Policy Evolution in Distributed Usage Control
نویسندگان
چکیده
Usage control is a generalization of access control that also addresses how data is handled after it is released. Controlling the future usage of data includes controlling the future distribution of data. The evolution of policies upon re-distribution must hence be defined. Intuitively, clients should only strengthen policies associated with a data item when they re-distribute it. We provide a role-based re-distribution model for usage control that encompasses strengthening both rights and duties. By introducing orderings for events and parameter values we show how both rights and duties can be strengthened with the traditional abstraction of trace inclusion.
منابع مشابه
On Usage Control in Data Grids
This paper reasons on usage control in Data Grids. We adapt the UCONabc usage control framework for the case of distributed systems with multiple authoritative points. We call it the distributed usage control model. Then, we present an architecture implementing such model. In doing so, we use the functional components of the current Grids. Finally, we show a simple way for controlling the polic...
متن کاملAn Overview of Distributed Usage Control – Extended
Usage control generalizes access control to what happens to data in the future (“delete after thirty days,” “do not copy,” “notify owner upon access.”) Distributed usage control is about defining and enforcing usage control requirements on data after giving it away. It is relevant in the areas of data protection, the management of intellectual property, the management of secrets, and compliance...
متن کاملA Purpose Model and Policy Enforcement Engine for Usage Control in Distributed Healthcare Information System
This paper addresses two issues: the purpose model designed for distributed healthcare and the purpose-based usage policy enforcement engine based on our purpose-based UCON (the extended UCON model). UCON has been proposed and applied to support security requirements in different computing environments such as resources sharing in collaborative computing systems and data control in remote users...
متن کاملAchieving Accountability with Distributed Data Usage Control Technology
Distributed data usage control technology enforces obligations on future data usage in a preventive or a detective manner. The goal of preventive enforcement is to make sure that a data usage policy is adhered to. The goal of detective, or optimistic, enforcement is to maintain a log of policy violations, which directly provides technical means for accountability. Depending on the underlying tr...
متن کاملDecentralized Distributed Data Usage Control
Data usage control provides mechanisms for data owners to remain in control over how their data is used after it has been shared. Many data usage policies can only be enforced on a global scale, as they refer to data usage events happening within multiple distributed systems: ‘not more than three employees may ever read this document’, or ‘no copy of this document may be modified after it has b...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- Electr. Notes Theor. Comput. Sci.
دوره 244 شماره
صفحات -
تاریخ انتشار 2009