOPRs would exhaust upon every session request. The performance evaluation through analytical and simulation results proves the superiority of E-ACOR in minimizing overall control signalling overhead while keeping all advantages of ACOR, that is, without incurring QoS violations or waste of resources. The last part of this Thesis includes the Survivable ACOR (SACOR) proposal to support stable operations of the QoS and network control mechanisms in case of failures and recoveries (e.g., of links and nodes). The performance results show flexible survivability characterized by fast convergence time and differentiation of traffic re-routing under efficient resource utilization i.e. without wasting bandwidth. In summary, the QoS and architectural control mechanisms proposed in this Thesis provide efficient and scalable support for network control key sub-systems (e.g., QoS and resource control, traffic engineering, multicasting, etc.), and thus allow for optimizing network overall control performance.

The economic consequences of Portuguese State’s movement towards business sector

Over the last 36 years, the relationship with the Portuguese state-owned enterprises registered several dynamics: nationalizations, privatizations and corporatization of public services. However, until now the State Business Sector from a national accounts perspective was never analyzed. Based on data collected and compiled for the first time at Statistics Portugal, this PhD thesis aims to test, analyzing in eight dimensions, whether the weight of the State Business Sector increased and if it contributed positively to the Portuguese economy, from 2006 to 2010. In addition to this analysis, an overview of the economic theory of state intervention in the economy, the paradigm changes of public policy in the international context, the evolution of the Portuguese State Business Sector since 1974, accompanied with a business and national accounting perspective between 2006 and 2010, are also presented. The results allow us to conclude that, in general, the weight of the State Business Sector in the Portuguese economy increased and had a tendency of a positive contribution to its economic growth. The State Business Sector also contributed positively to the nominal labour productivity (although with a decreasing trend of contribution to growth over the period under review) and the profitability of the non-financial corporations sector (although impairing the overall ratio of this sector). Nonetheless, the State Business Sector contributed negatively to the fairness in compensation of employees (although with an improvement trend) and to the competitiveness of labour cost, investment and sectorial sustainability of the Portuguese economy (reinforced by a falling trend). The results also suggest that the State Business Sector had an economic behaviour closer to a welfare maximizing model than to a profit maximizing model. This distinct performance with respect to the institutional sector in which is included, highlights the need to study and reassess the relationship of the state with public corporations, in light of agency theory using micro-data. Lastly, contributions to improve the economic performance of the State Business Sector and future prospects of evolution are presented.