Browse by author
Lookup NU author(s): Dr Charles Morisset,
Professor Thomas GrossORCiD,
Professor Aad van Moorsel,
Dr Iryna Yevseyeva
Full text for this publication is not currently held within this repository. Alternative links are provided below where available.
On the one hand, an access control mechanism must make a conclusive decision for a given access request. On the other hand, such a mechanism usually relies on one or several decision making processes, which can return partial decisions, inconclusive ones, or conflicting ones. In some cases, this information might not be sufficient to automatically make a conclusive decision, and the access control mechanism might have to involve a human expert to make the final decision. In this paper, we formalise these decision making processes as quantitative access control systems, which associate each decision with a measure, indicating for instance the level of confidence of the system in the decision. We then propose to explore how nudging, i.e., how modifying the context of the decision making process for that human expert, can be used in this context. We thus formalise when such a delegation is required, when nudging is applicable, and illustrate some examples from the MINDSPACE framework in the context of access control. © 2014 Springer International Publishing.
Author(s): Morisset C, Gross T, van Moorsel A, Yevseyeva I
Editor(s): Theo Tryfonas and Ioannis Askoxylakis
Publication type: Conference Proceedings (inc. Abstract)
Publication status: Published
Conference Name: Second International Conference on Human Aspects of Information Security, Privacy, and Trust (HAS 2014)
Year of Conference: 2014
Acceptance date: 01/01/1900
Library holdings: Search Newcastle University Library for this item
Series Title: Lecture Notes in Computer Science