Fine-Grained Access Control via Policy-Carrying Data

Julian Padget, Wamberto Vasconcelos

OAI: oai:purehost.bath.ac.uk:openaire_cris_publications/f5571456-2c16-41ea-be5a-09dd182c879d • DOI: https://doi.org/10.1145/3133324

We address the problem of associating access policies with datasets and how to monitor compliance via policy-carrying data. Our contributions are a formal model in first-order logic inspired by normative multiagent systems to regulate data access, and a computational model for the validation of specific use cases and the verification of policies against criteria. Existing work on access policy identifies roles as a key enabler, with which we concur, but much of the rest focusses on authentication and authorization technology. Our proposal aims to address the normative principles put forward in Berners-Lee's bill of rights for the internet, through human-readable but machine-processable access control policies.

Action language Answer set programming Data sharing Deontic logic Privacy policy /dk/atira/pure/subjectarea/asjc/1700/1705 name=Computer Networks and Communications