Dynamic and Scalable Enforcement of Access Control Policies for Big Data

Anisetti, Marco; Ardagna, Claudio Agostino; Braghin, Chiara; Damiani, Ernesto; Polimeno, Antongiacomo; Balestrucci, Alessandro

doi:10.1145/3444757.3485107

Cited by 11 publications

(7 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…revolution, with the European strategy for data 4 and other initiatives, such as the Data Governance Act 5 and the Common European Data spaces. 6 The potential economic impact is huge, enabling companies to fully capitalize on the latent value embedded within their data.…”

Section: Themementioning

confidence: 99%

“…However, data pooling and sharing lose value without robust data protection measures. A considerable research and development effort has been dedicated to provide advanced data governance solutions for (balancing) data quality and protection [4]. While significant, this effort is inadequate in today's data economy for several reasons: i) (unknown) data providers and consumers come and go; ii) each party has its own set of potentially conflicting requirements that must be enforced on collected and exchanged data, analytics results, metadata, primary and secondary usage of data, recursively.…”

Section: Themementioning

confidence: 99%

See 1 more Smart Citation

Revisiting Trust Management in the Data Economy: A Road Map

Ardagnaa,

Bena,

Bennani

et al. 2024

IEEE Internet Comput.

View full text Add to dashboard Cite

In the last two decades, multiple ICT evolutions boosted the ability to collect and analyze vast amounts of data (on the order of Zettabytes). Collectively, they paved the way for the so-called data economy, revolutionizing most sectors of our society, including healthcare, transportation, and grids. At the core of this revolution, distributed data-intensive applications compose services operated by multiple parties in the cloud-edge continuum; they process, manage and exchange massive amounts of data at an unprecedented rate. However, data hold little value without adequate data protection. Traditional solutions, which aim to balance data quality and protection, are insufficient to address the peculiarities of the data economy, including trustworthy data sharing and management, composite service support, and multi-party data life cycle. This article analyzes how trust management systems can regain the lead in supporting trustworthy data-intensive applications, discussing current challenges and proposing a roadmap for new-generation trust management systems in the data economy.The data economy is commonly defined as an ecosystem of players collaborating to share digital data as products and services, to create applications that extract value from them. 1 The data economy transforms the design and development of applications, prioritizing data processing, management and sharing. This shift is fostering the emergence of new platforms and environments, such as data marketplaces and data spaces, where data can be pooled and shared to maximize data quality and trustworthiness, and distributed data management systems ensuring guarantees to store, manage versions, and supply data XXXX-XXX © 2024 IEEE Digital Object Identifier 10.1109/XXX.0000.00000001 European Commission, "Communication on Building a European Data Economy", https://ec.europa.eu/newsroom/dae/ document.cfm?doc_id=41205 for complex analytics processes. Data marketplaces 2 are (cloud) platforms where users can engage in selfservice buying and selling of data, ensuring both security and high quality. Data spaces expand upon this concept to define a complete environment where data infrastructures and governance frameworks are integrated to streamline data management. Within these environments, data consumers and providers collaborate to surmount existing legal and technical barriers to data sharing, thereby securely unlocking the full potential of their data. 3 The European Union (EU) is leading the way in this 2 https://joinup.ec.europa.eu/collection/elise-europeanlocation-interoperability-solutions-e-government/glossary/ term/data-marketplace 3 https://internationaldataspaces.org/, https://digitalstrategy.ec.europa.eu/en/library/staff-working-documentdata-spaces Month

show abstract

Section: Themementioning

confidence: 99%

Section: Themementioning

confidence: 99%

Revisiting Trust Management in the Data Economy: A Road Map

Ardagnaa,

Bena,

Bennani

et al. 2024

IEEE Internet Comput.

View full text Add to dashboard Cite

show abstract

“…• R1: Right to access the data must be evaluated before data analytics takes place. • R2: As federations within big data ecosystem must be considered, authentication should be managed by a separate and integrated module [1] • R3: data must be properly protected and shared only to authorized users and for authorized operations. Access control must protect data during their entire life cycle • R4: Fine-grained access control must be supported, dealing with both structured and unstructured data.…”

Section: A Generalitiesmentioning

confidence: 99%

Real-Time Anonymization of Sensitive Personal Data Using a Service-Based Architecture

Giampaolo,

Izzo,

Siccardi

et al. 2023

2023 IEEE International Conference on Web Services (ICWS)

Self Cite

View full text Add to dashboard Cite

Anonymization is an important aspect of data privacy protection, especially in the context of sensitive personal information collected through sensors. In this paper, we propose a new service-based architecture for anonymizing such data in real-time, ensuring that data is accessible to authorized users while maintaining privacy. Our architecture is based on the annotation of data at ingestion time, where privacy levels are assigned to sets of columns. The anonymization procedure is performed by compressing and encoding the data through an autoencoder model, where the encoder and decoder functions are defined as parametric functions composed of multiple hidden layers.

show abstract

“…However, it must be noted that these technical solutions do not provide an inclusive solution to how CDS can be achieved, such as by providing a practical guideline covering the challenges and requirements. Technical solutions include a solution by Anisetti et al (2021), where they proposed an access control system that is supposed to solve data sharing and data protection within a big data environment. Although the solution is a step forward in the technical data sharing aspect of CDS, it does not cover achieving CDS comprehensively.…”

Section: Problem Statementmentioning

confidence: 99%

“…The second solution identified is by Anisetti et al (2021), where they proposed an access control system that is supposed to solve data sharing and data protection within a big data environment. This solution provides a partial solution for CDS, as although it is mentioned that the system 'should' protect the privacy of sensitive data, it is not guaranteed.…”

Section: Cross-sectoral Data Sharingmentioning

confidence: 99%

Smart City Development: Data Sharing vs. Data Protection Legislations

Joyce,

Javidroozi

2023

Preprint

View full text Add to dashboard Cite

Dynamic and Scalable Enforcement of Access Control Policies for Big Data

Cited by 11 publications

References 21 publications

Revisiting Trust Management in the Data Economy: A Road Map

Revisiting Trust Management in the Data Economy: A Road Map

Real-Time Anonymization of Sensitive Personal Data Using a Service-Based Architecture

Smart City Development: Data Sharing vs. Data Protection Legislations

Contact Info

Product

Resources

About