Loading [MathJax]/extensions/TeX/extpfeil.js
Responsibility Attribution Against Data Breaches | IEEE Conference Publication | IEEE Xplore

Responsibility Attribution Against Data Breaches


Abstract:

Electronic crimes like data breaches in healthcare systems are often a fundamental failures of access control mechanisms. Most of current access control systems do not pr...Show More

Abstract:

Electronic crimes like data breaches in healthcare systems are often a fundamental failures of access control mechanisms. Most of current access control systems do not provide an accessible way to engage users in decision making processes, about who should have access to what data and when. We advocate that a policy ontology can contribute towards the development of an effective access control system by attributing responsibility for data breaches. We propose a responsibility attribution model as a theoretical construct and discuss its implication by introducing a cost model for data breach countermeasures. Then, a policy ontology is presented to realize the proposed responsibility and cost models. An experimental study on the performance of the proposed framework is conducted with respect to a more generic access control framework. The practicality of the proposed solution is demonstrated through a case study from the healthcare domain.
Date of Conference: 02-05 February 2020
Date Added to IEEE Xplore: 11 May 2020
ISBN Information:
Conference Location: Doha, Qatar

References

References is not available for this document.