Computational Issues in Secure Interoperation
IEEE Transactions on Software Engineering
The TSIMMIS Approach to Mediation: Data Models and Languages
Journal of Intelligent Information Systems - Special issue: next generation information technologies and systems
Providing Security and Interoperation of HeterogeneousSystems
Distributed and Parallel Databases - Security of data and transaction processing
Authorization specification and enforcement in federated database systems
Journal of Computer Security
Executing SQL over encrypted data in the database-service-provider model
Proceedings of the 2002 ACM SIGMOD international conference on Management of data
A survey of approaches to automatic schema matching
The VLDB Journal — The International Journal on Very Large Data Bases
Information sharing across private databases
Proceedings of the 2003 ACM SIGMOD international conference on Management of data
The Complexity and Composability of Secure Interoperation
SP '94 Proceedings of the 1994 IEEE Symposium on Security and Privacy
Applying the Semantic Web Layers to Access Control
DEXA '03 Proceedings of the 14th International Workshop on Database and Expert Systems Applications
Concept-level access control for the Semantic Web
Proceedings of the 2003 ACM workshop on XML security
Access Control for Semantic Web Services
ICWS '04 Proceedings of the IEEE International Conference on Web Services
OREL: an ontology-based rights expression language
Proceedings of the 13th international World Wide Web conference on Alternate track papers & posters
Privacy-Preserving Distributed Mining of Association Rules on Horizontally Partitioned Data
IEEE Transactions on Knowledge and Data Engineering
A semantic approach for access control in web services
EuroWeb'02 Proceedings of the 2002 international conference on EuroWeb
The VLDB Journal — The International Journal on Very Large Data Bases
Privacy-preserving schema matching using mutual information
Proceedings of the 21st annual IFIP WG 11.3 working conference on Data and applications security
Governance Requirements Extraction Model for Legal Compliance Validation
RELAW '09 Proceedings of the 2009 Second International Workshop on Requirements Engineering and Law
An ontology-based approach for occupational health
Proceedings of the 15th WSEAS international conference on Computers
Privacy in the electronic society
ICISS'06 Proceedings of the Second international conference on Information Systems Security
Ontology based hybrid access control for automatic interoperation
ATC'07 Proceedings of the 4th international conference on Autonomic and Trusted Computing
| Hi-index | 0.00 |
Today, many applications require users from one organization to access data belonging to organizations. While traditional solutions offered for the federated and mediated databases facilitate this by sharing metadata, this may not be acceptable for certain organizations due to privacy concerns. In this paper, we propose a novel solution -- Privacy-preserving Access Control Toolkit (PACT) -- that enables privacy-preserving secure semantic access control and allows sharing of data among heterogeneous databases without having to share metadata. PACT uses encrypted ontologies, encrypted ontology-mapping tables and conversion functions, encrypted role hierarchies and encrypted queries. The encrypted results of queries are sent directly from the responding system to the requesting system, bypassing the mediator to further improve the security of the system. PACT provides semantic access control using ontologies and semantically expanded authorization tables at the mediator. One of the distinguishing features of the PACT is that it requires very little changes to underlying databases. Despite using encrypted queries and encrypted mediation, we demonstrate that PACT provides acceptable performance.