Slicing: A New Approach to Privacy Preserving Data Publishing (2009)
Li, Tiancheng, Li, Ninghui, Zhang, Jian, Molloy, Ian
Several anonymization techniques, such as generalization and bucketization, have been designed for privacy preserving microdata publishing. Recent work has shown that generalization loses...
Delegation Logic: A Logic-based Approach to Distributed Authorization (2009)
Ninghui Li, Joan Feigenbaum, Alan Siegel
To my parents and my wife iii Acknowledgment First and foremost, I must thank Joan Feigenbaum, my advisor, for her guidance, patience, and encouragement over these years. If I became a better writer...
Modeling and Integrating Background Knowledge in Data Anonymization (2009)
Tiancheng Li, Ninghui Li, Jian Zhang
Abstract — Recent work has shown the importance of considering the adversary’s background knowledge when reasoning about privacy in data publishing. However, it is very difficult for the data...
Optimal k-Anonymity with Flexible Generalization Schemes through Bottom-up Searching (2009)
In recent years, a major thread of research on kanonymity has focused on developing more flexible generalization schemes that produce higher-quality datasets. In this paper we introduce three new...
Satisfiability and Resiliency in Workflow Systems (2009)
Abstract. We propose the role-and-relation-based access control (R 2 BAC) model for workflow systems. In R 2 BAC, in addition to a user’s role memberships, the user’s relationships with other...
On the Correctness Criteria of Fine-Grained Access Control in Relational Databases ABSTRACT (2008)
Qihua Wang, Ting Yu, Ninghui Li, Jorge Lobo, Elisa Bertino
Databases are increasingly being used to store information covered by heterogeneous policies, which require support for access control with great flexibility. This has led to increasing interest in...
Ninghui Li, John C. Mitchell, William H. Winsborough
We introduce a simple Role-based Trust-management language RT0 and a set-theoretic semantics for it. We also introduce credential graphs as a searchable representation of credentials in RT0 and prove...
Ziqing Mao, Ninghui Li, William H. Winsborough
Abstract. Trust management (TM) is an approach to access control in decentralized distributed systems with access control decisions based on statements made by multiple principals. Li et al....
A Theory for Comparing the Expressive Power of Access Control Models ∗ (2008)
Mahesh V. Tripunitara, Ninghui Li
Comparing the expressive power of access control models is recognized as a fundamental problem in computer security. While such comparisons are generally based on simulations between different access...
Direct Static Enforcement of High-Level Security Policies ABSTRACT (2008)
A high-level security policy states an overall safety requirement for a sensitive task. One example of a high-level security policy is a separation of duty policy, which requires a sensitive task to...
Usable Mandatory Integrity Protection for Operating Systems (2008)
Ninghui Li, Ziqing Mao, Hong Chen
Existing mandatory access control systems for operating systems are difficult to use. We identify several principles for designing usable access control systems and introduce the Usable Mandatory...
On the Correctness Criteria of FineGrained Access Control in Relational Databases ABSTRACT (2008)
Qihua Wang, Ting Yu, Ninghui Li, Jorge Lobo, Elisa Bertino
Databases are increasingly being used to store information covered by heterogeneous policies, which require support for access control with great flexibility. This has led to increasing interest in...
ABSTRACT Administration in Role-Based Access Control (2008)
Administration of large-scale RBAC systems is a challenging open problem. We propose a principled approach in designing and analyzing administrative models for RBAC. We identify six design...
Automated Trust Negotiation Using Cryptographic (2008)
Jiangtao Li, Ninghui Li, William H. Winsborough, Ninghui Li
In automated trust negotiation (ATN), two parties exchange digitally signed credentials that contain attribute information to establish trust and make access control decisions. Because the...
Beyond Separation of Duty: An Algebra for Specifying High-level Security Policies ABSTRACT (2008)
A high-level security policy states an overall requirement for a sensitive task. One example of a high-level security policy is a separation of duty policy, which requires a sensitive task to be...
Abstract In this article, we present a comprehensive approach for privacy preserving access control based on the notion of purpose. In our model, purpose information associated with a given data...
Abstract SPKI/SDSI is a language for expressing distributed access control policy, derived from SPKI and SDSI. We provide a first-order logic (FOL) semantics for SDSI, and show that it has several...
