Abstract
We present a policy-based approach for the control of information flow between services. The controlled dissemination of information shared between services is achieved by the communication and enforcement of policies associated with shared information. The presented approach integrates easily as a communication middle-ware in existing service-based information systems keeping the management and distribution of policies transparent to the service implementation. This article focuses on the architecture and presents initial results that show the feasibility of the approach.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Ardagna, C.A., Cremonini, M., De Capitani di Vimercati, S., Samarati, P.: A privacy-aware access control system. J. Comput. Secur. 16, 369–397 (2008)
Balfe, S., Lakhani, A.D., Paterson, K.G.: Trusted computing: Providing security for peer-to-peer networks. In: IEEE International Conference on Peer-to-Peer Computing, pp. 117–124 (2005)
Becker, M.Y., Malkis, A., Bussard, L.: A Practical Generic Privacy Language. In: Jha, S., Mathuria, A. (eds.) ICISS 2010. LNCS, vol. 6503, pp. 125–139. Springer, Heidelberg (2010)
Berket, K., Essiari, A., Muratas, A.: Pki-based security for peer-to-peer information sharing. In: IEEE International Conference on Peer-to-Peer Computing, pp. 45–52 (2004)
Damiani, E., De Capitani di Vimercati, S., Paraboschi, S., Samarati, P., Violante, F.: A reputation-based approach for choosing reliable resources in peer-to-peer networks. In: Proceedings of the 9th ACM Conference on Computer and Communications Security, CCS 2002, pp. 207–216. ACM, New York (2002)
Dolev, D., Yao, A.: On the security of public key protocols. IEEE Transactions on Information Theory 29(2), 198–208 (1983)
Gołaszewski, G., Górski, J.: Context Sensitive Privacy Management in a Distributed Environment. In: Meersman, R., Dillon, T.S., Herrero, P. (eds.) OTM 2010, Part I. LNCS, vol. 6426, pp. 639–655. Springer, Heidelberg (2010)
Jones, K., Janicke, H., Cau, A.: A Property based Framework for Trust and Reputation in Mobile Computing. In: Proceedings of the 2009 International Conference on Advanced Information Networking and Applications Workshops, pp. 1031–1036. IEEE Computer Society (2009)
Li, J., Li, N., Winsborough, W.H.: Automated trust negotiation using cryptographic credentials. ACM Trans. Inf. Syst. Secur. 13, 2:1–2:35 (2009)
Ooi, B., Liau, C., Tan, K.L.: Managing Trust in Peer-to-Peer Systems Using Reputation-Based Techniques. In: Dong, G., Tang, C., Wang, W. (eds.) WAIM 2003. LNCS, vol. 2762, pp. 2–12. Springer, Heidelberg (2003)
Stallings, W.: Cryptography and Network Security: Principles and Practice, 4th edn. Pearson Education (2005)
Xing, F., Wang, W.: Understanding Dynamic Denial of Service Attacks in Mobile Ad Hoc Networks. In: IEEE Military Communications Conference, MILCOM 2006, pp. 1–7. IEEE (2007)
Ye, S., Makedon, F., Ford, J.: Collaborative automated trust negotiation in peer-to-peer systems. In: IEEE International Conference on Peer-to-Peer Computing, pp. 108–115 (2004)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Janicke, H., Sarrab, M., Aldabbas, H. (2012). Controlling Data Dissemination. In: Garcia-Alfaro, J., Navarro-Arribas, G., Cuppens-Boulahia, N., de Capitani di Vimercati, S. (eds) Data Privacy Management and Autonomous Spontaneus Security. DPM SETOP 2011 2011. Lecture Notes in Computer Science, vol 7122. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-28879-1_21
Download citation
DOI: https://doi.org/10.1007/978-3-642-28879-1_21
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-28878-4
Online ISBN: 978-3-642-28879-1
eBook Packages: Computer ScienceComputer Science (R0)