Privacy-preserving semantic interoperation and access control of heterogeneous databases

Prasenjit Mitra, Chi Chun Pan, Peng Liu, Vijayalakshmi Atluri

Research output: Chapter in Book/Report/Conference proceedingConference contribution

25 Citations (Scopus)

Abstract

Today, many applications require users from one organization to access data belonging to organizations. While traditional solutions offered for the federated and mediated databases facilitate this by sharing metadata, this may not be acceptable for certain organizations due to privacy concerns. In this paper, we propose a novel solution - Privacy-preserving Access Control Toolkit (PACT) - that enables privacy-preserving secure semantic access control and allows sharing of data among heterogeneous databases without having to share metadata. PACT uses encrypted ontologies, encrypted ontology-mapping tables and conversion functions, encrypted role hierarchies and encrypted queries. The encrypted results of queries are sent directly from the responding system to the requesting system, bypassing the mediator to further improve the security of the system. PACT provides semantic access control using ontologies and semantically expanded authorization tables at the mediator. One of the distinguishing features of the PACT is that it requires very little changes to underlying databases. Despite using encrypted queries and encrypted mediation, we demonstrate that PACT provides acceptable performance.

Original languageEnglish
Title of host publicationProceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06
Pages66-77
Number of pages12
DOIs
Publication statusPublished - 1 Dec 2006
Event2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06 - Taipei, Taiwan, Province of China
Duration: 21 Mar 200724 Mar 2007

Publication series

NameProceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06
Volume2006

Conference

Conference2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06
CountryTaiwan, Province of China
CityTaipei
Period21/3/0724/3/07

    Fingerprint

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Cite this

Mitra, P., Pan, C. C., Liu, P., & Atluri, V. (2006). Privacy-preserving semantic interoperation and access control of heterogeneous databases. In Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06 (pp. 66-77). (Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06; Vol. 2006). https://doi.org/10.1145/1128817.1128831