Managing access control policy from end user perspective in collaborative environment

• Published in: ICOS 2014 - 2014 IEEE Conference on Open Systems
• Main Author: Ahmad S.; Abidin S.Z.Z.; Omar N.; Reiff-Marganiec S.
• Format: Conference paper
• Language: English
• Published: Institute of Electrical and Electronics Engineers Inc. 2014
• Online Access: https://www.scopus.com/inward/record.uri?eid=2-s2.0-84988264980&doi=10.1109%2fICOS.2014.7042636&partnerID=40&md5=7bc43ab21af000ad4aca8767c95a9979

Currently, collaborative environments offer unlimited data sharing for users. Data owners are poorly involved in handling their data for such environment when it deals with data policy. Normally, data access control policy consists of a resource and authorization descriptions which are assigned by the administrator. It is the responsibility of the administrator to set and specify the policy for application services. The policy details are massive and complex for administrator to handle where most of the times there will be cases of unreview services. This paper proposes a framework that allows data owners to provision policies for storing and managing their shared data with third parties. By adapting RBAC model and adding owner's interest on permissions for data operations and objects, the proposed framework will facilitate data access control whereby owners have the freedom to set their own data access policy. © 2014 IEEE.