The advancements in ICT allow people to use and access resources and services on the web anywhere and anytime. Servers offering resources typically require users to release information about them, which is then used to enforce possible access policies on the offered services. Effective access to such resources requires the development of approaches for enabling the user to organise and manage all her credentials and regulate their release when interacting with other parties over the web. In this paper, we provide a means for the user to specify how much she values the release of different properties, credentials, or combinations thereof as well as additional constraints that she might impose on information disclosure. Exploiting a graph modelling of the problem, the user can determine the credentials and properties to disclose to satisfy a server request while minimising the sensitivity of the information disclosed. We develop a heuristic approach that shows execution times compatible with the requirements of interactive access to web resources.

Minimising disclosure of client information in credential-based interactions / C.A. Ardagna, S. De Capitani di Vimercati, S. Foresti, S. Paraboschi, P. Samarati. - In: INTERNATIONAL JOURNAL OF INFORMATION PRIVACY, SECURITY AND INTEGRITY (PRINT). - ISSN 1741-8496. - 1:2-3(2012 Mar), pp. 205-233. [10.1504/IJIPSI.2012.046133]

Minimising disclosure of client information in credential-based interactions

C.A. Ardagna
Primo
;
S. De Capitani di Vimercati
Secondo
;
S. Foresti;P. Samarati
Ultimo
2012

Abstract

The advancements in ICT allow people to use and access resources and services on the web anywhere and anytime. Servers offering resources typically require users to release information about them, which is then used to enforce possible access policies on the offered services. Effective access to such resources requires the development of approaches for enabling the user to organise and manage all her credentials and regulate their release when interacting with other parties over the web. In this paper, we provide a means for the user to specify how much she values the release of different properties, credentials, or combinations thereof as well as additional constraints that she might impose on information disclosure. Exploiting a graph modelling of the problem, the user can determine the credentials and properties to disclose to satisfy a server request while minimising the sensitivity of the information disclosed. We develop a heuristic approach that shows execution times compatible with the requirements of interactive access to web resources.
Privacy ; User credentials ; Minimal disclosure ; Portfolio management ; Client information ; Information disclosure ; Graph modelling ; Security ; Web resources ; Web access.
Settore INF/01 - Informatica
mar-2012
Article (author)
File in questo prodotto:
File Dimensione Formato  
ijipsi-adfps12.pdf

Open Access dal 01/10/2012

Tipologia: Post-print, accepted manuscript ecc. (versione accettata dall'editore)
Dimensione 850.46 kB
Formato Adobe PDF
850.46 kB Adobe PDF Visualizza/Apri
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/172554
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus ND
  • ???jsp.display-item.citation.isi??? ND
social impact