A purpose-based access control model

Proceedings - IAS 2007 3rd Internationl Symposium on Information Assurance and Security

Volumn , Issue , 2007, Pages 143-148

  Naikuo, Yang ^a   Barringer, Howard ^a   Ning, Zhang ^a  

^a UNIVERSITY OF MANCHESTER   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

(R ,S ,S) POLICY; ACCESS CONTROL MODELS; CHALLENGING PROBLEM; DATA ACCESSING; IN ORDER; INFORMATION ASSURANCE AND SECURITY (IAS); PRIVACY POLICIES; PRIVACY PRESERVATION; PRIVACY PRESERVING; PRIVACY REQUIREMENTS; PROOF OBLIGATIONS; SHARING COMPUTING;

CANNING; COMPUTER SYSTEMS; DATA PRIVACY; FOOD PRESERVATION; SECURITY SYSTEMS;

ACCESS CONTROL;

EID: 46749089048     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IAS.2007.29     Document Type: Conference Paper

References (16)

1. M. Ackerman, L. F. Cranor, and J. Reagle. Privacy in E-Commerce: Examining user scenarios and privacy preferences. In ACM Conference on Electronic Commerce, 1999.
2. A. Acquisti. Privacy in electronic commerce and the economics of immediate gratification. In CECOMM, 2004.
3. R. J. Anderson, Privacy technology lessons from healthcare, In IEEE Symposium on Security and Privacy, 2000.
4. D. R. Bell and L. LaPadula. Secure computer systems: Unified exposition and multics interpretation. MITRE technical report, MITRE Corporation, 2997:ref A023 588, 1976.
5. I. C. Bicarregui, I. S. Fitzgerald, P. A. Lindsay, R. Moore, and B. Ritchie. Proof in VDM: A Practitioner's Guide. Springer, London, 1994.
6. J. Byun, E. Bertino, and N. Li. Purpose based access control for privacy protection in relational database systems. Technical Report 2004-52, Purdue University, 2004.
7. J. Byun, E. Bertino, and N. Li. Purpose based access control of complex data for privacy protection. In Proceedings of the tenth ACM symposium on Access control models and technologies, pages 102-110, 2005.
8. Federal Trade Commission (FTC). Privacy online: A report to congress, June 1998.
9. S. Fischer-Hübner and A. Ott. From a formal privacy model to its implementation. In Proceedings of 21st NIST-NCSC National Information Systems Security Conference, pages 512-524, 1998.
10. Q. He. Privacy enforcement with an extended role-based access control model. Technical Report TR-2003-09, North Carolina State University, Feb. 28 2003.
11. S. Jajodia, P. Samarati, M. L. Sapino, and V. S. Subrahmanian. Flexible support for multiple access control policies. ACM Transaction on Database System, 26(2):214-260, 2001.
12. C. B. Jones. Systematic Software Development using VDM (second edition). Prentice Hall, 1990.
13. G. Karjoth and M. Schunter. A privacy policy model for enterprises. In CSFW, pages 271-281, 2002.
14. M. Marchiori. The platform for privacy preferences 1.0 (P3P1.0) specification. Technical report, W3C, Apr. 2002.
15. H. Oberholzer. A privacy protection model to support personal privacy in relational databases. Technical report, Rand afrikanns university, May 2001.
16. Organisation of Economic Co-operation and Development (OECD). OECD guidelines on the protection of privacy and transborder flows of personal data, Oct. 26 2004.