We address the problem of enabling clients to regulate disclosure of their credentials and properties when interacting with servers in open scenarios. We provide a means for clients to specify the sensitivity of information in their portfolio at a fine-grain level and to determine the credentials and properties to disclose to satisfy a server request while minimizing the sensitivity of the information disclosed. Exploiting a graph modeling of the problem, we develop a heuristic approach for determining a disclosure minimizing released information, that offers execution times compatible with the requirements of interactive access to Web resources.
Minimizing disclosure of private information in credential-based interactions : a graph-based approach / C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, P. Samarati - In: SocialCom 2010 : the second IEEE International conference on social computing. PASSAT 2010 : the second IEEE International conference on privacy, security, risk and trust : Minneapolis, Minnesota, USA, 20-22 august 2010 : proceedingsLos Alamitos : Institute of electrical and electronics engineers, 2010. - ISBN 9781424484393. - pp. 743-750 (( Intervento presentato al 2. convegno IEEE International Conference on Social Computing tenutosi a Minneapolis, USA nel 2010 [10.1109/SocialCom.2010.115].
Minimizing disclosure of private information in credential-based interactions : a graph-based approach
C.A. ArdagnaPrimo
;S. De Capitani di VimercatiSecondo
;S. Foresti;P. SamaratiUltimo
2010
Abstract
We address the problem of enabling clients to regulate disclosure of their credentials and properties when interacting with servers in open scenarios. We provide a means for clients to specify the sensitivity of information in their portfolio at a fine-grain level and to determine the credentials and properties to disclose to satisfy a server request while minimizing the sensitivity of the information disclosed. Exploiting a graph modeling of the problem, we develop a heuristic approach for determining a disclosure minimizing released information, that offers execution times compatible with the requirements of interactive access to Web resources.File | Dimensione | Formato | |
---|---|---|---|
passat2010.pdf
accesso aperto
Tipologia:
Publisher's version/PDF
Dimensione
624.61 kB
Formato
Adobe PDF
|
624.61 kB | Adobe PDF | Visualizza/Apri |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.