Denial of Service Attacks and Defenses in Decentralized Trust Management (2008)
Jiangtao Li, Ninghui Li, Xiaofeng Wang, Ting Yu
Trust management is an approach to scalable and flexible access control in decentralized systems. In trust management, a server often needs to evaluate a chain of credentials submitted by a client;...
Logic-Based Knowledge, Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum
: We introduce Delegation Logic (DL), a logic-based knowledge representation (i.e., language) that deals with authorization in large-scale, open, distributed systems. Of central importance in any...
Ninghui Li, John C. Mitchell, William H. Winsborough
We introduce a simple Role-based Trust-management language RT0 and a set-theoretic semantics for it. We also introduce credential graphs as a searchable representation of credentials in RT0 and prove...
LIMITED DISTRIBUTION NOTICE (2007)
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum
This report has been submitted for publication outside of IBM and will probably be copyrighted if accepted for publication. It has been issued as a Research Report for early dissemination of its...
Ninghui Li, John C. Mitchell, William H. Winsborough
We give goal-oriented algorithms for discovering credential chains in RT0, a role-based trust management language introduced in this paper. The algorithms search credential graphs, a representation...
ABSTRACT Distributed Credential Chain Discovery in Trust Management (Extended Abstract) ∗ (2007)
We give goal-oriented algorithms for discovering credential chains in RT0, a role-based trust-management language introduced in this paper. The algorithms search credential graphs, a representation...
Ninghui Li, John C. Mitchell, William H. Winsborough
We introduce a simple Role-based Trust-management language RT0 and a set-theoretic semantics for it. We also introduce credential graphs as a searchable representation of credentials in RT0 and prove...
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum
We address the problem of authorization in large-scale, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution, remote resource sharing, privacy...
gives additional details, including sample output of the implementation. (2007)
Ninghui Li, Benjamin Grosof, Joan Feigenbaum
We address the goal of making Delegation Logic (DL) into a practically implementable and tractable trustmanagement system. DL [22] is a logic-based knowledge representation (i.e., language) for...
The Agile Management of Dynamic Collaboration (2007)
The RT Role-based Trust-management framework provides policy language, semantics, deduction engine, and pragmatic features such as application domain specification documents that help distributed...
Efficient k-anonymization using clustering techniques (2007)
Ji-won Byun, Elisa Bertino, Ninghui Li
Abstract. k-anonymization techniques have been the focus of intense research in the last few years. An important requirement for such techniques is to ensure anonymization of data while at the same...
t-Closeness: Privacy Beyond k-Anonymity and ℓ-Diversity (2007)
The k-anonymity privacy requirement for publishing microdata requires that each equivalence class (i.e., a set of records that are indistinguishable from each other with respect to certain...
Resiliency policies in access control (2006)
Ninghui Li, Mahesh Tripunitara, Qihua Wang
We introduce the notion of resiliency policies in the context of access control systems. Such policies require an access control system to be resilient to the absence of users. An example resiliency...
Secure Anonymization for Incremental Datasets (2006)
Ji-won Byun, Yonglak Sohn, Elisa Bertino, Ninghui Li
Abstract. Data anonymization techniques based on the k-anonymity model have been the focus of intense research in the last few years. Although the k-anonymity model and the related techniques provide...
Beyond proof-of-compliance: security analysis in trust management (2005)
Ninghui Li, John C. Mitchell, William H. Winsborough
Trust management is a form of distributed access control that allows one principal to delegate some access decisions to other principals. While the use of delegation greatly enhances flexibility and...
OACerts: Oblivious Attribute Certificates (2005)
We propose Oblivious Attribute Certificates (OACerts), an attribute certificate scheme in which a certificate holder can select which attributes to use and how to use them. In particular, a user can...
Beyond proof-of-compliance: security analysis in trust management (2005)
Ninghui Li, John C. Mitchell, William H. Winsborough
Trust management is a form of distributed access control that allows one principal to delegate some access decisions to other principals. While this makes trust management more flexible than the...
OACerts: Oblivious Attribute Certificates (2005)
Abstract. We propose Oblivious Attribute Certificates (OACerts), an attribute certificate scheme in which a certificate holder can select which attributes to use and how to use them. In particular, a...
