Affiliation:
1. LaSIGE, Faculty of Sciences, University of Lisbon, Lisbon, Portugal
2. IST/INESC-ID, University of Lisbon, Lisbon, Portugal
Abstract
The authors introduce a group-based discretionary access control with decentralized permission and group management for scientific repositories. Currently, access control approaches for repositories have inflexible centralized administrations, which do not scale well to large numbers of users. Moreover, discretionary access control is a legal standard for health-related resources. The proposed access control model, which is formalized using Barker's Unifying Meta-model, differentiates permissions for data and meta-data, enabling the sharing of meta-data while protecting sensitive data. The authors describe how the model was implemented, and what challenges were tackled, in the Epidemic Marketplace, an open software information platform for epidemic studies, designed to foster cooperative behavior and data sharing.
Reference33 articles.
1. Decentralized user group assignment in Windows NT
2. Badger, L., Sterne, D. F., Sherman, D. L., Walker, K. M., & Haghighat, S. A. (1995). A domain and type enforcement UNIX prototype. In Proceedings of the 5th Conference on USENIX UNIX Security Symposium (Vol. 5, p. 12). USENIX Association.
3. Barker, S. (2009). The next 700 access control models or a unifying meta-model? In Proceedings of the 14th ACM Symposium on Access Control Models and Technologies (pp. 187–196). ACM.
4. Privacy-aware collaborative access control in web-based social networks.;B.Carminati;Data and Applications Security,2008
5. Carminati, B., Ferrari, E., & Perego, A. (2006). Rule-based access control for social networks. In Proceedings of the On the Move to Meaningful Internet Systems 2006: OTM 2006 Workshops (pp. 1734–1744). Springer.
Cited by
7 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献