Multi-level delegations with trust management in access control systems

Li, Min and Sun, Xiaoxun and Wang, Hua and Zhang, Yanchun (2012) Multi-level delegations with trust management in access control systems. Journal of Intelligent Information Systems, 39 (3). pp. 611-626. ISSN 0925-9902

Abstract

Delegation is a mechanism that allows one agent to act on another's privilege. It is important that the privileges should be delegated to a person who is trustworthy. In this paper, we propose a multi-level delegation model with trust management in access control systems. We organize the delegation tasks into three levels, Low, Medium, and High, according to the sensitivity of the information contained in the delegation tasks. It motivates us that the more sensitive the delegated task is, the more trustworthy the delegatee should be. In order to assess how trustworthy a delegatee is, we devise trust evaluation techniques to describe a delegatee's trust history and also predict the future trend of trust. In our proposed delegation model, a delegatee with a higher trust level could be assigned with a higher level delegation task. Extensive experiments show that our proposed multi-level delegation model is effective in accurately predicting trust and avoiding sensitive information disclosure.


Statistics for USQ ePrint 21971
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Additional Information: © Springer Science+Business Media, LLC 2012. Published online 9 May 2012. Permanent restricted access to published version in accordance with the copyright policy of the publisher.
Depositing User: epEditor USQ
Faculty / Department / School: Historic - Faculty of Sciences - Department of Maths and Computing
Date Deposited: 20 Sep 2012 07:11
Last Modified: 14 Oct 2014 23:18
Uncontrolled Keywords: access control; database management; trust evaluation
Fields of Research (FOR2008): 17 Psychology and Cognitive Sciences > 1701 Psychology > 170109 Personality, Abilities and Assessment
08 Information and Computing Sciences > 0803 Computer Software > 080303 Computer System Security
22 Philosophy and Religious Studies > 2201 Applied Ethics > 220107 Professional Ethics (incl. police and research ethics)
Socio-Economic Objective (SEO2008): E Expanding Knowledge > 97 Expanding Knowledge > 970108 Expanding Knowledge in the Information and Computing Sciences
Identification Number or DOI: 10.1007/s10844-012-0205-8
URI: http://eprints.usq.edu.au/id/eprint/21971

Actions (login required)

View Item Archive Repository Staff Only