Purpose Based Access Control of Complex Data for Privacy Protection

Get BibTex-formatted data

Download

PDF

Author

Ji-Won Byun and Elisa Bertino and Ninghui Li

Tech report number

CERIAS TR 2005-12

Entry type

article

Abstract

As privacy becomes a major concern for both consumers and enterprises, many research efforts have been devoted to the development of privacy protecting technology. We recently proposed a privacy preserving access control model for relational databases, where purpose information associated with a given data element specifies the intended use of the data element. In this paper, we extend our previous work to handle other advanced data management systems, such as the ones based on XML and the ones based on the object-relational data model. Another contribution of our paper is that we address the problem of how to determine the purpose for which certain data are accessed by a given user. Our proposed solution relies on the well-known RBAC model as well as the notion of conditional role which is based on the notions of role attribute and system attribute.

Download

PDF

Institution

Computer Science Department and CERIAS

Key alpha

Byun

School

Purdue University

Publication Date

1900-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Article{ Byun,
	title = "Purpose Based Access Control of Complex Data for Privacy Protection",
	author = "Ji-Won Byun and Elisa Bertino and Ninghui Li",
	institution = "Computer Science Department and CERIAS",
	school = "Purdue University",
	abstract = "As privacy becomes a major concern for both consumers and enterprises, many research efforts have been devoted to the development of privacy protecting technology. We recently proposed a privacy preserving access control model for relational databases, where purpose information associated with a given data element specifies the intended use of the data element. In this paper, we extend our previous work to handle other advanced data management systems, such as the ones based on XML and the ones based on the object-relational data model. Another contribution of our paper is that we address the problem of how to determine the purpose for which certain data are accessed by a given user. Our proposed solution relies on the well-known RBAC model as well as the notion of conditional role which is based on the notions of role attribute and system attribute. ",
}