Privacy aware access control with trust management in web service

Li, Min and Sun, Xiaoxun and Wang, Hua and Zhang, Yanchun and Zhang, Ji (2011) Privacy aware access control with trust management in web service. World Wide Web, 14 (4). pp. 407-430. ISSN 1386-145X


With the significant development of mobile commerce, privacy becomes a major concern for both customers and enterprises. Although data generalization can provide significant protection of an individual's privacy, over-generalized data may render data of little value or useless. In this paper, we devise generalization boundary techniques to maximize data usability while, minimizing disclosure of privacy. Inspired by the fact that the permissible generalization level results in a much finer level access control, we propose a privacy aware access control model in web service environments.We also analyze how to manage a valid access process through a trust-based decision and ongoing access control policies. The extensive experiments on both real-world and synthetic data sets show that the proposed privacy aware access control model is practical and effective.

Statistics for USQ ePrint 19142
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Additional Information: © 2011 Springer Science+Business Media, LLC. Permanent restricted access to published version in accordance with the copyright policy of the publisher. Published online: 3 Feb 2011
Faculty / Department / School: Historic - Faculty of Sciences - Department of Maths and Computing
Date Deposited: 17 Jul 2011 11:39
Last Modified: 24 Feb 2015 03:03
Uncontrolled Keywords: access control; privacy protection; generalization boundary
Fields of Research : 08 Information and Computing Sciences > 0806 Information Systems > 080612 Interorganisational Information Systems and Web Services
08 Information and Computing Sciences > 0805 Distributed Computing > 080505 Web Technologies (excl. Web Search)
08 Information and Computing Sciences > 0803 Computer Software > 080303 Computer System Security
Socio-Economic Objective: E Expanding Knowledge > 97 Expanding Knowledge > 970108 Expanding Knowledge in the Information and Computing Sciences
Identification Number or DOI: 10.1007/s11280-011-0114-8

Actions (login required)

View Item Archive Repository Staff Only