以用户为中心的隐私访问控制模型

2010 2nd International Symposium on Information Engineering and Electronic Commerce Pub Date : 2010-07-23 DOI:10.1109/IEEC.2010.5533251

Fei Xu, Jingsha He, Xu Wu, Jing Xu

{"title":"以用户为中心的隐私访问控制模型","authors":"Fei Xu, Jingsha He, Xu Wu, Jing Xu","doi":"10.1109/IEEC.2010.5533251","DOIUrl":null,"url":null,"abstract":"Privacy is considered to be a critical issue for providing high quality ubiquitous network services to users over the Internet. User's privacy should be protected and access to privacy information must be controlled in accordance with user's privacy preferences. Existing privacy-aware access control strategies often store all the privacy access control policies on the server side and thus fail to consider the dynamic nature of privacy preferences. In this paper, we propose a user-centric privacy-enhanced access control model and show that our model takes the dynamic nature of user's privacy preferences into consideration and can thus fulfill any kind of privacy requirements. By separating access polices apart from privacy policies, which are now stored at user side and therefore fully under user's control, we demonstrate that our model can provide users with a flexible way of controlling privacy policies that are consistent with their preferences.","PeriodicalId":307678,"journal":{"name":"2010 2nd International Symposium on Information Engineering and Electronic Commerce","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-07-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"A User-Centric Privacy Access Control Model\",\"authors\":\"Fei Xu, Jingsha He, Xu Wu, Jing Xu\",\"doi\":\"10.1109/IEEC.2010.5533251\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Privacy is considered to be a critical issue for providing high quality ubiquitous network services to users over the Internet. User's privacy should be protected and access to privacy information must be controlled in accordance with user's privacy preferences. Existing privacy-aware access control strategies often store all the privacy access control policies on the server side and thus fail to consider the dynamic nature of privacy preferences. In this paper, we propose a user-centric privacy-enhanced access control model and show that our model takes the dynamic nature of user's privacy preferences into consideration and can thus fulfill any kind of privacy requirements. By separating access polices apart from privacy policies, which are now stored at user side and therefore fully under user's control, we demonstrate that our model can provide users with a flexible way of controlling privacy policies that are consistent with their preferences.\",\"PeriodicalId\":307678,\"journal\":{\"name\":\"2010 2nd International Symposium on Information Engineering and Electronic Commerce\",\"volume\":\"26 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-07-23\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 2nd International Symposium on Information Engineering and Electronic Commerce\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IEEC.2010.5533251\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 2nd International Symposium on Information Engineering and Electronic Commerce","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IEEC.2010.5533251","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

摘要

隐私被认为是在互联网上向用户提供高质量无处不在的网络服务的关键问题。应保护用户的隐私，必须根据用户的隐私偏好控制对隐私信息的访问。现有的隐私感知访问控制策略通常将所有隐私访问控制策略存储在服务器端，因此无法考虑隐私首选项的动态性。本文提出了一种以用户为中心的隐私增强访问控制模型，并表明该模型考虑了用户隐私偏好的动态性，可以满足任何类型的隐私需求。通过将访问策略与隐私策略分离开来(隐私策略现在存储在用户端，因此完全在用户的控制之下)，我们证明了我们的模型可以为用户提供一种灵活的方式来控制与他们偏好一致的隐私策略。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A User-Centric Privacy Access Control Model

Privacy is considered to be a critical issue for providing high quality ubiquitous network services to users over the Internet. User's privacy should be protected and access to privacy information must be controlled in accordance with user's privacy preferences. Existing privacy-aware access control strategies often store all the privacy access control policies on the server side and thus fail to consider the dynamic nature of privacy preferences. In this paper, we propose a user-centric privacy-enhanced access control model and show that our model takes the dynamic nature of user's privacy preferences into consideration and can thus fulfill any kind of privacy requirements. By separating access polices apart from privacy policies, which are now stored at user side and therefore fully under user's control, we demonstrate that our model can provide users with a flexible way of controlling privacy policies that are consistent with their preferences.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2010 2nd International Symposium on Information Engineering and Electronic Commerce

自引率

0.00%

发文量