School of Computing

Obligations for privacy and confidentiality in distributed transactions

U.M. Mbanaso, G.S. Cooper, David Chadwick, and Anne Anderson

In Mieso K Denko and et al., editors, Proceedings of Second Int. Workshop on Trustworthiness, Reliability and Services in Ubiquitous and Sensor Networks, Emerging Directions in Embedded and Ubiquitous Computing, pages 182-196, December 2007.

Abstract

Existing access control systems are typically unilateral in that the enterprise service provider assigns the access rights and makes the access control decisions, and there is no negotiation between the client and the service provider. As access management systems lean towards being user-centric, unilateral approaches can no longer adequately preserve the user�s privacy, particularly where the communicating parties have no pre-existing trust relationships. Establishing sufficient trust is therefore essential before parties can exchange sensitive information. This paper describes a bilateral symmetric approach to access control which deals with privacy and confidentiality simultaneously in distributed transactions. We introduce the concept of Obligation of Trust (OoT) as a privacy assurance mechanism that is built upon the XACML standard. The OoT allows communicating parties to dynamically exchange their privacy requirements, which we term Notification of Obligations (NOB) as well as their committed obligations, which we term Signed Acceptance of Obligations (SAO). We describe some applicability of these concepts and show how they can be integrated into distributed access control systems for stricter privacy and confidentiality control.

Download publication 388 kbytes (PDF)

Bibtex Record

@inproceedings{2654,
author = {U.M. Mbanaso and G.S. Cooper and David Chadwick and Anne Anderson},
title = {Obligations for Privacy and Confidentiality in Distributed Transactions},
month = {December},
year = {2007},
pages = {182-196},
keywords = {determinacy analysis, Craig interpolants},
note = {},
doi = {},
url = {http://www.cs.kent.ac.uk/pubs/2007/2654},
    publication_type = {inproceedings},
    submission_id = {18363_1204024979},
    booktitle = {Proceedings of Second Int. Workshop on Trustworthiness, Reliability and Services in Ubiquitous and Sensor Networks},
    series = {Emerging Directions in Embedded and Ubiquitous Computing},
    editor = {Mieso K Denko and et al.},
}

School of Computing, University of Kent, Canterbury, Kent, CT2 7NF

Enquiries: +44 (0)1227 824180 or contact us.

Last Updated: 21/03/2014