Purpose-based access control policies and conflicting analysis

Hua Wang; Lili Sun; Vijay Varadharajan

doi:10.1007/978-3-642-15257-3_20

Purpose-based access control policies and conflicting analysis

Hua Wang, Lili Sun, Vijay Varadharajan

School of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

9 Citations (Scopus)

Abstract

This paper proposes a purpose-based framework for supporting privacy preserving access control policies and mechanisms. The mechanism enforces access policy to data containing personally identifiable information. The key component of the framework is purpose involved access control models (PAC) that provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and conditions. A policy refers to an access right that a subject can have on an object, based on attribute predicates, obligation actions, and system conditions. Policy conflicting problems may arise when new access policies are generated. The structure of purpose involved access control policy is studied, and efficient conflict-checking algorithms are developed. Finally a discussion of our work in comparison with other access control and frameworks such as EPAL is presented.

Original language	English
Title of host publication	Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings
Editors	Kai Rannenberg, Vijay Varadharajan, Christian Weber
Place of Publication	Laxenburg, Austria
Publisher	IFIP
Pages	217-228
Number of pages	12
Volume	330
ISBN (Print)	3642152562, 9783642152566, 9783642152566
DOIs	https://doi.org/10.1007/978-3-642-15257-3_20
Publication status	Published - 2010
Event	25th IFIP TC 11 International Information Security Conference, SEC 2010 - Brisbane QLD, Australia Duration: 20 Sept 2010 → 23 Sept 2010

Publication series

Name	IFIP Advances in Information and Communication Technology
Volume	330
ISSN (Print)	18684238

Other

Other	25th IFIP TC 11 International Information Security Conference, SEC 2010
Country/Territory	Australia
City	Brisbane QLD
Period	20/09/10 → 23/09/10

Keywords

Access Control
Conflicts
Privacy
Purpose

Access to Document

10.1007/978-3-642-15257-3_20

Cite this

Wang, H., Sun, L., & Varadharajan, V. (2010). Purpose-based access control policies and conflicting analysis. In K. Rannenberg, V. Varadharajan, & C. Weber (Eds.), Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings (Vol. 330, pp. 217-228). (IFIP Advances in Information and Communication Technology; Vol. 330). IFIP. https://doi.org/10.1007/978-3-642-15257-3_20

Wang, Hua ; Sun, Lili ; Varadharajan, Vijay. / Purpose-based access control policies and conflicting analysis. Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings. editor / Kai Rannenberg ; Vijay Varadharajan ; Christian Weber. Vol. 330 Laxenburg, Austria : IFIP, 2010. pp. 217-228 (IFIP Advances in Information and Communication Technology).

@inproceedings{5829352f3b974ce38fd406bc0d34b6ea,

title = "Purpose-based access control policies and conflicting analysis",

abstract = "This paper proposes a purpose-based framework for supporting privacy preserving access control policies and mechanisms. The mechanism enforces access policy to data containing personally identifiable information. The key component of the framework is purpose involved access control models (PAC) that provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and conditions. A policy refers to an access right that a subject can have on an object, based on attribute predicates, obligation actions, and system conditions. Policy conflicting problems may arise when new access policies are generated. The structure of purpose involved access control policy is studied, and efficient conflict-checking algorithms are developed. Finally a discussion of our work in comparison with other access control and frameworks such as EPAL is presented.",

keywords = "Access Control, Conflicts, Privacy, Purpose",

author = "Hua Wang and Lili Sun and Vijay Varadharajan",

year = "2010",

doi = "10.1007/978-3-642-15257-3_20",

language = "English",

isbn = "3642152562",

volume = "330",

series = "IFIP Advances in Information and Communication Technology",

publisher = "IFIP",

pages = "217--228",

editor = "Kai Rannenberg and Vijay Varadharajan and Christian Weber",

booktitle = "Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings",

note = "25th IFIP TC 11 International Information Security Conference, SEC 2010 ; Conference date: 20-09-2010 Through 23-09-2010",

}

Wang, H, Sun, L & Varadharajan, V 2010, Purpose-based access control policies and conflicting analysis. in K Rannenberg, V Varadharajan & C Weber (eds), Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings. vol. 330, IFIP Advances in Information and Communication Technology, vol. 330, IFIP, Laxenburg, Austria, pp. 217-228, 25th IFIP TC 11 International Information Security Conference, SEC 2010, Brisbane QLD, Australia, 20/09/10. https://doi.org/10.1007/978-3-642-15257-3_20

Purpose-based access control policies and conflicting analysis. / Wang, Hua; Sun, Lili; Varadharajan, Vijay.
Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings. ed. / Kai Rannenberg; Vijay Varadharajan; Christian Weber. Vol. 330 Laxenburg, Austria: IFIP, 2010. p. 217-228 (IFIP Advances in Information and Communication Technology; Vol. 330).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - Purpose-based access control policies and conflicting analysis

AU - Wang, Hua

AU - Sun, Lili

AU - Varadharajan, Vijay

PY - 2010

Y1 - 2010

N2 - This paper proposes a purpose-based framework for supporting privacy preserving access control policies and mechanisms. The mechanism enforces access policy to data containing personally identifiable information. The key component of the framework is purpose involved access control models (PAC) that provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and conditions. A policy refers to an access right that a subject can have on an object, based on attribute predicates, obligation actions, and system conditions. Policy conflicting problems may arise when new access policies are generated. The structure of purpose involved access control policy is studied, and efficient conflict-checking algorithms are developed. Finally a discussion of our work in comparison with other access control and frameworks such as EPAL is presented.

AB - This paper proposes a purpose-based framework for supporting privacy preserving access control policies and mechanisms. The mechanism enforces access policy to data containing personally identifiable information. The key component of the framework is purpose involved access control models (PAC) that provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and conditions. A policy refers to an access right that a subject can have on an object, based on attribute predicates, obligation actions, and system conditions. Policy conflicting problems may arise when new access policies are generated. The structure of purpose involved access control policy is studied, and efficient conflict-checking algorithms are developed. Finally a discussion of our work in comparison with other access control and frameworks such as EPAL is presented.

KW - Access Control

KW - Conflicts

KW - Privacy

KW - Purpose

UR - http://www.scopus.com/inward/record.url?scp=84885080383&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-15257-3_20

DO - 10.1007/978-3-642-15257-3_20

M3 - Conference proceeding contribution

AN - SCOPUS:84885080383

SN - 3642152562

SN - 9783642152566

VL - 330

T3 - IFIP Advances in Information and Communication Technology

SP - 217

EP - 228

BT - Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings

A2 - Rannenberg, Kai

A2 - Varadharajan, Vijay

A2 - Weber, Christian

PB - IFIP

CY - Laxenburg, Austria

T2 - 25th IFIP TC 11 International Information Security Conference, SEC 2010

Y2 - 20 September 2010 through 23 September 2010

ER -

Wang H, Sun L, Varadharajan V. Purpose-based access control policies and conflicting analysis. In Rannenberg K, Varadharajan V, Weber C, editors, Security and Privacy - Silver Linings in the Cloud - 25th IFIP TC 11 International InformationSecurity Conference, SEC 2010 Held as Part of WCC 2010, Proceedings. Vol. 330. Laxenburg, Austria: IFIP. 2010. p. 217-228. (IFIP Advances in Information and Communication Technology). doi: 10.1007/978-3-642-15257-3_20

Purpose-based access control policies and conflicting analysis

Abstract

Publication series

Other

Keywords

Access to Document

Other files and links

Fingerprint

Cite this