English
Related papers

Related papers: Extending Expressive Access Policies with Privacy …

200 papers

In online social networks (OSN), users quite usually disclose sensitive information about themselves by publishing messages. At the same time, they are (in many cases) unable to properly manage the access to this sensitive information due…

Social and Information Networks · Computer Science 2016-07-05 Malik Imran-Daud , David Sánchez , Alexandre Viejo

Inspired by the design patterns of object-oriented software architecture, we offer an initial set of "privacy patterns". Our intent is to describe the most important ways in which software systems can offer privacy to their stakeholders. We…

Software Engineering · Computer Science 2016-12-07 Clark Thomborson

Data has become a crucial resource in the digital economy, fostering initiatives for secure and sovereign data sharing frameworks such as Data Spaces. However, these distributed environments require fine-grained access control mechanisms…

Cryptography and Security · Computer Science 2025-06-02 Irene Plaza-Ortiz , Andres Munoz-Arcentales , Joaquín Salvachúa , Carlos Aparicio , Gabriel Huecas , Enrique Barra

Individuals are encouraged to prove their eligibility to access specific services regularly. However, providing various organizations with personal data spreads sensitive information and endangers people's privacy. Hence, privacy-preserving…

Cryptography and Security · Computer Science 2022-12-27 Mina Namazi , Duncan Ross , Xiaojie Zhu , Erman Ayday

Administrator-centered access control failures can cause data breaches, putting organizations at risk of financial loss and reputation damage. Existing graphical policy configuration tools and automated policy generation frameworks attempt…

Cryptography and Security · Computer Science 2023-10-06 Sakuna Harinda Jayasundara , Nalin Asanka Gamagedara Arachchilage , Giovanni Russello

Access control is fundamental to computer security, and has thus been the subject of extensive formal study. In particular, *relative expressiveness analysis* techniques have used formal mappings called *simulations* to explore whether one…

Cryptography and Security · Computer Science 2015-05-05 William C. Garrison , Adam J. Lee

Distributed certification is a set of mechanisms that allows an all-knowing prover to convince the units of a communication network that the network's state has some desired property, such as being 3-colorable or triangle-free. Classical…

Distributed, Parallel, and Cluster Computing · Computer Science 2025-02-12 Alex B. Grilo , Ami Paz , Mor Perry

Language-based information flow security aims to decide whether an action-observable program can unintentionally leak confidential information if it has the authority to access confidential data. Recent concerns about declassification…

Cryptography and Security · Computer Science 2016-11-18 Cong Sun , Liyong Tang , Zhong Chen

All current approaches for statically enforcing differential privacy in higher order languages make use of either linear or relational refinement types. A barrier to adoption for these approaches is the lack of support for expressing these…

Programming Languages · Computer Science 2021-10-15 Chike Abuah , David Darais , Joseph P. Near

The privacy of personal information has received significant attention in mobile software. Although previous researchers have designed some methods to identify the conflict between app behavior and privacy policies, little is known about…

Software Engineering · Computer Science 2023-09-12 Kaifa Zhao , Xian Zhan , Le Yu , Shiyao Zhou , Hao Zhou , Xiapu Luo , Haoyu Wang , Yepang Liu

We develop a modeling technique based on interpreted systems in order to verify temporal-epistemic properties over access control policies. This approach enables us to detect information flow vulnerabilities in dynamic policies by verifying…

Logic in Computer Science · Computer Science 2014-01-21 Masoud Koleini , Eike Ritter , Mark Ryan

Protecting secrets is a key challenge in our contemporary information-based era. In common situations, however, revealing secrets appears unavoidable, for instance, when identifying oneself in a bank to retrieve money. In turn, this may…

Cryptography and Security · Computer Science 2022-02-17 Pouriya Alikhani , Nicolas Brunner , Claude Crépeau , Sébastien Designolle , Raphaël Houlmann , Weixu Shi , Nan Yang , Hugo Zbinden

We present SAFE, an integrated system for managing trust using a logic-based declarative language. Logical trust systems authorize each request by constructing a proof from a context---a set of authenticated logic statements representing…

Cryptography and Security · Computer Science 2015-10-19 Vamsi Thummala , Jeff Chase

Cedar is a new authorization policy language designed to be ergonomic, fast, safe, and analyzable. Rather than embed authorization logic in an application's code, developers can write that logic as Cedar policies and delegate access…

The enforcement of security policies in outsourced environments is still an open challenge for policy-based systems. On the one hand, taking the appropriate security decision requires access to the policies. However, if such access is…

Cryptography and Security · Computer Science 2013-06-21 Muhammad Rizwan Asghar , Mihaela Ion , Giovanni Russello , Bruno Crispo

Digital credentials represent crucial elements of digital identity on the Internet. Credentials should have specific properties that allow them to achieve privacy-preserving capabilities. One of these properties is selective disclosure,…

Cryptography and Security · Computer Science 2024-12-24 Šeila Bećirović Ramić , Irfan Prazina , Damir Pozderac , Razija Turčinhodžić Mulahasanović , Saša Mrdović

Systems managing Verifiable Credentials are becoming increasingly popular. Unfortunately, their support for revoking previously issued credentials allows verifiers to effectively monitor the validity of the credentials, which is sensitive…

Cryptography and Security · Computer Science 2025-09-16 Praveensankar Manimaran , Mayank Raikwar , Thiago Garrett , Arlindo F. da Conceição , Leander Jehl , Roman Vitenberg

Anonymizing sensitive information in user text is essential for privacy, yet existing methods often apply uniform treatment across attributes, which can conflict with communicative intent and obscure necessary information. This is…

Cryptography and Security · Computer Science 2026-01-09 Weihao Shen , Yaxin Xu , Shuang Li , Wei Chen , Yuqin Lan , Meng Yuan , Fuzhen Zhuang

This work provides a study to demonstrate the potential of using off-the-shelf programming languages and their theories to build sound language-based-security tools. Our study focuses on information flow security encompassing…

Cryptography and Security · Computer Science 2020-07-20 Minh Ngo , David A. Naumann , Tamara Rezk

Existing methods for verifying access control policies require the policy to be complete and fully determined before verification can proceed, but in practice policies are developed iteratively, composed from independently maintained…

Cryptography and Security · Computer Science 2026-03-16 Alexander V. Gheorghiu