A conditional purpose-based access control model with dynamic roles
Article
Article Title | A conditional purpose-based access control model with dynamic roles |
---|---|
ERA Journal ID | 17852 |
Article Category | Article |
Authors | Kabir, Md Enamul (Author), Wang, Hua (Author) and Bertino, Elisa (Author) |
Journal Title | Expert Systems with Applications |
Journal Citation | 38 (3), pp. 1482-1489 |
Number of Pages | 8 |
Year | 2011 |
Publisher | Elsevier |
Place of Publication | United Kingdom |
ISSN | 0957-4174 |
1873-6793 | |
Digital Object Identifier (DOI) | https://doi.org/10.1016/j.eswa.2010.07.057 |
Web Address (URL) | https://www.sciencedirect.com/science/article/pii/S0957417410006858 |
Abstract | This paper presents a model for privacy preserving access control which is based on variety of purposes. Conditional purpose is applied along with allowed purpose and prohibited purpose in the model. It allows users using some data for certain purpose with conditions. The structure of conditional purpose-based access control model is defined and investigated through dynamic roles. Access purpose is verified in a dynamic behavior, based on subject attributes, context attributes and authorization policies. Intended purposes are dynamically associated with the requested data object during the access decision. An algorithm is developed to achieve the compliance computation between access purposes and intended purposes and is illustrated with Role-based access control (RBAC) in a dynamic manner to support conditional purpose-based access control. According to this model, more information from data providers can be extracted while at the same time assuring privacy that maximizes the usability of consumers’ data. It extends traditional access control models to a further coverage of privacy preserving in data mining atmosphere. The structure helps enterprises to circulate clear privacy promise, to collect and manage user preferences and consent. |
Keywords | access control; purpose; data privacy |
ANZSRC Field of Research 2020 | 460599. Data management and data science not elsewhere classified |
460499. Cybersecurity and privacy not elsewhere classified | |
460905. Information systems development methodologies and practice | |
Public Notes | Files associated with this item cannot be displayed due to copyright restrictions. |
Byline Affiliations | Department of Mathematics and Computing |
Purdue University, United States | |
Institution of Origin | University of Southern Queensland |
https://research.usq.edu.au/item/q0751/a-conditional-purpose-based-access-control-model-with-dynamic-roles
1839
total views11
total downloads8
views this month0
downloads this month