A Study On Privacy Protection Based On Access Control

With the rapid development of Internet technology, more and more users’ privacy information has been exposed on the Internet. The information leak will cause serious social problems. How can we protect our privacy information not to be tampered and leaked on the Internet has been a topic of concern. This study is of great theoretical and practical significanceLots of technologies on privacy protection have been achieved:the EPAL by IBM, the P3P by W3C, and the multi-level secure relational database, and they are all oriented to the solution proposed by some specific cases. However, there will be lots of problems and shortages in the practical application. They don’t support distributed framework and they are not mandatory and deontological.In this paper, we propose a new kind of attribute release policy language which is named XARP. We have designed a prototype system for XARP and tested it in the shibboleth framework. The following is the main contributions of this paper:1. We propose the XARP based on IBM’s open source framework Shibboleth and the XACML language. The XARP has combined the features of single sign-on technology and the XACML language. It can provide the fine-grained access control for users’privacy information.2. The component of XARP model can work normally in different places at the same time. The XARP also supports the priority policy. The XARP has contained the condition element which can supply us more detailed information to make decision. The XARP has the obligation element like the XACML. When the user’s information is delivered, the system will inform the user.3. This paper describes the model composition and design of the XARP and introduces some important interfaces and functions in the development process. The paper explains the method and process to create PDP, Request and Policy. We also show the response they have generated.4. We also introduce the collocation of XARP’s working environment and how to deploy XARP in the Shibboleth framework. The tests and results have showed that the XARP can protect users’privacy information more effectively.