Abstract
Today, the de-facto standard mechanism for data service providers to share their services is through web-service interfaces; clients invoke the service through request messages and receive the data as payloads in the corresponding response messages. Typically, clients need information beyond what any single provider offers; in such cases, multiple data services must be composed to provide a complete solution meeting the client needs. The term “data-service composition” refers to a unified interface that delivers to the client the data it needs in response to a single request message, as if it were available withing a single source. Data-service composition is useful and convenient for the requesting client, but raises privacy concerns since a participating data-service provider potentially can infer information about the data held by other providers. In this paper, we propose a data-service composition method that relies on a mediator for the communication between any two service providers, ensures that the mediator is strictly following the data-composition plan, and maintains privacy between the mediator and service providers. The data service provider first authenticates that the input data is coming from the correct source as per the composition plan, and this is done whilst ensuring complete privacy between the mediator and other service providers. Similarly, data service providers also authenticate the destination of their output data. The approach is validated and its performance evaluated using a real world online retail dataset.
Highlights
Data of various types is available in a variety of domains, including medical databases, retail databases, demographic databases, and others
The term ‘‘data-service composition’’ refers to a unified interface that invokes multiple data providers and synthesizes their data to deliver to the client all the data it needs in response to a single request message, as if it were available withing a single source
Query into a directed acyclic graph (DAG) H with parallel dispatch of data denoted by multiple outgoing edges from a single web service, and rejoining of data denoted by multiple incoming edges into a web service’’
Summary
Data of various types is available in a variety of domains, including medical databases, retail databases, demographic databases, and others. Each parent-child pair in a service composition plan shares a secret string unknown to the mediator This secret string is appended to each value of the privacy critical attributes and its hash (e.g., SHA-256) is calculated (Section III). They do utilise value generalizations (mostly using K-Anonymity) to protect data from each other by encrypting and sharing data with the mediator using OPES [14], but do not check whether the mediator is adhering to the shared composition plan. The proposed approach enables the mediator to perform operations such as join, query execution, or value generalization using K-Anonymity without seeing the actual data values.
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
