Managing data security in e-markets through relationship driven access control

Data security in e-markets is vital to maintaining trust among trading partners. In an e-market, companies must share information to improve operational efficiency in their supply chains, while at the same time, access to sensitive information by rival companies should be prevented. In today's...

Full description

Saved in:
Bibliographic Details
Published in:Journal of Database Management 2012, Vol.23 (2), p.1
Main Authors: Wang, Harry Jiannan, Zhao, J. Leon, Chen, Guoqing
Format: Report
Language:English
Subjects:
Business-to-business market
Data security
Electronic commerce
Logistics
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Data security in e-markets is vital to maintaining trust among trading partners. In an e-market, companies must share information to improve operational efficiency in their supply chains, while at the same time, access to sensitive information by rival companies should be prevented. In today's highly dynamic business environment, the relationships among companies in e-markets are constantly changing while these relationships determine how company information should be shared with other companies. In this paper, the authors show that existing access control models are not designed for managing data security in e-markets with dynamic company relationships and propose a Relationship Driven Access Control (RDAC) model to provide a better solution. In particular, the authors design a rule-based approach for managing dynamic company relationships and a secure query processing mechanism to filter shared information based on company relationships. A prototype system is developed to demonstrate and validate the authors 'RDAC model.
ISSN:1063-8016
DOI:10.4018/jdm.2012040101