The conflict between the need of protecting and sharing data is hampering the spread of big data applications. Security and privacy assurance is required to protect data owners, while data access and sharing are fundamental to implement smart big data solutions. In this context, access control systems can assume a central role in balancing data protection and data sharing. However, existing access control solutions are not general and scalable enough to address the software and technological complexity of big data ecosystems, being unable to support such a dynamic and collaborative environment. In this paper, we propose an access control system that enforces access to data in a distributed, multi-party big data environment. It is based on data annotations and secure data transformations performed at ingestion time. We show the feasibility of our approach in the smart city domain using an Apache-based big data engine.

Dynamic and Scalable Enforcement of Access Control Policies for Big Data / M. Anisetti, C.A. Ardagna, C. Braghin, E. Damiani, A. Polimeno, A. Balestrucci - In: MEDES '21:[s.l] : Association for Computing Machinery, 2021. - ISBN 9781450383141. - pp. 71-78 (( Intervento presentato al 13. convegno International Conference on Management of Digital EcoSystems tenutosi a Virtual nel 2021 [10.1145/3444757.3485107].

Dynamic and Scalable Enforcement of Access Control Policies for Big Data

M. Anisetti;C.A. Ardagna;C. Braghin;E. Damiani;A. Polimeno;
2021

Abstract

The conflict between the need of protecting and sharing data is hampering the spread of big data applications. Security and privacy assurance is required to protect data owners, while data access and sharing are fundamental to implement smart big data solutions. In this context, access control systems can assume a central role in balancing data protection and data sharing. However, existing access control solutions are not general and scalable enough to address the software and technological complexity of big data ecosystems, being unable to support such a dynamic and collaborative environment. In this paper, we propose an access control system that enforces access to data in a distributed, multi-party big data environment. It is based on data annotations and secure data transformations performed at ingestion time. We show the feasibility of our approach in the smart city domain using an Apache-based big data engine.
Settore INF/01 - Informatica
   Intelligent Management of Processes, Ethics and Technology for Urban Safety (IMPETUS)
   IMPETUS
   EUROPEAN COMMISSION
   H2020
   883286
2021
Book Part (author)
File in questo prodotto:
File Dimensione Formato  
MEDES2021.pdf

accesso aperto

Tipologia: Post-print, accepted manuscript ecc. (versione accettata dall'editore)
Dimensione 722.32 kB
Formato Adobe PDF
722.32 kB Adobe PDF Visualizza/Apri
3444757.3485107.pdf

accesso riservato

Tipologia: Publisher's version/PDF
Dimensione 1.41 MB
Formato Adobe PDF
1.41 MB Adobe PDF   Visualizza/Apri   Richiedi una copia
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/887842
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 14
  • ???jsp.display-item.citation.isi??? ND
social impact