Extending XACML Access Control Architecture for Allowing Preference-Based Authorisation

13 years 2 months ago

Download www.hpl.hp.com

: European data protection regulation states that organisations must have data subjects’ consent to use their personally identifiable information (PII) for a variety of purposes. Solutions have been proposed which generally handle consent in a coarse-grained way, by means of opt in/out choices. However, we believe that consent’s representation should be extended to allow data subjects to express a rich set of conditions under which their PII can be used. In this paper we introduce and discuss an approach enabling the representation of consent as fine-grained preferences. To enforce such consent, we leverage and extend the current standard XACML architecture and framework. As data collectors maintain links between PII and associated preferences, preferences should also be considered as part of this PII. Therefore our solution prevents access control components from directly accessing any PII. External Posting Date: November 21, 2009 [Fulltext] Approved for External Publication Inter...

Gina Kounga, Marco Casassa Mont, Pete Bramhall

Real-time Traffic

Data Protection Regulation | Data Subjects | Personally Identifiable Information | Security Privacy | TRUSTBUS 2010 |

claim paper

Post Info
More Details (n/a)

Added	31 Jan 2011
Updated	31 Jan 2011
Type	Journal
Year	2010
Where	TRUSTBUS
Authors	Gina Kounga, Marco Casassa Mont, Pete Bramhall

Comments (0)

Sciweavers

Extending XACML Access Control Architecture for Allowing Preference-Based Authorisation

Data Protection Regulation | Data Subjects | Personally Identifiable Information | Security Privacy | TRUSTBUS 2010 |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers