N
Ninghui Li
Researcher at Purdue University
Publications - 266
Citations - 19897
Ninghui Li is an academic researcher from Purdue University. The author has contributed to research in topics: Access control & Differential privacy. The author has an hindex of 70, co-authored 262 publications receiving 17748 citations. Previous affiliations of Ninghui Li include New York University & National Chiao Tung University.
Papers
More filters
Proceedings ArticleDOI
Beyond proof-of-compliance: safety and availability analysis in trust management
TL;DR: It is found that in contrast to the classical HRU undecidability of safety properties, the primary security properties of the trust management languages studied are decidable in polynomial time.
Proceedings ArticleDOI
Administration in role-based access control
Ninghui Li,Ziqing Mao +1 more
TL;DR: UARBAC is a new family of administrative models for RBAC that has significant advantages over existing models and is motivated by three principles for designing security mechanisms: flexibility and scalability, psychological acceptability, and economy of mechanism.
Book ChapterDOI
Defeating Cross-Site Request Forgery Attacks with Browser-Enforced Authenticity Protection
TL;DR: In this article, the authors propose Browser-Enforced Authenticity Protection (BEAP), a browser-based mechanism to defend against cross-site request forgery (CSRF) attacks.
Proceedings ArticleDOI
Protecting sensitive attributes in automated trust negotiation
TL;DR: This work studies an alternative design of Automated Trust Negotiation that avoids this pitfall by allowing negotiators to define policy protecting the attribute itself, rather than the credentials that prove it, and shows how such a policy can be enforced.
Proceedings ArticleDOI
Modeling and Integrating Background Knowledge in Data Anonymization
TL;DR: Wang et al. as mentioned in this paper presented a general framework for modeling the adversary's background knowledge using kernel estimation methods, which subsumes different types of knowledge (e.g., negative association rules) that can be mined from the data.