A critique of the ANSI standard on role based access control (2005)
Ninghui Li, Ji-won Byun, Elisa Bertino
The American National Standard Institute (ANSI) Standard on Role-Based Access Control (RBAC) was approved in 2004 to fulfil “a need among government and industry purchasers of information...
D.: Securing Java RMI-based distributed applications (2004)
Ninghui Li, John C. Mitchell, Derrick Tong
Both Java RMI and Jini use a proxy-based architecture. In this architecture, a client interacts with a service through a proxy, which is code downloaded from a directory and installed on the...
T.Yu. A roadmap for comprehensive online privacy policies (2004)
Annie I. Antón, Elisa Bertino, Ninghui Li, Ting Yu
Information technology advances are making Internet and Web-based system use the common choice in many application domains, ranging from business to healthcare to scientific collaboration and...
Comparing the expressive power of access control models (2004)
Mahesh V. Tripunitara, Ninghui Li
Comparing the expressive power of access control models is recognized as a fundamental problem in computer security. Such comparisons are generally based on simulations between different access...
Security analysis in role-based access control (2004)
Ninghui Li, Mahesh V. Tripunitara
The administration of large Role-Based Access Control (RBAC) systems is a challenging problem. In order to administer such systems, decentralization of administration tasks by the use of delegation...
Beyond proof-of-compliance: Safety and availability analysis in trust management (2003)
Trust management is a form of distributed access control using distributed policy statements. Since one party may delegate partial control to another party, it is natural to ask what permissions may...
Delegation Logic: A logic-based approach to distributed authorization (2003)
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum
We address the problem of authorization in large-scale, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution, remote resource sharing, privacy...
Datalog with constraints: A foundation for trust management languages (2003)
Abstract. Trust management (TM) is a promising approach for authorization and access control in distributed systems, based on signed distributed policy statements expressed in a policy language....
Oblivious Signature-Based Envelope (2003)
Exchange of digitally signed certificates is often used to establish mutual trust between strangers that wish to share resources or to conduct business transactions. Automated Trust Negotiation (ATN)...
Beyond proof-of-compliance: Safety and availability analysis in trust management (2003)
Trust management is a form of distributed access control using distributed policy statements. Since one party may delegate partial control to another party, it is natural to ask what permissions may...
A semantics-based approach to privacy languages (2003)
Ninghui Li, Ting Yu, Annie I. Antón
A key reason for the slow adoption of the Platform for Privacy Preferences (P3P) is the lack of a formal semantics. Without a formal semantics, a P3P policy may be semantically inconsistent and may...
Understanding SPKI/SDSI using first-order logic (2003)
SPKI/SDSI is a language for expressing distributed access control policy, derived from SPKI and SDSI. We provide a first-order logic (FOL) semantics for SDSI, and show that it has several advantages...
Delegation Logic: A logic-based approach to distributed authorization (2003)
Ninghui Li, Joan Feigenbaum, Alan Siegel, C Ninghui Li, Fangzhe Chang, Hseu-ming Chen, ...
To my parents and my wife iii Acknowledgment First and foremost, I must thank Joan Feigenbaum, my advisor, for her guidance, pa-tience, and encouragement over these years. If I became a better writer...
Datalog with constraints: A foundation for trust management languages (2003)
Abstract. Trust management (TM) is a promising approach for authorization and access control in distributed systems, based on signed distributed policy statements expressed in a policy language....
Oblivious Signature-Based Envelope (2003)
Ninghui Li, Wenliang Du, Dan Boneh
Exchange of digitally signed certificates is often used to establish mutual trust between strangers that wish to share resources or to conduct business transactions. Automated Trust Negotiation (ATN)...
Oblivious Signature-Based Envelope (2003)
Ninghui Li, Wenliang Du, Dan Boneh
Exchange of digitally signed certificates is often used to establish mutual trust between strangers that wish to share resources or to conduct business transactions. Automated Trust Negotiation (ATN)...
Oblivious Signature-Based Envelope (2003)
Exchange of digitally signed certificates is often used to establish mutual trust between strangers that wish to share resources or to conduct business transactions. Automated Trust Negotiation (ATN)...
Delegation Logic: A logic-based approach to distributed authorization (2003)
Ninghui Li, Ninghui Li, Benjamin N. Grosof, Benjamin N. Grosof, Joan Feigenbaum, Joan Feigenbaum
For more information, please visit our website at
Delegation Logic: A logic-based approach to distributed authorization (2003)
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum
We address the problem of authorization in large-scale, open, distributed systems. Authorization decisions are needed in electronic commerce, mobile-code execution, remote resource sharing, privacy...
