The conflict between the need of protecting and sharing data is hampering the spread of big data applications. Security and privacy assurance is required to protect data owners, while data access and sharing are fundamental to implement smart big data solutions. In this context, access control systems can assume a central role in balancing data protection and data sharing. However, existing access control solutions are not general and scalable enough to address the software and technological complexity of big data ecosystems, being unable to support such a dynamic and collaborative environment. In this paper, we propose an access control system that enforces access to data in a distributed, multi-party big data environment. It is based on data annotations and secure data transformations performed at ingestion time. We show the feasibility of our approach in the smart city domain using an Apache-based big data engine.
Dynamic and Scalable Enforcement of Access Control Policies for Big Data / M. Anisetti, C.A. Ardagna, C. Braghin, E. Damiani, A. Polimeno, A. Balestrucci - In: MEDES '21:[s.l] : Association for Computing Machinery, 2021. - ISBN 9781450383141. - pp. 71-78 (( Intervento presentato al 13. convegno International Conference on Management of Digital EcoSystems tenutosi a Virtual nel 2021 [10.1145/3444757.3485107].
Dynamic and Scalable Enforcement of Access Control Policies for Big Data
M. Anisetti;C.A. Ardagna;C. Braghin;E. Damiani;A. Polimeno;
2021
Abstract
The conflict between the need of protecting and sharing data is hampering the spread of big data applications. Security and privacy assurance is required to protect data owners, while data access and sharing are fundamental to implement smart big data solutions. In this context, access control systems can assume a central role in balancing data protection and data sharing. However, existing access control solutions are not general and scalable enough to address the software and technological complexity of big data ecosystems, being unable to support such a dynamic and collaborative environment. In this paper, we propose an access control system that enforces access to data in a distributed, multi-party big data environment. It is based on data annotations and secure data transformations performed at ingestion time. We show the feasibility of our approach in the smart city domain using an Apache-based big data engine.File | Dimensione | Formato | |
---|---|---|---|
MEDES2021.pdf
accesso aperto
Tipologia:
Post-print, accepted manuscript ecc. (versione accettata dall'editore)
Dimensione
722.32 kB
Formato
Adobe PDF
|
722.32 kB | Adobe PDF | Visualizza/Apri |
3444757.3485107.pdf
accesso riservato
Tipologia:
Publisher's version/PDF
Dimensione
1.41 MB
Formato
Adobe PDF
|
1.41 MB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.