Managing data security in e-markets through relationship driven access control

Research output: Journal Publications and ReviewsRGC 21 - Publication in refereed journalpeer-review

15 Scopus Citations
View graph of relations

Author(s)

Related Research Unit(s)

Detail(s)

Original languageEnglish
Pages (from-to)1-21
Journal / PublicationJournal of Database Management
Volume23
Issue number2
Publication statusPublished - Apr 2012

Abstract

Data security in e-markets is vital to maintaining trust among trading partners. In an e-market, companies must share information to improve operational efficiency in their supply chains, while at the same time, access to sensitive information by rival companies should be prevented. In today's highly dynamic business environment, the relationships among companies in e-markets are constantly changing while these relationships determine how company information should be shared with other companies. In this paper, the authors show that existing access control models are not designed for managing data security in e-markets with dynamic company relationships and propose a Relationship Driven Access Control (RDAC) model to provide a better solution. In particular, the authors design a rule-based approach for managing dynamic company relationships and a secure query processing mechanism to filter shared information based on company relationships. A prototype system is developed to demonstrate and validate the authors' RDAC model. Copyright © 2012, IGI Global.

Research Area(s)

  • Access Control Model, Data Security, E-Market, Relationship Driven Access Control, Rule Engine, Supply Chain Management

Citation Format(s)