An Access Control Model for Protecting Provenance Graphs

Liang Chen, Peter Edwards, John Donald Nelson, Timothy James Forester Norman

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Downloads (Pure)

Abstract

Securing provenance has recently become an important research topic, resulting in a number of models for protecting access to provenance. Existing work has focused on graph transformation mechanisms that supply a user with a provenance view that satisfies both access control policies and validity constraints of provenance. However, it is not always possible to satisfy both of them simultaneously, because these two conditions are often inconsistent which require sophisticated conflict resolution strategies to be put in place. In this paper we develop a new access control model tailored for provenance. In particular, we explicitly take into account validity constraints of provenance when specifying certain parts of provenance to which access is restricted. Hence, a provenance view that is granted to a user by our authorisation mechanism would automatically satisfy the validity constraints. Moreover, we propose algorithms that allow provenance owners to deploy fine-grained access control for their provenance data.
Original languageEnglish
Title of host publicationProceedings of the 13th Annual International Conference on Privacy, Security and Trust - PST 2015
PublisherIEEE Press
Pages125-132
Number of pages8
ISBN (Electronic)978-1-4673-7828-4
DOIs
Publication statusPublished - 2015

    Fingerprint

Keywords

  • provenance
  • access control
  • constraints

Cite this

Chen, L., Edwards, P., Nelson, J. D., & Norman, T. J. F. (2015). An Access Control Model for Protecting Provenance Graphs. In Proceedings of the 13th Annual International Conference on Privacy, Security and Trust - PST 2015 (pp. 125-132). IEEE Press. https://doi.org/10.1109/PST.2015.7232963