A conditional role-involved purpose-based access control model
Article
Article Title | A conditional role-involved purpose-based access control model |
---|---|
ERA Journal ID | 18035 |
Article Category | Article |
Authors | Kabir, Md Enamul (Author), Wang, Hua (Author) and Bertino, Elisa (Author) |
Editors | Janssen, Marijn, Lamersdorf, Winfried, Pries-Heje, Jan and Rosemann, Michael |
Journal Title | Journal of Organizational Computing and Electronic Commerce |
Journal Citation | 21 (1), pp. 71-91 |
Number of Pages | 21 |
Year | 2011 |
Place of Publication | Philadelphia, PA. United States |
ISSN | 1091-9392 |
1532-7744 | |
Digital Object Identifier (DOI) | https://doi.org/10.1080/10919392.2011.541007 |
Abstract | This paper presents a role-involved conditional purpose-based access control (RCPBAC) model, where a purpose is defined as the intension of data accesses or usages. RCPBAC allows users using some data for certain purpose with conditions. The structure of RCPBAC model is defined and investigated. An algorithm is developed to achieve the compliance computation between access purposes (related to data access) and intended purposes (related to data objects) and is illustrated with role-based access control (RBAC) to support RCPBAC. According to this model, more information from data providers can be extracted while at the same time assuring privacy that maximizes the usability of consumers' data. It extends traditional access control models to a further coverage of privacy preserving in data mining environment as RBAC is one of the most popular approach towards access control to achieve database security and available in database management systems. The |
Keywords | access control; conditional purpose; privacy |
ANZSRC Field of Research 2020 | 350302. Business information management (incl. records, knowledge and intelligence) |
460599. Data management and data science not elsewhere classified | |
460499. Cybersecurity and privacy not elsewhere classified | |
Public Notes | Files associated with this item cannot be displayed due to copyright restrictions. |
Byline Affiliations | Department of Mathematics and Computing |
Purdue University, United States | |
Event | E-Government and E-Services Conference (EGES) at the 2010 IFIP World Computer Conference (WCC 2010) |
Institution of Origin | University of Southern Queensland |
ISBN | 9783642153457 |
Event Details | E-Government and E-Services Conference (EGES) at the 2010 IFIP World Computer Conference (WCC 2010) Event Date 20 to end of 23 Sep 2010 Event Location Brisbane, Australia |
https://research.usq.edu.au/item/q07vv/a-conditional-role-involved-purpose-based-access-control-model
2032
total views159
total downloads10
views this month0
downloads this month