Enforcing data access control and privacy: The graph-driven data regulatory approach

IF 3.8 2区计算机科学 Q2 COMPUTER SCIENCE, INFORMATION SYSTEMS

Journal of Information Security and Applications Pub Date : 2025-07-21 DOI:10.1016/j.jisa.2025.104163

Suriya U-ruekolan, Manot Rattananen, Jukkrapong Ponharn, Naiyana Sahavechaphan

{"title":"Enforcing data access control and privacy: The graph-driven data regulatory approach","authors":"Suriya U-ruekolan, Manot Rattananen, Jukkrapong Ponharn, Naiyana Sahavechaphan","doi":"10.1016/j.jisa.2025.104163","DOIUrl":null,"url":null,"abstract":"<div><div>Comprehensive data-driven systems require the integration of various access control and privacy patterns to address the diverse needs of subjects. However, existing approaches often struggle to simultaneously support precise access control, privacy preservation, and efficient policy maintenance. This paper presents G2D (Graph to Data), a novel technique that employs a Data Regulatory Graph (DRG) to dynamically generate data authorization statements tailored to specific subjects. G2D unifies access control and privacy by producing authorized SQL queries and specifying necessary data transformations for sensitive fields. Experimental results demonstrate that G2D incurs minimal execution overhead, simplifies policy updates, and effectively balances system performance with data protection, even under high concurrency. These findings highlight G2D’s potential to support scalable, privacy-aware data access in complex environments.</div></div>","PeriodicalId":48638,"journal":{"name":"Journal of Information Security and Applications","volume":"93 ","pages":"Article 104163"},"PeriodicalIF":3.8000,"publicationDate":"2025-07-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Journal of Information Security and Applications","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S2214212625002005","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Comprehensive data-driven systems require the integration of various access control and privacy patterns to address the diverse needs of subjects. However, existing approaches often struggle to simultaneously support precise access control, privacy preservation, and efficient policy maintenance. This paper presents G2D (Graph to Data), a novel technique that employs a Data Regulatory Graph (DRG) to dynamically generate data authorization statements tailored to specific subjects. G2D unifies access control and privacy by producing authorized SQL queries and specifying necessary data transformations for sensitive fields. Experimental results demonstrate that G2D incurs minimal execution overhead, simplifies policy updates, and effectively balances system performance with data protection, even under high concurrency. These findings highlight G2D’s potential to support scalable, privacy-aware data access in complex environments.

查看原文本刊更多论文

加强数据访问控制和隐私：图形驱动的数据监管方法

全面的数据驱动系统需要集成各种访问控制和隐私模式，以满足主体的不同需求。然而，现有的方法往往难以同时支持精确的访问控制、隐私保护和有效的策略维护。本文介绍了G2D（图到数据），这是一种利用数据监管图（DRG）动态生成针对特定主题的数据授权声明的新技术。G2D通过生成授权的SQL查询和为敏感字段指定必要的数据转换来统一访问控制和隐私。实验结果表明，即使在高并发情况下，G2D的执行开销最小，简化了策略更新，并且有效地平衡了系统性能和数据保护。这些发现突出了G2D在复杂环境中支持可扩展、隐私敏感的数据访问的潜力。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Journal of Information Security and Applications Computer Science-Computer Networks and Communications

CiteScore

10.90

自引率

5.40%

发文量

206

审稿时长

56 days

期刊介绍： Journal of Information Security and Applications (JISA) focuses on the original research and practice-driven applications with relevance to information security and applications. JISA provides a common linkage between a vibrant scientific and research community and industry professionals by offering a clear view on modern problems and challenges in information security, as well as identifying promising scientific and "best-practice" solutions. JISA issues offer a balance between original research work and innovative industrial approaches by internationally renowned information security experts and researchers.