Trust, purpose, and role-based access control model for privacy protection
Data privacy is one of the fundamental needs of the people. In a computing environment, there are various issues of data privacy protection in the enterprise. To enforce the automation of privacy policies and law, access control has been one of the most devoted subjects. Role-based access control mo...
| Main Authors: | , , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Published: |
Database Technologies and Applications Research Group (DbTA), Faculty of Computer Science and Information Technology, Universiti Putra Malaysia
2019
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/75526/1/ISICTMA2019-14.pdf |
| _version_ | 1825950483624230912 |
|---|---|
| author | Salji, Mohd Rafiz Udzir, Nur Izura Ninggal, Mohd Izuan Hafez Mohd Sani, Nor Fazlida Ibrahim, Hamidah |
| author_facet | Salji, Mohd Rafiz Udzir, Nur Izura Ninggal, Mohd Izuan Hafez Mohd Sani, Nor Fazlida Ibrahim, Hamidah |
| author_sort | Salji, Mohd Rafiz |
| collection | UPM |
| description | Data privacy is one of the fundamental needs of the people. In a computing environment, there are various issues of data privacy protection in the enterprise. To enforce the automation of privacy policies and law, access control has been one of the most devoted subjects. Role-based access control model has been proposed to protect customer's data. However, relying on role only is insufficient and inefficient to protect data especially sensitive attributes, and this may cause risks of privacy disclosure to unauthorized and untrusted users. This paper presents a finer-grained access control called Trust, Purpose, and Role-Based Access Control (TPRBAC) model to efficiently protect data particularly sensitive attributes. In the proposed model, purpose and role is applied to permit access to data, while trust is applied to control access to sensitive attributes. A prototype system is developed and tested, and the result shows sensitive attributes are protected. Experiments are conducted to validate the proposed model. The results show that the proposed work is efficient and improved privacy protection. Therefore, this research solves the issue of insufficient and inefficient access control mechanism in protecting data especially sensitive attributes. |
| first_indexed | 2024-03-06T10:15:18Z |
| format | Conference or Workshop Item |
| id | upm.eprints-75526 |
| institution | Universiti Putra Malaysia |
| language | English |
| last_indexed | 2024-03-06T10:15:18Z |
| publishDate | 2019 |
| publisher | Database Technologies and Applications Research Group (DbTA), Faculty of Computer Science and Information Technology, Universiti Putra Malaysia |
| record_format | dspace |
| spelling | upm.eprints-755262019-10-07T07:41:42Z http://psasir.upm.edu.my/id/eprint/75526/ Trust, purpose, and role-based access control model for privacy protection Salji, Mohd Rafiz Udzir, Nur Izura Ninggal, Mohd Izuan Hafez Mohd Sani, Nor Fazlida Ibrahim, Hamidah Data privacy is one of the fundamental needs of the people. In a computing environment, there are various issues of data privacy protection in the enterprise. To enforce the automation of privacy policies and law, access control has been one of the most devoted subjects. Role-based access control model has been proposed to protect customer's data. However, relying on role only is insufficient and inefficient to protect data especially sensitive attributes, and this may cause risks of privacy disclosure to unauthorized and untrusted users. This paper presents a finer-grained access control called Trust, Purpose, and Role-Based Access Control (TPRBAC) model to efficiently protect data particularly sensitive attributes. In the proposed model, purpose and role is applied to permit access to data, while trust is applied to control access to sensitive attributes. A prototype system is developed and tested, and the result shows sensitive attributes are protected. Experiments are conducted to validate the proposed model. The results show that the proposed work is efficient and improved privacy protection. Therefore, this research solves the issue of insufficient and inefficient access control mechanism in protecting data especially sensitive attributes. Database Technologies and Applications Research Group (DbTA), Faculty of Computer Science and Information Technology, Universiti Putra Malaysia 2019 Conference or Workshop Item PeerReviewed text en http://psasir.upm.edu.my/id/eprint/75526/1/ISICTMA2019-14.pdf Salji, Mohd Rafiz and Udzir, Nur Izura and Ninggal, Mohd Izuan Hafez and Mohd Sani, Nor Fazlida and Ibrahim, Hamidah (2019) Trust, purpose, and role-based access control model for privacy protection. In: International Symposium on ICT Management and Administration (ISICTMA2019), 31 July-2 Aug. 2019, Putrajaya Marriott Hotel, Malaysia. (pp. 69-73). |
| spellingShingle | Salji, Mohd Rafiz Udzir, Nur Izura Ninggal, Mohd Izuan Hafez Mohd Sani, Nor Fazlida Ibrahim, Hamidah Trust, purpose, and role-based access control model for privacy protection |
| title | Trust, purpose, and role-based access control model for privacy protection |
| title_full | Trust, purpose, and role-based access control model for privacy protection |
| title_fullStr | Trust, purpose, and role-based access control model for privacy protection |
| title_full_unstemmed | Trust, purpose, and role-based access control model for privacy protection |
| title_short | Trust, purpose, and role-based access control model for privacy protection |
| title_sort | trust purpose and role based access control model for privacy protection |
| url | http://psasir.upm.edu.my/id/eprint/75526/1/ISICTMA2019-14.pdf |
| work_keys_str_mv | AT saljimohdrafiz trustpurposeandrolebasedaccesscontrolmodelforprivacyprotection AT udzirnurizura trustpurposeandrolebasedaccesscontrolmodelforprivacyprotection AT ninggalmohdizuanhafez trustpurposeandrolebasedaccesscontrolmodelforprivacyprotection AT mohdsaninorfazlida trustpurposeandrolebasedaccesscontrolmodelforprivacyprotection AT ibrahimhamidah trustpurposeandrolebasedaccesscontrolmodelforprivacyprotection |