PACLP: a fine-grained partition-based access control policy language for provenance
Abstract
Even though the idea of partitioning provenance graphs for access control was previously proposed, employing segments of the provenance DAG for fine-grained access control to provenance data has not been thoroughly explored. Hence, we take segments of a provenance graph, based on the extended OPM, and defined use a variant of regular expressions, and utilize them in our fine-grained access control language. It can not only return partial graphs to answer access requests but also introduce segments as restrictions in order to screen targeted data.
- Publication:
-
arXiv e-prints
- Pub Date:
- December 2019
- DOI:
- 10.48550/arXiv.1912.00442
- arXiv:
- arXiv:1912.00442
- Bibcode:
- 2019arXiv191200442F
- Keywords:
-
- Computer Science - Cryptography and Security;
- Computer Science - Databases