A fine-grained policy model for Provenance-based Access Control and Policy Algebras.pdf
This work addresses access control challenges in data security by providing a more expressive model, though it appears incremental as it builds on existing provenance-based approaches.
The paper tackles the problem of limited expressiveness in existing access control models by proposing a fine-grained provenance-based policy model that uses historical data operations to determine access, resulting in a four-valued decision set for precise restriction matching.
A fine-grained provenance-based access control policy model is proposed in this paper, in order to improve the express performance of existing model. This method employs provenance as conditions to determine whether a piece of data can be accessed because historical operations performed on data could reveal clues about its sensitivity and vulnerability. Particularly, our proposed work provides a four-valued decision set which allows showing status to match a restriction particularly. This framework consists of target policy, access control policy, and policy algebras. With the complete definition and algebra system construction, a practical fine-grained access control policy model is developed.