Li, Min and Wang, Hua and Ross, David (2009) Trust-based access control for privacy protection in collaborative environment. In: ICEBE 2009: IEEE International Conference on e-Business Engineering, 21-23 Oct 2009, Macau, China.
|HTML Citation||EndNote||MODS||Dublin Core||Reference Manager|
Full text not available from this archive.
Identification Number or DOI: doi: 10.1109/ICEBE.2009.66
Privacy has been acknowledged to be a critical requirement for many business environments. A variety of uncertainty and mutability poses challenges when sharing resources must happen in collaborative environment. Therefore, the definition of an efficient access control model, based on which privacy policies can be specified, is crucial. In this work, we propose a trust-based access control model to protect privacy in collaborative environment. First, a trust value is evaluated based on both histories and peer recommendations. Second, purposes, obligations, and conditions are discussed in this paper, which leads our trust-based access control model to meet the requirements of modern corporation regulations and privacy laws. Third, our model handles uncertainty and mutability by dynamically re-evaluating the requester' trust and revoking the granted on-going access if access control rules are no longer met.
|Item Type:||Conference or Workshop Item (Commonwealth Reporting Category E) (Paper)|
|Additional Information:||Published version deposited in accordance with the copyright policy of the publisher. ©2009 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE.|
|Uncontrolled Keywords:||privacy; trust; access control; business environments; collaborative environments; privacy law; privacy policies; privacy protection; trust values|
|Fields of Research (FOR2008):||08 Information and Computing Sciences > 0806 Information Systems > 080604 Database Management|
08 Information and Computing Sciences > 0803 Computer Software > 080303 Computer System Security
15 Commerce, Management, Tourism and Services > 1503 Business and Management > 150307 Innovation and Technology Management
|Subjects:||280000 Information, Computing and Communication Sciences > 280100 Information Systems > 280108 Database Management|
|Socio-Economic Objective (SEO2008):||E Expanding Knowledge > 97 Expanding Knowledge > 970108 Expanding Knowledge in the Information and Computing Sciences|
|Deposited On:||06 Jul 2010 21:09|
|Last Modified:||21 Dec 2011 15:12|
Archive Staff Only: edit this record