Title :
Detection of Conflicts and Inconsistencies in Taxonomy-Based Authorization Policies
Author :
Mohan, Apurva ; Blough, Douglas M. ; Kurc, Tahsin ; Post, Andrew ; Saltz, Joel
Author_Institution :
Honeywell ACS Labs., Honeywell Int. Inc., Golden Valley, MN, USA
Abstract :
The values of data elements stored in biomedical databases often draw from biomedical ontologies. Authorization rules can be defined on these ontologies to control access to sensitive and private data elements in such databases. Authorization rules may be specified by different authorities at different times for various purposes. Since such policy rules can conflict with each other, access to sensitive information may inadvertently be allowed. Another problem in biomedical data protection is inference attacks, in which a user who has legitimate access to some data elements is able to infer information related to other data elements. We propose and evaluate two strategies; one for detecting policy inconsistencies to avoid potential inference attacks and the other for detecting policy conflicts.
Keywords :
authorisation; bioinformatics; inference mechanisms; ontologies (artificial intelligence); access control; biomedical data protection; biomedical database; biomedical ontology; conflict detection; data element; inference attack; policy conflict; taxonomy-based authorization policy; Arrays; Authorization; Databases; Detection algorithms; Inference algorithms; Ontologies; Authorization policy; Biomedical ontology; Inference attacks; Policy conflicts;
Conference_Titel :
Bioinformatics and Biomedicine (BIBM), 2011 IEEE International Conference on
Conference_Location :
Atlanta, GA
Print_ISBN :
978-1-4577-1799-4
DOI :
10.1109/BIBM.2011.79
