Cloud-based identity and identity meta-data: secure and control own data in globalization era.
Spyra, Grzegorz; Buchanan, William J; Cruickshank, Peter; Ekonomou, Elias
Prof Bill Buchanan B.Buchanan@napier.ac.uk
Dr Peter Cruickshank P.Cruickshank@napier.ac.uk
Dr Elias Ekonomou E.Ekonomou@napier.ac.uk
This paper proposes a new identity, and its underlying meta-data, model. The approach enables secure spanning of identity meta-data across many boundaries such as health-care, financial and educational institutions, including all others that store and process sensitive personal data. It introduces the new concepts of Compound Personal Record (CPR) and Compound Identifiable Data (CID) ontology, which aim to move toward own your own data model. The CID model ensures: authenticity of identity meta-data; high availability via unified Cloud-hosted XML data structure; and privacy through encryption, obfuscation and anonymity applied to Ontology-based XML distributed content. Additionally CID via XML ontologies is enabled for identity federation. The paper also proposes that access over sensitive data is strictly governed through an access control model with granular policy enforcement on the service side. This includes the involvement of relevant access control model entities which are enabled to authorize an ad-hoc break-glass data access which should give high accountability for data access attempts.
Spyra, G., Buchanan, W. J., Cruickshank, P., & Ekonomou, E. (2014). Cloud-based identity and identity meta-data: secure and control own data in globalization era. International Journal of Reliable and Quality E-Healthcare, 3, https://doi.org/10.4018/ijrqeh.2014010105
|Journal Article Type||Article|
|Deposit Date||Jul 1, 2014|
|Publicly Available Date||Dec 31, 2014|
|Journal||International Journal of Reliable and Quality E-Healthcare|
|Peer Reviewed||Peer Reviewed|
|Keywords||Identity; metadata; personal data; computer security; Compound Personal Record (CPR); Compound Identifiable Data (CID); access control;|
Cloud-based identity and identity meta-data...
You might also like
Blockchain and Git repositories for sticky policies protected OOXML.
Presentation / Conference
Sticky policies approach within cloud computing
Towards Trust and Governance in Integrated Health and Social Care Platforms
Protecting Documents with Sticky Policies and Identity-Based Encryption
Sticky policy enabled authenticated OOXML