MATS: A Multi-aspect and Adaptive Trust-based Situation-aware Access Control Framework for Federated Data-as-a-Service Systems

Thumbnail Image

Files

1154.pdf (487.13 KB)

Links to Files

https://ieeexplore.ieee.org/document/9860168

Permanent Link

http://hdl.handle.net/11603/25202
 https://doi.org/10.1109/SCC55611.2022.00021

Collections

UMBC Information Systems Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

https://orcid.org/0000-0002-6984-7248
 https://orcid.org/0000-0002-6354-1686

Date

2022-08-22

Type of Work

conference papers and proceedings
preprints
Text

Department

Program

Citation of Original Publication

D. -Y. Kim, N. Alodadi, Z. Chen, K. P. Joshi, A. Crainiceanu and D. Needham, "MATS: A Multi-aspect and Adaptive Trust-based Situation-aware Access Control Framework for Federated Data-as-a-Service Systems," 2022 IEEE International Conference on Services Computing (SCC), Barcelona, Spain, 2022, pp. 54-64, doi: 10.1109/SCC55611.2022.00021.

Rights

This work was written as part of one of the author's official duties as an Employee of the United States Government and is therefore a work of the United States Government. In accordance with 17 U.S.C. 105, no copyright protection is available for such works under U.S. Law.
Public Domain Mark 1.0

Subjects

UMBC Ebiquity Research Group

Abstract

Federated Data-as-a-Service systems are helpful in applications that require dynamic coordination of multiple organizations, such as maritime search and rescue, disaster relief, or contact tracing of an infectious disease. In such systems it is often the case that users cannot be wholly trusted, and access control conditions need to take the level of trust into account. Most existing work on trust-based access control in web services focuses on a single aspect of trust, like user credentials, but trust often has multiple aspects such as users’ behavior and their organization. In addition, most existing solutions use a fixed threshold to determine whether a user’s trust is sufficient, ignoring the dynamic situation where the trade-off between benefits and risks of granting access should be considered. We have developed a Multi-aspect and Adaptive Trust-based Situation-aware Access Control Framework we call “MATS” for federated data sharing systems. Our framework is built using Semantic Web technologies and uses game theory to adjust a system’s access decisions based on dynamic situations. We use query rewriting to implement this framework and optimize the system’s performance by carefully balancing efficiency and simplicity. In this paper we present this framework in detail, including experimental results that validate the feasibility of our approach.