Hippocratic databases are designed to protect the privacy of the individuals whose personal information they contain. This thesis presents a model for providing and enforcing access control in an open Hippocratic database system. Previously unknown individuals can gain access to information in the database by authenticating to roles through trust negotiation. Allowing qualified strangers to access the database increases the usefulness of the system without compromising privacy. This thesis presents the design and implementation of two methods for filtering information from database queries. First, we extend a query modification method for use in an open database system. Second, we introduce a novel filtering method that overcomes some limitations of the query modification method. We also provide results showing that the two methods have comparable performance that is suitable for interactive response time with our sample data set.
College and Department
Physical and Mathematical Sciences; Computer Science
BYU ScholarsArchive Citation
Porter, Paul A., "Trust Negotiation for Open Database Access Control" (2006). All Theses and Dissertations. 422.
trust negotiation, database, access control, Hippocratic database, privacy