Risk-Aware Information Disclosure

被引：9

作者：

Armando, Alessandro ^{[1
,2
]}

Bezzi, Michele ^{[4
]}

Metoui, Nadia ^{[2
,3
]}

Sabetta, Antonino ^{[4
]}

机构：

[1] Univ Genoa, DIBRIS, Genoa, Italy

[2] FBK Irst, Secur & Trust Unit, Trento, Italy

[3] Univ Trento, DISI, Trento, Italy

[4] SAP Labs, Prod Secur Res, Sophia Antipolis, France

来源：

DATA PRIVACY MANAGEMENT, AUTONOMOUS SPONTANEOUS SECURITY, AND SECURITY ASSURANCE | 2015年 / 8872卷

关键词：

ACCESS-CONTROL;

D O I：

10.1007/978-3-319-17016-9_17

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Risk-aware access control systems grant or deny access to resources based on some notion of risk. In this paper we propose a model that considers the risk of leaking privacy-critical information when querying, e.g., datasets containing personal information. While querying data-bases containing personal information it is current practice to assign all-or-nothing access to avoid the disclosure of sensitive information. Using our model, access-control decisions are based on the disclosure-risk associated with a data access request and, differently from existing models, we include adaptive anonymization operations as risk-mitigation methods. By applying these operations, a request that would otherwise be rejected, is permitted after reducing the risk associated with the returned dataset.

引用

页码：266 / 276

页数：11

共 50 条

[1] Risk-Aware Information Retrieval
Zhu, Jianhan
Wang, Jun
Taylor, Michael
Cox, Ingemar J.
ADVANCES IN INFORMATION RETRIEVAL, PROCEEDINGS, 2009, 5478 : 17 - +
[2] Risk-Aware Optimization of Age of Information in the Internet of Things
Zhou, Bo
Saad, Walid
Bennis, Mehdi
Popovski, Petar
ICC 2020 - 2020 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC), 2020,
[3] Risk-Aware Control
Sanger, Terence D.
NEURAL COMPUTATION, 2014, 26 (12) : 2669 - 2691
[4] Autonomous Risk-Aware Exploration
Maurer, Johannes
Steinbauer, Gerald
2013 IEEE INTERNATIONAL SYMPOSIUM ON SAFETY, SECURITY, AND RESCUE ROBOTICS (SSRR), 2013,
[5] Risk-Aware Autonomous Navigation
Tan, Yew Teck
Virani, Nurali
Good, Brandon
Gray, Steven
Yousefhussien, Mohammed
Yang, Zhaoyuan
Angeliu, Katelyn
Abate, Nicholas
Sen, Shiraj
ARTIFICIAL INTELLIGENCE AND MACHINE LEARNING FOR MULTI-DOMAIN OPERATIONS APPLICATIONS III, 2021, 11746
[6] Mutual Information based Risk-aware Active Sensing in An Urban Environment
Kan, Z.
Ton, C.
McCourt, M. J.
Curtis, J. W.
Doucette, E. A.
Mehta, S. S.
2015 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN, AND CYBERNETICS (SMC 2015): BIG DATA ANALYTICS FOR HUMAN-CENTRIC SYSTEMS, 2015, : 1178 - 1183
[7] Towards Risk-aware Access Control Framework for Healthcare Information Sharing
Abomhara, Mohamed
Koien, Geir M.
Oleshchuk, Vladimir A.
Hamid, Mohamed
ICISSP: PROCEEDINGS OF THE 4TH INTERNATIONAL CONFERENCE ON INFORMATION SYSTEMS SECURITY AND PRIVACY, 2018, : 312 - 321
[8] Towards Risk-Aware Resource Selection
Markov, Ilya
Carman, Mark
Crestani, Fabio
INFORMATION RETRIEVAL TECHNOLOGY, AIRS 2014, 2014, 8870 : 148 - 159
[9] Risk-Aware Control and Games in Engineering
Barreiro-Gomez, Julian
Tembine, Hamidou
Stella, Leonardo
Bauso, Dario
Colaneri, Patrizio
2020 59TH IEEE CONFERENCE ON DECISION AND CONTROL (CDC), 2020, : 3860 - 3870
[10] Towards risk-aware communications networking
Cholda, Piotr
Folstad, Eirik L.
Helvik, Bjarne E.
Kuusela, Pirkko
Naldi, Maurizio
Norros, Ilkka
RELIABILITY ENGINEERING & SYSTEM SAFETY, 2013, 109 : 160 - 174

← 1 2 3 4 5 →