Usage Control Model and Architecture for Data Confidentiality in Database Service Provider

Abstract

Database Service Provider (DSP) is a provider in the Internet that provides service in maintaining data so users can access their data anytime and anywhere from the Internet. DSP model introduces several challenges. An important issue is data confidentiality. In this paper we propose a Usage Control (UCON) model and architecture that can be enforced to support data confidentiality in DSP model. Usage Control (UCON) is a unified model of access control that has been introduced as next generation access control recently. Basic idea of our UCON model for the DSP is separation of control domain in DSP into two domains: Database Provider Domain and Database User Domain. In the Database Provider Domain, access control system is controlling access from users of DSP to database services provided by the DSP. In the Database User Domain, access control system is controlling access from other users to a user’s database. With this separation, we can define access control policy for each domain independently.

8 Figures and Tables

Cite this paper

@inproceedings{Syalim2005UsageCM, title={Usage Control Model and Architecture for Data Confidentiality in Database Service Provider}, author={Amril Syalim and Toshihiro Tabata and Kouichi Sakurai}, year={2005} }