The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

Privacy-aware role based access control

Author

Elisa Bertino, Qun Ni, Alberto Trombetta, Jorge Lobo

Entry type

proceedings

Abstract

Privacy has been acknowledged to be a critical requirement for many business (and non-business) environments. Therefore, the definition of an expressive and easy-to-use privacy related access control model, based on which privacy policies can be specified, is crucial. In this work we introduce a family of models (P-RBAC) that extend the well known RBAC model in order to provide full support for expressing highly complex privacy-related policies, taking into account features like purposes and obligations. We also compare our work with access control and privacy policy frameworks such as P3P, EPAL, and XACML.

Date

2007

URL

http://portal.acm.org/citation.cfm?id=1266840.1266848

Booktitle

Symposium on Access Control Models and Technologies. Proceedings of the 12th ACM symposium on Access control models and technologies

Key alpha

Bertino

Publisher

ACM

Affiliation

Purdue University

Publication Date

2007-00-00

Isbn

978-1-59593-745-2

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.