Nothing Special   »   [go: up one dir, main page]

skip to main content
10.1109/IAS.2007.5guideproceedingsArticle/Chapter ViewAbstractPublication PagesConference Proceedingsacm-pubtype
Article

A Purpose-Based Access Control Model

Published: 29 August 2007 Publication History

Abstract

Achieving privacy preservation in a data-sharing com- puting environment is a challenging problem. The require- ments for a privacy preserving data access policy should be formally specified in order to be able to establish consis- tency between the privacy policy and its purported imple- mentation in practice. Previous work has shown that when specifying a privacy policy, the notion of purpose should be used as the basis for access control. A privacy policy should ensure that data can only be used for its intended purpose, and the access purpose should be compliant with the data's intended purpose. This paper presents a mech- anism to specify privacy policy using VDM. The entities in the purpose-based access control model are specified, the invariants corresponding to the privacy requirements in pri- vacy policy are specified, and the operations in the model and their proof obligations are defined and investigated.

Cited By

View all

Recommendations

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image Guide Proceedings
IAS '07: Proceedings of the Third International Symposium on Information Assurance and Security
August 2007
498 pages
ISBN:0769528767

Publisher

IEEE Computer Society

United States

Publication History

Published: 29 August 2007

Qualifiers

  • Article

Contributors

Other Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

  • Downloads (Last 12 months)0
  • Downloads (Last 6 weeks)0
Reflects downloads up to 22 Feb 2025

Other Metrics

Citations

Cited By

View all
  • (2017)Proposing hierarchy-similarity based access control frameworkJournal of King Saud University - Computer and Information Sciences10.1016/j.jksuci.2015.08.00529:4(505-519)Online publication date: 1-Oct-2017
  • (2016)Access and privacy control enforcement in RFID middleware systemsWorld Wide Web10.1007/s11280-015-0325-519:1(41-68)Online publication date: 1-Jan-2016
  • (2015)Enforcement of privacy requirementsComputers and Security10.1016/j.cose.2015.03.00452:C(164-177)Online publication date: 1-Jul-2015
  • (2015)A pragmatic approach towards secure sharing of digital objectsSecurity and Communication Networks10.1002/sec.13108:18(3914-3926)Online publication date: 1-Dec-2015
  • (2014)A Framework for Expressing and Enforcing Purpose-Based Privacy PoliciesACM Transactions on Information and System Security10.1145/262968917:1(1-31)Online publication date: 15-Aug-2014
  • (2013)Fine-grained privacy control for the RFID middleware of EPCglobal networksProceedings of the Fifth International Conference on Management of Emergent Digital EcoSystems10.1145/2536146.2536154(60-67)Online publication date: 28-Oct-2013
  • (2011)A conditional purpose-based access control model with dynamic rolesExpert Systems with Applications: An International Journal10.1016/j.eswa.2010.07.05738:3(1482-1489)Online publication date: 1-Mar-2011
  • (2010)A comprehensive privacy-aware authorization framework founded on HIPAA privacy rulesProceedings of the 1st ACM International Health Informatics Symposium10.1145/1882992.1883093(637-646)Online publication date: 11-Nov-2010
  • (2009)Conditional purpose based access control model for privacy protectionProceedings of the Twentieth Australasian Conference on Australasian Database - Volume 9210.5555/1862681.1862699(135-142)Online publication date: 1-Jan-2009
  • (2009)Trust and privacy in attribute based access control for collaboration environmentsProceedings of the 11th International Conference on Information Integration and Web-based Applications & Services10.1145/1806338.1806356(49-55)Online publication date: 14-Dec-2009
  • Show More Cited By

View Options

View options

Figures

Tables

Media

Share

Share

Share this Publication link

Share on social media