Performance and divisional trust and purpose-based access control for privacy preservation
Privacy has been recognized to be a critical requirement in computing environments. To keep the privacy safe from inappropriate use, one of the most popular methods that can be used is the access control. Currently, many augmentation of access control models has been developed to improve the effecti...
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Medwell Publications
2018
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/75261/ http://psasir.upm.edu.my/id/eprint/75261/1/Performance%20and%20divisional%20trust%20and%20purpose-based%20access%20control%20for%20privacy%20preservation.pdf |
| _version_ | 1848857639369310208 |
|---|---|
| author | Salji, Mohd Rafiz Udzir, Nur Izura Hafez Ninggal, Mohd Izuan Mohd Sani, Nor Fazlida Ibrahim, Hamidah |
| author_facet | Salji, Mohd Rafiz Udzir, Nur Izura Hafez Ninggal, Mohd Izuan Mohd Sani, Nor Fazlida Ibrahim, Hamidah |
| author_sort | Salji, Mohd Rafiz |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Privacy has been recognized to be a critical requirement in computing environments. To keep the privacy safe from inappropriate use, one of the most popular methods that can be used is the access control. Currently, many augmentation of access control models has been developed to improve the effectiveness in preserving the privacy. However, there are still issues that need improvements. In current Purpose-Based Access Control (PBAC) Models, all authorized users in the domain are allowed to access the personal information especially sensitive attributes equally. It may cause the risk of privacy disclosure by ‘limited-authorized’ user, i.e., legitimate user but untrusted and unauthorized to access certain personal information with sensitive attributes. In this study a finer-grained access control called performance and divisional trust and purpose-based access control is proposed to prevent limited-authorized user access to the privacy. Based on organizational structure (functional departmentalization) current PBAC Models permit authorized user in the functional level to access the personal information. This model can be set at the next level after the functional level, i.e., the divisional level to access it. Subsequently, a comprehensive policy is proposed to permit user to access sensitive attributes based on two trust metrics namely user experience and behaviour. To evaluate the trustworthiness of the authorized user, a quantification method is proposed to measure those metrics. Based on the results, this model may significantly permit or prohibit access to personal information or with sensitive attributes. Besides, the issue of privacy disclosure by limited-authorized user to access certain privacy is resolved. |
| first_indexed | 2025-11-15T12:00:45Z |
| format | Article |
| id | upm-75261 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T12:00:45Z |
| publishDate | 2018 |
| publisher | Medwell Publications |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-752612020-07-16T06:45:32Z http://psasir.upm.edu.my/id/eprint/75261/ Performance and divisional trust and purpose-based access control for privacy preservation Salji, Mohd Rafiz Udzir, Nur Izura Hafez Ninggal, Mohd Izuan Mohd Sani, Nor Fazlida Ibrahim, Hamidah Privacy has been recognized to be a critical requirement in computing environments. To keep the privacy safe from inappropriate use, one of the most popular methods that can be used is the access control. Currently, many augmentation of access control models has been developed to improve the effectiveness in preserving the privacy. However, there are still issues that need improvements. In current Purpose-Based Access Control (PBAC) Models, all authorized users in the domain are allowed to access the personal information especially sensitive attributes equally. It may cause the risk of privacy disclosure by ‘limited-authorized’ user, i.e., legitimate user but untrusted and unauthorized to access certain personal information with sensitive attributes. In this study a finer-grained access control called performance and divisional trust and purpose-based access control is proposed to prevent limited-authorized user access to the privacy. Based on organizational structure (functional departmentalization) current PBAC Models permit authorized user in the functional level to access the personal information. This model can be set at the next level after the functional level, i.e., the divisional level to access it. Subsequently, a comprehensive policy is proposed to permit user to access sensitive attributes based on two trust metrics namely user experience and behaviour. To evaluate the trustworthiness of the authorized user, a quantification method is proposed to measure those metrics. Based on the results, this model may significantly permit or prohibit access to personal information or with sensitive attributes. Besides, the issue of privacy disclosure by limited-authorized user to access certain privacy is resolved. Medwell Publications 2018 Article PeerReviewed text en http://psasir.upm.edu.my/id/eprint/75261/1/Performance%20and%20divisional%20trust%20and%20purpose-based%20access%20control%20for%20privacy%20preservation.pdf Salji, Mohd Rafiz and Udzir, Nur Izura and Hafez Ninggal, Mohd Izuan and Mohd Sani, Nor Fazlida and Ibrahim, Hamidah (2018) Performance and divisional trust and purpose-based access control for privacy preservation. Journal of Engineering and Applied Sciences, 13 (spec. 9). 7032 - 7038. ISSN 1816-949X; ESSN: 1818-7803 10.36478/jeasci.2018.7032.7038 |
| spellingShingle | Salji, Mohd Rafiz Udzir, Nur Izura Hafez Ninggal, Mohd Izuan Mohd Sani, Nor Fazlida Ibrahim, Hamidah Performance and divisional trust and purpose-based access control for privacy preservation |
| title | Performance and divisional trust and purpose-based access control for privacy preservation |
| title_full | Performance and divisional trust and purpose-based access control for privacy preservation |
| title_fullStr | Performance and divisional trust and purpose-based access control for privacy preservation |
| title_full_unstemmed | Performance and divisional trust and purpose-based access control for privacy preservation |
| title_short | Performance and divisional trust and purpose-based access control for privacy preservation |
| title_sort | performance and divisional trust and purpose-based access control for privacy preservation |
| url | http://psasir.upm.edu.my/id/eprint/75261/ http://psasir.upm.edu.my/id/eprint/75261/ http://psasir.upm.edu.my/id/eprint/75261/1/Performance%20and%20divisional%20trust%20and%20purpose-based%20access%20control%20for%20privacy%20preservation.pdf |