DSpace Repository

An ontology based model for trust negotiation in open systems

Show simple item record

dc.contributor.advisor Phan Minh Dung, Professor (Chairman) en_US
dc.contributor.author Doudpota, Sher Muhammad en_US
dc.date.accessioned 2015-01-12T10:40:53Z
dc.date.available 2015-01-12T10:40:53Z
dc.date.issued 2008-04 en_US
dc.identifier.other AIT Thesis no.CS-08-03 en_US
dc.identifier.uri http://www.cs.ait.ac.th/xmlui/handle/123456789/353
dc.description 60 p. en_US
dc.description.abstract In this thesis, we present an ontology-based framework to derive a secure trust negotiation approach that can maintain, share and protect a user information system. We envision a Personal Health Record (PHR) system being a candidate case for our proposed framework. Such information systems are often used by individuals to store their personal health records. PHR are used to provide information to people such as a physician or family member(s) or friend (s). In existing systems such as Microsoft’s HealthVault, access is allowed by verifying conventional username and password attributes which turns out to be difficult for a typical physician who may have tens or hundreds of such patients. In addition, since they provide unrestricted access, exposing undesired pieces of information. For example, a user may wish to show his/her diseases list to a physician but at the same time he might not want to show list of allergies available in same record. In our approach, we propose an access control mechanism on PHR using ontology-based trust negotiation model. In trust negotiation system, every resource is protected by an access control policy which defines the attribute of counterpart to be proved in order to gain access on that resource. Due to hierarchical structure of ontology-based PHR, record holder can define separate access control policies for each component in PHR. This means, PHR record holder can partially share his/her record with any other person by defining access control policy for each component in PHR separately. In addition, ontology-based framework seems suitable since trust negotiation normally takes place between strangers often related to different domains. There is always a risk that participant in a negotiation session may refer to the same attribute with different names, such as confusing gender with sex. The negotiation agents on both sides may not know the relationship between these attributes. This may result in failure of negotiation. We assert the use of ontology on both ends of participants, which can hold the definition of all attributes of participant and relationship among those attributes using basic ontology properties such as isSameAs, isDiffenrentFrom, isOppsiteOf etc. We successfully demonstrate that use of ontologies in trust negotiation; can make access control policy specification and maintenance easier. The system also explains how ontologies could be used to avoid possession sensitive and other privacy attacks on negotiation. en_US
dc.description.sponsorship Sukkur IBA, Pakistan - AIT Fellowship en_US
dc.language.iso en en_US
dc.publisher Asian Institute of Technology en_US
dc.relation.ispartofseries AIT Publications; en_US
dc.subject Personal information management en_US
dc.subject Patients -- Databases -- Access control en_US
dc.title An ontology based model for trust negotiation in open systems en_US
dc.type Thesis en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search DSpace


Advanced Search

Browse

My Account