Protecting sensitive attributes in automated trust negotiation (2002)
William H. Winsborough, Ninghui Li
Exchange of attribute credentials is a means to establish mutual trust between strangers that wish to share resources or conduct business transactions. Automated Trust Negotiation (ATN) is an...
Protecting sensitive attributes in automated trust negotiation (2002)
William H. Winsborough, Ninghui Li
Exchange of attribute credentials is a means to establish mutual trust between strangers that wish to share resources or conduct business transactions. Automated Trust Negotiation (ATN) is an...
Design of a role-based trust management framework (2002)
We introduce the RT framework, a family of Rolebased Trust-management languages for representing policies and credentials in distributed authorization. RT combines the strengths of role-based access...
Design of a role-based trust management framework (2002)
Ninghui Li, John C. Mitchell, William H. Winsborough
We introduce the RT framework, a family of Rolebased Trust-management languages for representing policies and credentials in distributed authorization. RT combines the strengths of role-based access...
Design of a role-based trust management framework (2002)
We introduce the RT framework, a family of Rolebased Trust-management languages for representing policies and credentials in distributed authorization. RT combines the strengths of role-based access...
Ninghui Li, John C. Mitchell, Yu Qiu, William H. Winsborough, Kent E. Seamons, Michael Halcrow, ...
RT is a framework for Role-based Trust Management [20]. In comparison with systems like SPKI/SDSI and KeyNote, the advantages of RT include: a declarative, logic-based semantic foundation, support...
Nonmonotonicity, user interfaces, and risk assessment in certificate revocation (2001)
Abstract. We consider certificate revocation from three high-level perspectives: temporal nonmonotonicity, user interfaces, and risk management. We argue that flawed understanding of these three...
Nonmonotonicity, user interfaces, and risk assessment in certificate revocation (2001)
Abstract. We consider certificate revocation from three high-level perspectives: temporal nonmonotonicity, user interfaces, and risk management. We argue that flawed understanding of these three...
Automated trust negotiation (2000)
William H. Winsborough, Ninghui Li
Exchange of attribute credentials is a means to establish mutual trust between strangers wishing to share resources or conduct business transactions. Automated Trust Negotiation (ATN) is an approach...
Automated trust negotiation (2000)
William H. Winsborough, Ninghui Li
Exchange of attribute credentials is a means to establish mutual trust between strangers wishing to share resources or conduct business transactions. Automated Trust Negotiation (ATN) is an approach...
A nonmonotonic delegation logic with prioritized conflict handling. Unpublished manuscript (2000)
Ninghui Li, Benjamin N. Grosof, Joan Feigenbaum
We extend previous work on Delegation Logic (DL) [11, 12], a tractable and practically implementable logic-based language for authorization in large-scale, open, distributed systems. We expressively...
A Logic-Based Knowledge Representation for Authorization with Delegation (1999)
Ninghui Li, Joan Feigenbaum, Benjamin N. Grosof
We introduce Delegation Logic (DL), a logic-based knowledge representation (i.e., language) that deals with authorization in large-scale, open, distributed systems. Of central importance in any...
A Logic-based Knowledge Representation for Authorization with Delegation (1999)
Ninghui Li, Joan Feigenbaum, Benjamin N. Grosof
) Ninghui Li Computer Science New York University 251 Mercer Street New York, NY 10012, USA ninghui@cs.nyu.edu Joan Feigenbaum AT&T Labs -- Research Room C203 180 Park Avenue Florham Park, NJ...
Gates B, Ninghui Li, Advisor Joan Feigenbaum, Advisor Zhongzhi Shi
Computer security and applied cryptography, e.g., security and privacy in distributed systems, networks, databases, and electronic commerce.
Agricultural trade liberalization and poverty in China
HUANG, Jikun, JUN, Yang, XU, Zhigang, ROZELLE, Scott, LI, Ninghui
IMPACTS OF TRADE LIBERALIZATION ON AGRICULTURE AND POVERTY IN CHINA
Huang, Jikun, Rozelle, Scott, Xu, Zhigang, Li, Ninghui
Food Security and Poverty,