Download Safari Books Online apps: Apple iOS | Android

Entire Site

Safari Books Online

    Free Trial

    Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.


    Copyright
    Dedication
    Editorial Advisory Board
    Preface: Let's Call it the "Security and Privacy Decade": The Consequence of Pervasive Information Technology
    Ch. 1. Examining an Individual's Perceived Need for Privacy and Security: Construct and Scale Development
    Ch. 2. Forty Years of Federal Legislation in the Area of Data Protection and Information Security
    Ch. 3. The Impact of Privacy Legislation on Patient Care: A Canadian Perspective
    Ch. 4. A Privacy Protection Model for Patient Data with Multiple Sensitive Attributes1
    Ch. 5. Protecting Patient Information in Outsourced Telehealth Services: Bolting on Security When it Cannot be Baked in
    Ch. 6. Obtaining Patient's Information from Hospital Employees through Social Engineering Techniques: An Investigative Study
    Ch. 7. Effects of Individual Trust in Broadcast Media and the Internet on Privacy-Risking Uses of E-Health: An Expanded Analysis
    Ch. 8. Safeguarding the Privacy of Electronic Medical Records
    Ch. 9. Using Statistical Texture Analysis for Medical Image Tamper Proofing
    Ch. 10. Privacy Inference Disclosure Control with Access-Unrestricted Data Anonymity1
    Ch. 11. Designing Efficient Security Services Infrastructure for Virtualization Oriented Architectures *
    Ch. 12. Architectural Support for Enhancing Critical Secrets Protection in Chip-Multiprocessors
    Ch. 13. Memory Based Anti-Forensic Tools and Techniques
    Ch. 14. Life Cycle Pattern Study of Malicious Codes
    Ch. 15. Trust—Based Usage Control in Collaborative Environment
    ABSTRACT
    INTRODUCTION
    A FRAMEWORK TO INTEGRATION TRUST INTO USAGE CONTROL
    ARCHITECTURE OF TRUST-BASED USAGE CONTROL IN FILE SHARING
    PROTOTYPE SIMULATION
    CONCLUSION
    REFERENCES
    Ch. 16. Will it be Disclosure or Fabrication of Personal Information?: An Examination of Persuasion Strategies on Prospective Employees
    Ch. 17. Computer Security Practices and Perceptions of the Next Generation of Corporate Computer Users
    Ch. 18. Design and Implementation of a Framework for Assured Information Sharing Across Organizational Boundaries
    Ch. 19. A Secure and Trustful e-Ordering Architecture (TOES) for Small and Medium Size Enterprises (SMEs)
    Ch. 20. SEACON: An Integrated Approach to the Analysis and Design of Secure Enterprise Architecture-Based Computer Networks
    Ch. 21. Spam Classification Based on E-Mail Path Analysis
    Ch. 22. A Decentralized Security Framework for Web-Based Social Networks
    Compilation of References
    About the Contributors
    Index
    • Create BookmarkCreate Bookmark
    • Create Note or TagCreate Note or Tag
    • DownloadDownload
    • PrintPrint
    Share this Page URL
    Help

    Chapter 15. Trust—Based Usage Control in... > A FRAMEWORK TO INTEGRATION TRUST INT...

    A FRAMEWORK TO INTEGRATION TRUST INTO USAGE CONTROL

    Overview of UCON

    The UCON model proposed by Park and Sandhu (2004) is a generalization of access control to cover authorization, obligation, conditions, continuity (ongoing controls), and mutability. Authorization handles decisions on user accesses to target resources. Obligations are the mandatory requirements for a subject before or during a usage exercise. Conditions are subject, object, environmental, or system requirements that have to be satisfied before granting of accesses. Subject and object attributes can be mutable. Mutable attributes can be changed because of accesses, whereas immutable attributes can be changed only by administrative actions.

    Trust Evaluation

    For every request, the owner of resources assigns a trust value within [0, 1] to the requester. The trust is evaluated based on history observations and peer recommendations from referees. The history-based observations are the previous interactions the owner had with the requester. The peer recommendations may include signed trust-assertions from other principals, or a list of referees whom the owner can contact for recommendations.


      

    You are currently reading a PREVIEW of this book.

                                                                                            

    Get instant access to over
    $1 million worth of books and videos.

      

    Start a Free Trial