A role-involved purpose-based access control model
Article
Article Title | A role-involved purpose-based access control model |
---|---|
ERA Journal ID | 17912 |
Article Category | Article |
Authors | Kabir, Md Enamul (Author), Wang, Hua (Author) and Bertino, Elisa (Author) |
Journal Title | Information Systems Frontiers: a journal of research and innovation |
Journal Citation | 14 (3), pp. 809-822 |
Number of Pages | 14 |
Year | 2012 |
Publisher | Springer |
Place of Publication | United States |
ISSN | 1387-3326 |
1572-9419 | |
Digital Object Identifier (DOI) | https://doi.org/10.1007/s10796-011-9305-1 |
Web Address (URL) | https://link.springer.com/article/10.1007/s10796-011-9305-1 |
Abstract | This paper presents a role-involved purpose-based access control (RPAC) model, where a conditional purpose is defined as the intention of data accesses or usages under certain conditions. RPAC allows users using some data for a certain purpose with Conditions (For instance, Tony agrees that his income information can be used for marketing purposes by removing his name). The structure of RPAC model is investigated after defining access purposes, intended purposes and conditional purposes. An algorithm is developed with role-based access control (RBAC) to achieve the compliance computation between access purposes (related to data access) and intended purposes (related to data objects). Access purpose authorization and authentication in the RPAC model are studied with the hierarchical purpose structure. According to the model, more information from data providers can be extracted while at the same time assuring privacy that maximizes the usability of consumers' data. It extends role-based access control models to a further coverage of privacy preservation in database management systems by adopting purposes and conditional intended purposes and to achieve a fine-grained access control. The work in this paper helps enterprises to circulate a clear privacy promise, and to collect and manage user preferences and consent. |
Keywords | access control; conditional purpose; privacy |
ANZSRC Field of Research 2020 | 460903. Information modelling, management and ontologies |
460401. Cryptography | |
460499. Cybersecurity and privacy not elsewhere classified | |
Public Notes | Files associated with this item cannot be displayed due to copyright restrictions. |
Byline Affiliations | Department of Mathematics and Computing |
Purdue University, United States | |
Institution of Origin | University of Southern Queensland |
https://research.usq.edu.au/item/q13x9/a-role-involved-purpose-based-access-control-model
2155
total views12
total downloads13
views this month0
downloads this month