Performance-Aware Trust-Based Access Control for Protecting Sensitive Attributes

Salji, Mohd Rafiz; Udzir, Nur Izura; Ninggal, Mohd Izuan Hafez; Sani, Nor Fazlida Mohd; Ibrahim, Hamidah

doi:10.1007/978-3-319-51281-5_56

Cited by 1 publication

(1 citation statement)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A TBAC model is proposed with a comprehensive policy to specify the user's trustworthiness to access sensitive attributes and two properties are used to specify it, namely: seniority and behaviour [20]. Based on the calculation of both properties, if an authorized user achieves a higher level of trust (seniorwith-trust), they can access sensitive attributes, otherwise, they are permitted to access data without sensitive attributes.…”

Section: Literature Reviewmentioning

confidence: 99%

Trust-based Access Control Model with Quantification Method for Protecting Sensitive Attributes

Salji¹,

Udzir²,

Ninggal³

et al. 2022

IJACSA

Self Cite

View full text Add to dashboard Cite

The prevailing trend of the seamless digital collection has prompted privacy concerns to the organization. In enforcing the automation of privacy policies and laws, access control has been one of the most devoted subjects. Despite the recent advances in access control frameworks and models, there are still issues that hinder the implementation of successful access control. This paper illustrates the problem of the previous model which typically preserves data without explicitly considering the protection of sensitive attributes. This paper also highlights the drawback of the previous works which provides inaccurate calculation to specify user's trustworthiness. Therefore, a trust-based access control (TBAC) model is proposed to protect sensitive attributes. A quantification method that provides accurate calculation of the two user properties is also proposed, namely: seniority and behaviour to specify user's trustworthiness. Experiment have been conducted to compare the proposed quantification method and the previous quantification methods. The result shows that the proposed quantification method is stricter and accurate in specifying user's trustworthiness as compared to the previous works. Therefore, based on the result, this study resolves the issue of specifying the user's trustworthiness. This study also indicates that the issue of protecting sensitive attributes has been resolved.

show abstract

Section: Literature Reviewmentioning

confidence: 99%