Affiliation:
1. University of Delaware, USA
2. City University of Hong Kong, China
3. Tsinghua University, China
Abstract
Data security in e-markets is vital to maintaining trust among trading partners. In an e-market, companies must share information to improve operational efficiency in their supply chains, while at the same time, access to sensitive information by rival companies should be prevented. In today’s highly dynamic business environment, the relationships among companies in e-markets are constantly changing while these relationships determine how company information should be shared with other companies. In this paper, the authors show that existing access control models are not designed for managing data security in e-markets with dynamic company relationships and propose a Relationship Driven Access Control (RDAC) model to provide a better solution. In particular, the authors design a rule-based approach for managing dynamic company relationships and a secure query processing mechanism to filter shared information based on company relationships. A prototype system is developed to demonstrate and validate the authors’ RDAC model.
Subject
Hardware and Architecture,Information Systems,Software
Cited by
6 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Enhancing the Retailer Gift Card via Blockchain;Journal of Database Management;2021-01
2. The Cultural Foundation of Information Security Behavior;Research Anthology on Privatizing and Securing Data;2021
3. It's Not My Fault;Research Anthology on Artificial Intelligence Applications in Security;2021
4. The Cultural Foundation of Information Security Behavior;Journal of Database Management;2020-04
5. It's Not My Fault;Journal of Database Management;2019-07