Multi-Party Access Control: Requirements, State of the Art and Open Challenges

Proceedings of the 23nd ACM on Symposium on Access Control Models and Technologies Pub Date : 2018-06-07 DOI:10.1145/3205977.3205999

A. Squicciarini, S. Rajtmajer, Nicola Zannone

{"title":"Multi-Party Access Control: Requirements, State of the Art and Open Challenges","authors":"A. Squicciarini, S. Rajtmajer, Nicola Zannone","doi":"10.1145/3205977.3205999","DOIUrl":null,"url":null,"abstract":"Multi-party access control is gaining attention and prominence within the community, as access control models and systems are faced with complex, jointly-owned and jointly-managed content. Traditional single-user approaches lack the richness and flexibility to accommodate these scenarios, resulting in undesired disclosure of sensitive data and resources. Moving forward fundamental work in this area is critical. In particular, as personal data amasses and algorithms for data mining improve, personally identifiable information is more readily inferred and the practical implications of privacy decisions are relatively opaque. This is true even at the individual level, but the parallel problem for jointly managed content involves the cross product of these complex outcomes. In this presentation, we discuss fundamental requirements of successful multi-party access control mechanisms and contextualize these concepts with respect to the state of the art. Based on this analysis, we identify open challenges and draw a roadmap for future work.","PeriodicalId":423087,"journal":{"name":"Proceedings of the 23nd ACM on Symposium on Access Control Models and Technologies","volume":"114 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-06-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 23nd ACM on Symposium on Access Control Models and Technologies","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3205977.3205999","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

Abstract

Multi-party access control is gaining attention and prominence within the community, as access control models and systems are faced with complex, jointly-owned and jointly-managed content. Traditional single-user approaches lack the richness and flexibility to accommodate these scenarios, resulting in undesired disclosure of sensitive data and resources. Moving forward fundamental work in this area is critical. In particular, as personal data amasses and algorithms for data mining improve, personally identifiable information is more readily inferred and the practical implications of privacy decisions are relatively opaque. This is true even at the individual level, but the parallel problem for jointly managed content involves the cross product of these complex outcomes. In this presentation, we discuss fundamental requirements of successful multi-party access control mechanisms and contextualize these concepts with respect to the state of the art. Based on this analysis, we identify open challenges and draw a roadmap for future work.

查看原文本刊更多论文

多方访问控制:需求、技术现状和公开挑战

由于访问控制模型和系统面临着复杂的、共同拥有和共同管理的内容，多方访问控制越来越受到社会的关注和重视。传统的单用户方法缺乏适应这些场景的丰富性和灵活性，导致不希望的敏感数据和资源泄露。推进这一领域的基础性工作至关重要。特别是，随着个人数据的积累和数据挖掘算法的改进，个人身份信息更容易推断出来，隐私决策的实际影响相对不透明。即使在个人层面上也是如此，但是共同管理内容的并行问题涉及到这些复杂结果的交叉乘积。在本次演讲中，我们将讨论成功的多方访问控制机制的基本要求，并将这些概念与当前的技术状况联系起来。基于这一分析，我们确定了开放的挑战，并为未来的工作绘制了路线图。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 23nd ACM on Symposium on Access Control Models and Technologies

自引率

0.00%

发文量