Privacy-preserving semantic interoperation and access control of heterogeneous databases

Prasenjit Mitra, Chi Chun Pan, Peng Liu, Vijayalakshmi Atluri

Research output: Chapter in Book/Report/Conference proceedingConference contribution

24 Citations (Scopus)

Abstract

Today, many applications require users from one organization to access data belonging to organizations. While traditional solutions offered for the federated and mediated databases facilitate this by sharing metadata, this may not be acceptable for certain organizations due to privacy concerns. In this paper, we propose a novel solution - Privacy-preserving Access Control Toolkit (PACT) - that enables privacy-preserving secure semantic access control and allows sharing of data among heterogeneous databases without having to share metadata. PACT uses encrypted ontologies, encrypted ontology-mapping tables and conversion functions, encrypted role hierarchies and encrypted queries. The encrypted results of queries are sent directly from the responding system to the requesting system, bypassing the mediator to further improve the security of the system. PACT provides semantic access control using ontologies and semantically expanded authorization tables at the mediator. One of the distinguishing features of the PACT is that it requires very little changes to underlying databases. Despite using encrypted queries and encrypted mediation, we demonstrate that PACT provides acceptable performance.

Original languageEnglish
Title of host publicationProceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06
Pages66-77
Number of pages12
Volume2006
DOIs
Publication statusPublished - 2006
Externally publishedYes
Event2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06 - Taipei
Duration: 21 Mar 200724 Mar 2007

Other

Other2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06
CityTaipei
Period21/3/0724/3/07

Fingerprint

Access control
Semantics
Ontology
Metadata

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Cite this

Mitra, P., Pan, C. C., Liu, P., & Atluri, V. (2006). Privacy-preserving semantic interoperation and access control of heterogeneous databases. In Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06 (Vol. 2006, pp. 66-77) https://doi.org/10.1145/1128817.1128831

Privacy-preserving semantic interoperation and access control of heterogeneous databases. / Mitra, Prasenjit; Pan, Chi Chun; Liu, Peng; Atluri, Vijayalakshmi.

Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06. Vol. 2006 2006. p. 66-77.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Mitra, P, Pan, CC, Liu, P & Atluri, V 2006, Privacy-preserving semantic interoperation and access control of heterogeneous databases. in Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06. vol. 2006, pp. 66-77, 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06, Taipei, 21/3/07. https://doi.org/10.1145/1128817.1128831
Mitra P, Pan CC, Liu P, Atluri V. Privacy-preserving semantic interoperation and access control of heterogeneous databases. In Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06. Vol. 2006. 2006. p. 66-77 https://doi.org/10.1145/1128817.1128831
Mitra, Prasenjit ; Pan, Chi Chun ; Liu, Peng ; Atluri, Vijayalakshmi. / Privacy-preserving semantic interoperation and access control of heterogeneous databases. Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06. Vol. 2006 2006. pp. 66-77
@inproceedings{d6d4fa2f15ad46d6b679c2a712613723,
title = "Privacy-preserving semantic interoperation and access control of heterogeneous databases",
abstract = "Today, many applications require users from one organization to access data belonging to organizations. While traditional solutions offered for the federated and mediated databases facilitate this by sharing metadata, this may not be acceptable for certain organizations due to privacy concerns. In this paper, we propose a novel solution - Privacy-preserving Access Control Toolkit (PACT) - that enables privacy-preserving secure semantic access control and allows sharing of data among heterogeneous databases without having to share metadata. PACT uses encrypted ontologies, encrypted ontology-mapping tables and conversion functions, encrypted role hierarchies and encrypted queries. The encrypted results of queries are sent directly from the responding system to the requesting system, bypassing the mediator to further improve the security of the system. PACT provides semantic access control using ontologies and semantically expanded authorization tables at the mediator. One of the distinguishing features of the PACT is that it requires very little changes to underlying databases. Despite using encrypted queries and encrypted mediation, we demonstrate that PACT provides acceptable performance.",
author = "Prasenjit Mitra and Pan, {Chi Chun} and Peng Liu and Vijayalakshmi Atluri",
year = "2006",
doi = "10.1145/1128817.1128831",
language = "English",
isbn = "1595932720",
volume = "2006",
pages = "66--77",
booktitle = "Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06",

}

TY - GEN

T1 - Privacy-preserving semantic interoperation and access control of heterogeneous databases

AU - Mitra, Prasenjit

AU - Pan, Chi Chun

AU - Liu, Peng

AU - Atluri, Vijayalakshmi

PY - 2006

Y1 - 2006

N2 - Today, many applications require users from one organization to access data belonging to organizations. While traditional solutions offered for the federated and mediated databases facilitate this by sharing metadata, this may not be acceptable for certain organizations due to privacy concerns. In this paper, we propose a novel solution - Privacy-preserving Access Control Toolkit (PACT) - that enables privacy-preserving secure semantic access control and allows sharing of data among heterogeneous databases without having to share metadata. PACT uses encrypted ontologies, encrypted ontology-mapping tables and conversion functions, encrypted role hierarchies and encrypted queries. The encrypted results of queries are sent directly from the responding system to the requesting system, bypassing the mediator to further improve the security of the system. PACT provides semantic access control using ontologies and semantically expanded authorization tables at the mediator. One of the distinguishing features of the PACT is that it requires very little changes to underlying databases. Despite using encrypted queries and encrypted mediation, we demonstrate that PACT provides acceptable performance.

AB - Today, many applications require users from one organization to access data belonging to organizations. While traditional solutions offered for the federated and mediated databases facilitate this by sharing metadata, this may not be acceptable for certain organizations due to privacy concerns. In this paper, we propose a novel solution - Privacy-preserving Access Control Toolkit (PACT) - that enables privacy-preserving secure semantic access control and allows sharing of data among heterogeneous databases without having to share metadata. PACT uses encrypted ontologies, encrypted ontology-mapping tables and conversion functions, encrypted role hierarchies and encrypted queries. The encrypted results of queries are sent directly from the responding system to the requesting system, bypassing the mediator to further improve the security of the system. PACT provides semantic access control using ontologies and semantically expanded authorization tables at the mediator. One of the distinguishing features of the PACT is that it requires very little changes to underlying databases. Despite using encrypted queries and encrypted mediation, we demonstrate that PACT provides acceptable performance.

UR - http://www.scopus.com/inward/record.url?scp=34247379108&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34247379108&partnerID=8YFLogxK

U2 - 10.1145/1128817.1128831

DO - 10.1145/1128817.1128831

M3 - Conference contribution

SN - 1595932720

SN - 9781595932723

VL - 2006

SP - 66

EP - 77

BT - Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security, ASIACCS '06

ER -