Purpose-Based Access Control Policies and Conflicting Analysis

被引:0
|
作者
Wang, Hua [1 ]
Sun, Lili [1 ]
Varadharajan, Vijay [2 ]
机构
[1] Univ So Queensland, Dept Maths & Comp, Toowoomba, Qld 4350, Australia
[2] Macquarie Univ, Fac Sci, Dept Comp, N Ryde, NSW 2109, Australia
来源
SECURITY AND PRIVACY - SILVER LININGS IN THE CLOUD | 2010年 / 330卷
关键词
Purpose; Privacy; Access Control; Conflicts; PRIVACY PROTECTION; DATABASE-SYSTEMS; MANAGEMENT; MODEL;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This paper proposes a purpose-based framework for supporting privacy preserving access control policies and mechanisms. The mechanism enforces access policy to data containing personally identifiable information. The key component of the framework is purpose involved access control models (PAC) that provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and conditions. A policy refers to an access right that a subject can have on an object, based on attribute predicates, obligation actions, and system conditions. Policy conflicting problems may arise when new access policies are generated. The structure of purpose involved access control policy is studied, and efficient conflict-checking algorithms are developed. Finally a discussion of our work in comparison with other access control and frameworks such as EPAL is presented.
引用
收藏
页码:217 / +
页数:3
相关论文
共 50 条
  • [1] Dynamic Purpose-based Access Control
    Peng, Huanchun
    Gu, Jun
    Ye, Xiaojun
    PROCEEDINGS OF THE 2008 INTERNATIONAL SYMPOSIUM ON PARALLEL AND DISTRIBUTED PROCESSING WITH APPLICATIONS, 2008, : 695 - 700
  • [2] Enhancing MongoDB with Purpose-Based Access Control
    Colombo, Pietro
    Ferrari, Elena
    IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING, 2017, 14 (06) : 591 - 604
  • [3] A purpose-based access control in native XML databases
    Sun, Lili
    Wang, Hua
    CONCURRENCY AND COMPUTATION-PRACTICE & EXPERIENCE, 2012, 24 (10): : 1154 - 1166
  • [4] A role-involved purpose-based access control model
    Md. Enamul Kabir
    Hua Wang
    Elisa Bertino
    Information Systems Frontiers, 2012, 14 : 809 - 822
  • [5] A role-involved purpose-based access control model
    Kabir, Md Enamul
    Wang, Hua
    Bertino, Elisa
    INFORMATION SYSTEMS FRONTIERS, 2012, 14 (03) : 809 - 822
  • [6] Towards Application-Layer Purpose-Based Access Control
    Pallas, Frank
    Ulbricht, Max-R
    Tai, Stefan
    Peikert, Thomas
    Reppenhagen, Marcel
    Wenzel, Daniel
    Wille, Paul
    Wolf, Karl
    PROCEEDINGS OF THE 35TH ANNUAL ACM SYMPOSIUM ON APPLIED COMPUTING (SAC'20), 2020, : 1288 - 1296
  • [7] CREDENTIAL PURPOSE-BASED ACCESS CONTROL FOR PERSONAL DATA PROTECTION
    Ghani, Norjihan Abdul
    Selamat, Harihodin
    Sidek, Zailani Mohamed
    JOURNAL OF WEB ENGINEERING, 2015, 14 (3-4): : 346 - 360
  • [8] A conditional purpose-based access control model with dynamic roles
    Kabir, Md. Enamul
    Wang, Hua
    Bertino, Elisa
    EXPERT SYSTEMS WITH APPLICATIONS, 2011, 38 (03) : 1482 - 1489
  • [9] A CONDITIONAL ROLE-INVOLVED PURPOSE-BASED ACCESS CONTROL MODEL
    Kabir, Md. Enamul
    Wang, Hua
    Bertino, Elisa
    JOURNAL OF ORGANIZATIONAL COMPUTING AND ELECTRONIC COMMERCE, 2011, 21 (01) : 71 - 91
  • [10] Towards a Purpose-Based Access Control Model Derived from the Purpose Limitation Principle
    Kebede, Milen G.
    Van Binsbergen, Thomas
    Van Engers, Tom
    Van Vuurden, Dannis G.
    LEGAL KNOWLEDGE AND INFORMATION SYSTEMS, 2023, 379 : 143 - 148
12345