Purpose-based access control policies and conflicting analysis
Paper
Paper/Presentation Title | Purpose-based access control policies and conflicting analysis |
---|---|
Presentation Type | Paper |
Authors | Wang, Hua (Author), Sun, Lili (Author) and Varadharajan, Vijay (Author) |
Editors | Rannenberg, Kai, Varadharajan, Vijay and Weber, Christian |
Journal or Proceedings Title | Proceedings of the 25th International Information Security Conference |
ERA Conference ID | 43107 |
Number of Pages | 12 |
Year | 2010 |
Place of Publication | Germany |
ISBN | 9783642152566 |
Digital Object Identifier (DOI) | https://doi.org/10.1007/978-3-642-15257-3_20 |
Web Address (URL) of Paper | http://www.ifiptc11.org/index.php?id=510&no_cache=1 |
Conference/Event | SEC 2010: Security and Privacy: Silver Linings in the Cloud |
IFIP International Information Security Conference | |
Event Details | IFIP International Information Security Conference IFIP SEC Rank B B B B B B B B B B B B B B B |
Event Details | SEC 2010: Security and Privacy: Silver Linings in the Cloud Event Date 20 to end of 23 Sep 2010 Event Location Brisbane, Australia |
Abstract | This paper proposes a purpose-based framework for supporting privacy preserving access control policies and mechanisms. The mechanism enforces access policy to data containing personally identifiable information. The key component of the framework is purpose involved access control models (PAC) that provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and conditions. A policy refers to an access right that a subject can have on an object, based on attribute predicates, obligation actions, and system conditions. Policy conflicting problems may arise when new access policies are generated. The structure of purpose involved access control policy is studied, and efficient conflict-checking algorithms are developed. Finally a discussion of our work in comparison with other access control and frameworks such as EPAL is presented. |
Keywords | purpose; privacy; access control; conflicts; authentication; cloud computing; intrusion detection; network security |
ANZSRC Field of Research 2020 | 460499. Cybersecurity and privacy not elsewhere classified |
460905. Information systems development methodologies and practice | |
359999. Other commerce, management, tourism and services not elsewhere classified | |
Public Notes | This conference was part of the World Computer Congress. (Security and Privacy: Silver Linings in the Cloud (SEC 2010)Permanent restricted access to paper due to publisher copyright restrictions. |
Byline Affiliations | Department of Mathematics and Computing |
Macquarie University |
https://research.usq.edu.au/item/9zzv1/purpose-based-access-control-policies-and-conflicting-analysis
Download files
Published Version
Wang_Sun_Varadharajan_SEC2010_PV.pdf | ||
File access level: Anyone |
Other Documentation
Wang_Sun_Varadharajan_SEC2010-Program.pdf | ||
File access level: Anyone |
1907
total views363
total downloads0
views this month0
downloads this month