Minimizing disclosure of private information in credential-based interactions : a graph-based approach

Ardagna, C.A.; De Capitani di Vimercati, S.; Foresti, S.; Paraboschi, S.; Samarati, P.

doi:10.1109/SocialCom.2010.115

We address the problem of enabling clients to regulate disclosure of their credentials and properties when interacting with servers in open scenarios. We provide a means for clients to specify the sensitivity of information in their portfolio at a fine-grain level and to determine the credentials and properties to disclose to satisfy a server request while minimizing the sensitivity of the information disclosed. Exploiting a graph modeling of the problem, we develop a heuristic approach for determining a disclosure minimizing released information, that offers execution times compatible with the requirements of interactive access to Web resources.

Minimizing disclosure of private information in credential-based interactions : a graph-based approach / C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, P. Samarati - In: SocialCom 2010 : the second IEEE International conference on social computing. PASSAT 2010 : the second IEEE International conference on privacy, security, risk and trust : Minneapolis, Minnesota, USA, 20-22 august 2010 : proceedingsLos Alamitos : Institute of electrical and electronics engineers, 2010. - ISBN 9781424484393. - pp. 743-750 (( Intervento presentato al 2. convegno IEEE International Conference on Social Computing tenutosi a Minneapolis, USA nel 2010 [10.1109/SocialCom.2010.115].

Minimizing disclosure of private information in credential-based interactions : a graph-based approach

C.A. Ardagna^Primo;S. De Capitani di Vimercati^Secondo;S. Foresti;S. Paraboschi;P. Samarati^Ultimo

2010

Abstract

We address the problem of enabling clients to regulate disclosure of their credentials and properties when interacting with servers in open scenarios. We provide a means for clients to specify the sensitivity of information in their portfolio at a fine-grain level and to determine the credentials and properties to disclose to satisfy a server request while minimizing the sensitivity of the information disclosed. Exploiting a graph modeling of the problem, we develop a heuristic approach for determining a disclosure minimizing released information, that offers execution times compatible with the requirements of interactive access to Web resources.

Scheda breve

Scheda completa

Scheda completa (DC)

	Parole chiave
	
			Credentials; Portfolio management; Privacy
		
	Settori scientifico-disciplinari del contributo
	
			Settore INF/01 - Informatica
		
	Data di pubblicazione
	
			2010
		
	DOI
	
			https://dx.doi.org/10.1109/SocialCom.2010.115
		
	Tipologia
	
			Book Part (author)
		
	Appare nelle tipologie:
	
			03 - Contributo in volume

File in questo prodotto:

File	Dimensione	Formato
passat2010.pdf accesso aperto Tipologia: Publisher's version/PDF Dimensione 624.61 kB Formato Adobe PDF Visualizza/Apri	624.61 kB	Adobe PDF	Visualizza/Apri

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/147773

Citazioni

ND

10

ND

IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca