Hierarchical hippocratic databases with minimal disclosure for virtual organizations

F. Massacci, J. Mylopoulos, N. Zannone

Research output: Contribution to JournalArticleAcademicpeer-review

Abstract

The protection of customer privacy is a fundamental issue in today's corporate marketing strategies. Not surprisingly, many research efforts have proposed new privacy-aware technologies. Among them, Hippocratic databases offer mechanisms for enforcing privacy rules in database systems for inter-organizational business processes (also known as virtual organizations). This paper extends these mechanisms to allow for hierarchical purposes, distributed authorizations and minimal disclosure supporting the business processes of virtual organizations that want to offer their clients a number of ways to fulfill a service. Specifically, we use a goal-oriented approach to analyze privacy policies of the enterprises involved in a business process. On the basis of the purpose hierarchy derived through a goal refinement process, we provide algorithms for determining the minimum set of authorizations needed to achieve a service. This allows us to automatically derive access control policies for an inter-organizational business process from the collection of privacy policies associated with different participating enterprises. By using effective on-line algorithms, the derivation of such minimal information can also be done on-the-fly by the customer wishing to access a service. © 2006 Springer-Verlag.
Original languageEnglish
Pages (from-to)370-387
JournalVLDB Journal
Volume15
Issue number4
DOIs
Publication statusPublished - Nov 2006
Externally publishedYes

Fingerprint

Dive into the research topics of 'Hierarchical hippocratic databases with minimal disclosure for virtual organizations'. Together they form a unique fingerprint.

Cite this