Multi-level delegations with trust management in access control systems

Min Li; Xiaoxun Sun; Hua Wang; Yanchun Zhang

doi:10.1007/s10844-012-0205-8

Multi-level delegations with trust management in access control systems

Min Li
, Xiaoxun Sun
, Hua Wang
, Yanchun Zhang

Australian Council for Educational Research (ACER)

Research output: Contribution to journal › Article › peer-review

Abstract

Delegation is a mechanism that allows one agent to act on another's privilege. It is important that the privileges should be delegated to a person who is trustworthy. In this paper, we propose a multi-level delegation model with trust management in access control systems.We organize the delegation tasks into three levels, Low, Medium, and High, according to the sensitivity of the information contained in the delegation tasks. It motivates us that the more sensitive the delegated task is, the more trustworthy the delegatee should be. In order to assess how trustworthy a delegatee is, we devise trust evaluation techniques to describe a delegatee's trust history and also predict the future trend of trust. In our proposed delegation model, a delegatee with a higher trust level could be assigned with a higher level delegation task. Extensive experiments show that our proposed multi-level delegation model is effective in accurately predicting trust and avoiding sensitive information disclosure. © Springer Science+Business Media, LLC 2012.

Original language	English
Pages (from-to)	611-626
Number of pages	16
Journal	Journal of Intelligent Information Systems
Volume	39
Issue number	3
DOIs	https://doi.org/10.1007/s10844-012-0205-8
Publication status	Published - 1 Dec 2012

Keywords

Access control
Database management
Trust evaluation

Access to Document

10.1007/s10844-012-0205-8

Cite this

@article{3a8966bfa44543ca88711fd586e2e169,

title = "Multi-level delegations with trust management in access control systems",

abstract = "Delegation is a mechanism that allows one agent to act on another's privilege. It is important that the privileges should be delegated to a person who is trustworthy. In this paper, we propose a multi-level delegation model with trust management in access control systems.We organize the delegation tasks into three levels, Low, Medium, and High, according to the sensitivity of the information contained in the delegation tasks. It motivates us that the more sensitive the delegated task is, the more trustworthy the delegatee should be. In order to assess how trustworthy a delegatee is, we devise trust evaluation techniques to describe a delegatee's trust history and also predict the future trend of trust. In our proposed delegation model, a delegatee with a higher trust level could be assigned with a higher level delegation task. Extensive experiments show that our proposed multi-level delegation model is effective in accurately predicting trust and avoiding sensitive information disclosure. {\textcopyright} Springer Science+Business Media, LLC 2012.",

keywords = "Access control, Database management, Trust evaluation",

author = "Min Li and Xiaoxun Sun and Hua Wang and Yanchun Zhang",

year = "2012",

month = dec,

day = "1",

doi = "10.1007/s10844-012-0205-8",

language = "English",

volume = "39",

pages = "611--626",

journal = "Journal of Intelligent Information Systems",

issn = "0925-9902",

number = "3",

}

TY - JOUR

T1 - Multi-level delegations with trust management in access control systems

AU - Li, Min

AU - Sun, Xiaoxun

AU - Wang, Hua

AU - Zhang, Yanchun

PY - 2012/12/1

Y1 - 2012/12/1

N2 - Delegation is a mechanism that allows one agent to act on another's privilege. It is important that the privileges should be delegated to a person who is trustworthy. In this paper, we propose a multi-level delegation model with trust management in access control systems.We organize the delegation tasks into three levels, Low, Medium, and High, according to the sensitivity of the information contained in the delegation tasks. It motivates us that the more sensitive the delegated task is, the more trustworthy the delegatee should be. In order to assess how trustworthy a delegatee is, we devise trust evaluation techniques to describe a delegatee's trust history and also predict the future trend of trust. In our proposed delegation model, a delegatee with a higher trust level could be assigned with a higher level delegation task. Extensive experiments show that our proposed multi-level delegation model is effective in accurately predicting trust and avoiding sensitive information disclosure. © Springer Science+Business Media, LLC 2012.

AB - Delegation is a mechanism that allows one agent to act on another's privilege. It is important that the privileges should be delegated to a person who is trustworthy. In this paper, we propose a multi-level delegation model with trust management in access control systems.We organize the delegation tasks into three levels, Low, Medium, and High, according to the sensitivity of the information contained in the delegation tasks. It motivates us that the more sensitive the delegated task is, the more trustworthy the delegatee should be. In order to assess how trustworthy a delegatee is, we devise trust evaluation techniques to describe a delegatee's trust history and also predict the future trend of trust. In our proposed delegation model, a delegatee with a higher trust level could be assigned with a higher level delegation task. Extensive experiments show that our proposed multi-level delegation model is effective in accurately predicting trust and avoiding sensitive information disclosure. © Springer Science+Business Media, LLC 2012.

KW - Access control

KW - Database management

KW - Trust evaluation

U2 - 10.1007/s10844-012-0205-8

DO - 10.1007/s10844-012-0205-8

M3 - Article

AN - SCOPUS:84869501608

SN - 0925-9902

VL - 39

SP - 611

EP - 626

JO - Journal of Intelligent Information Systems

JF - Journal of Intelligent Information Systems

IS - 3

ER -