Abstract:
Many service providers offer their services in exchange for users’ private data. Despite new regulations created to protect users privacy, users are often given little ch...Show MoreMetadata
Abstract:
Many service providers offer their services in exchange for users’ private data. Despite new regulations created to protect users privacy, users are often given little choice over the way their data is collected and used. To address privacy concerns in cloud-IoT applications, we propose to use an architecture, called Data Bank, which gives users fine-grained control over their data. Data Bank uses a category-based data access (CBDA) model which covers the whole data life-cycle, from data collection from IoT devices to data sharing with services. We show how dynamic policies can be specified using a new attribute-based instance of CBDA, and describe the use of policy graphs to visualise and analyse policies.
Published in: IEEE Transactions on Dependable and Secure Computing ( Volume: 20, Issue: 4, 01 July-Aug. 2023)