Purpose Based Access Control for Privacy Protection in Relational Database Systems

Get BibTex-formatted data

Download

PDF

Author

Ji-Won Byun and Elisa Bertino and Ninghui Li

Tech report number

CERIAS TR 2004-52

Entry type

techreport

Abstract

In this paper, we present a comprehensive approach for privacy preserving access control based on the notion of purpose. Purpose information associated with a given data element specifies the intended use of the data element, and our model allows multiple purposes to be associated with each data element. A key feature of our model is that it also supports explicit prohibitions, thus allowing privacy officers to specify that some data should not be used for certain purposes. Another important issue addressed in this paper is the granularity of data labeling, that is, the units of data with which purposes can be associated. We address this issue in the context of relational databases and propose four different labeling schemes, each providing a different granularity. In the paper we also propose an approach to representing purpose information, which results in very low storage overhead, and we exploit query modification techniques to support data access control based on purpose information.

Download

PDF

Key alpha

byun

Organization

CERIAS

School

Purdue University

Publication Date

1900-01-01

Subject

Information Privacy

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Techreport{ byun,
	title = "Purpose Based Access Control for Privacy Protection in Relational Database Systems",
	author = "Ji-Won Byun and Elisa Bertino and Ninghui Li",
	organization = "CERIAS",
	school = "Purdue University",
	abstract = "In this paper, we present a comprehensive approach for privacy preserving access control based on the notion of purpose. Purpose information associated with a given data element specifies the intended use of the data element, and our model allows multiple purposes to be associated with each data element. A key feature of our model is that it also supports explicit prohibitions, thus allowing privacy officers to specify that some data should not be used for certain purposes. Another important issue addressed in this paper is the granularity of data labeling, that is, the units of data with which purposes can be associated. We address this issue in the context of relational databases and propose four different labeling schemes, each providing a different granularity. In the paper we also propose an approach to representing purpose information, which results in very low storage overhead, and we exploit query modification techniques to support data access control based on purpose information.",
	subject = "Information Privacy",
}