Performance-aware trust-based access control for protecting sensitive attributes

Abstract

The prevailing trend of the seamless digital collection has prompted privacy concern not only among academia but also among the majority. In enforcing the automation of privacy policies and law, access control has been one of the most devoted subjects. Despite the recent advances in access control frameworks and models, there are still issues that impede the development of effective access control. Among them are the lack of assessment’s granularity in user authorization, and reliance on identity, role or purpose-based access control schemes. In this paper, we address the problem of protecting sensitive attributes from inappropriate access. We propose an access control mechanism that employs two trust metrics name experience and behavior. We also propose a scheme for quantifying those metrics in an enterprise computing environment. Finally, we show that these metrics are useful in improving the assessment granularity in permitting or prohibiting users to gain access to sensitive attributes.