A Role-involved Conditional Purpose-based Access Control Model

Abstract : This paper presents a role-involved conditional purpose-based access control (RCPBAC) model, where a purpose is defined as the intension of data accesses or usages. RCPBAC allows users using some data for certain purpose with conditions. The structure of RCPBAC model is defined and investigated. An algorithm is developed to achieve the compliance computation between access purposes (related to data access) and intended purposes (related to data objects) and is illustrated with role-based access control (RBAC) to support RCPBAC. According to this model, more information from data providers can be extracted while at the same time assuring privacy that maximizes the usability of consumers' data. It extends traditional access control models to a further coverage of privacy preserving in data mining environment as RBAC is one of the most popular approach towards access control to achieve database security and available in database management systems. The structure helps enterprises to circulate clear privacy promise, to collect and manage user preferences and consent.
Type de document :
Communication dans un congrès
Marijn Janssen; Winfried Lamersdorf; Jan Pries-Heje; Michael Rosemann. Joint IFIP TC 8 and TC 6 International Conferences on E-Government, E-Services and Global Processes (EGES) / Global Information Systems Processes (GISP), / Held as Part of World Computer Congress (WCC), Sep 2010, Brisbane, Australia. Springer, IFIP Advances in Information and Communication Technology, AICT-334, pp.167-180, 2010, E-Government, E-Services and Global Processes. 〈10.1007/978-3-642-15346-4_13〉
Liste complète des métadonnées

Littérature citée [21 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01054641
Contributeur : Hal Ifip <>
Soumis le : jeudi 7 août 2014 - 16:45:16
Dernière modification le : vendredi 11 août 2017 - 11:30:51
Document(s) archivé(s) le : mercredi 26 novembre 2014 - 05:31:37

Fichier

paper.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Md. Enamul Kabir, Hua Wang, Elisa Bertino. A Role-involved Conditional Purpose-based Access Control Model. Marijn Janssen; Winfried Lamersdorf; Jan Pries-Heje; Michael Rosemann. Joint IFIP TC 8 and TC 6 International Conferences on E-Government, E-Services and Global Processes (EGES) / Global Information Systems Processes (GISP), / Held as Part of World Computer Congress (WCC), Sep 2010, Brisbane, Australia. Springer, IFIP Advances in Information and Communication Technology, AICT-334, pp.167-180, 2010, E-Government, E-Services and Global Processes. 〈10.1007/978-3-642-15346-4_13〉. 〈hal-01054641〉

Partager

Métriques

Consultations de la notice

165

Téléchargements de fichiers

164