Qun

Qun Ni

PhD Candidate
Research Assistant
Dept of Computer Science
Purdue University

PhD Advisor:
Prof. Elisa Bertino

PhD Advisory Commitee:
Prof. Ninghui Li
Prof. Sunil Prabhakar
Prof. Samuel Wagstaff

Mail Address:
Purdue University
Dept of Computer Science
305 N. University Street
West Lafayette, IN 47907

Office: LWSN 2161

Email: ni [at] cs.purdue.edu

Phone: (765)496-9398

News

May 9th, 2009, Luke will go to his first school.

Research

Kernel / Driver Integrity, Risk-based Access Control, Privacy-aware Access Control. I proposed a family of Privacy aware Role Based Access Control Models (P-RBAC) which naturally extend classical RBAC family models to support privacy policies.

P-RBAC

Publications

Refereed Conferences

Qun Ni and Elisa Bertino. Credibility-enhanced Curated Database: Improving the Value of Curated Databases. To appear in the Proceedings of the 26th IEEE International Conference on Data Engineering (ICDE 2010), March 1-6, 2010, Long Beach, California, USA. [PDF]

Qun Ni and Elisa Bertino. Aggregating Uncertain Access Risk Estimations from Different Sources (Invited Paper). To appear in the Proceedings of the 5th International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2009), November 11-14, 2009, Crystal City, Washington D.C., USA. [PDF]

Qun Ni, Shouhuai Xu, Elisa Bertino, Ravi Sandhu, and Weili Han. An Access Control Language for a General Provenance Model. In the Proceedings of the 6th VLDB Workshop on Secure Data Management (SDM'09), August 28, 2009, Lyon, France. [PDF]

Weili Han, Qun Ni and Hong Chen. Apply Measurable Risk to Strengthen Security of a Role-based Delegation supporting Workflow System. In POLICY’09, the Proceedings of the 10th IEEE International Symposium on Policies for Distributed Systems and Networks, London, UK, 20-22 July 2009. [PDF]

Qun Ni, Jorge Lobo, Seraphin Calo, Pankaj Rohatgi, and Elisa Bertino. Automating Role-based Provisioning by Learning from Examples. In the Proceedings of the 14th ACM symposium on Access control models and technologies (SACMAT 2009), June 3-5, 2009, Stresa, Italy. [PDF][BIBTEX]

Qun Ni, Elisa Bertino and Jorge Lobo. D-Algebra for Composing Access Control Policy Decisions. In the Proceedings of the 4th ACM Symposium on Information, Computer and Communications Security (ASIACCS 2009), Novotel Rockford Darling Harbour, Sydney, Australia, 10 - 12 March 2009. [PDF] [BIBTEX]

Kami Vaniea, Qun Ni, Lorrie Cranor and Elisa Bertino. Access Control Policy Analysis and Visualization Tools for Security Professionals. In USM'08: Workshop on Usable IT Security Management 2008, Carnegie Mellon University, Pittsburgh, PA, July 23-25, 2008. [PDF]

Qun Ni, Elisa Bertino and Jorge Lobo. An Obligation Model Bridging Access Control Policies and Privacy Policies. In SACMAT ’08, the Proceedings of the 13th ACM symposium on Access control models and technologies, Estes Park, CO 80517, USA, June 11-13, 2008. [PDF] [BIBTEX]

Lorenzo D. Martino, Qun Ni, Dan Lin and Elisa Bertino. Multi-domain and Privacy-aware Role Based Access Control in eHealth. In the International Conference on Pervasive Computing Technologies for Healthcare, Tampere, Finland, Jan 30  - Feb 1, 2008. [PDF]

Qun Ni, Dan Lin, Elisa Bertino and Jorge Lobo. Conditional Privacy aware Role Based Access Control. In ESORICS ’07: the Proceedings of the 12th European Symposium On Research In Computer Security, LNCS 4734, pp. 72 - 89, Dresden, Germany, September 24 - 26, 2007. [PDF] [BIBTEX]

Qun Ni, Alberto Trombetta, Elisa Bertino and Jorge Lobo. Privacy aware Role Based Access Control. In SACMAT ’07, the Proceedings of the 12th ACM symposium on Access control models and technologies, ACM Press, Sophia Antipolis, France, June 20 - 22, 2007. [PDF] [BIBTEX]

Qun Ni and Morris Sloman: An Ontology-enabled Service Oriented Architecture for Pervasive Computing. In ITCC'05, the Proceedings of the International Conference on Information Technology: Coding and Computing (2005) - Volume II, IEEE Computer Society, Las Vegas, USA, April 2005. [PDF] [BIBTEX]

Refereed Journals

Qun Ni, Elisa Bertino, Carolyn Brodie, Clare-Marie Karat, John Karat, Jorge Lobo and Alberto Trombetta. Privacy aware Role Based Access Control. To appear in an ACM Transactions on Information and System Security, 2009. [PDF]

Qun Ni, Elisa Bertino and Jorge Lobo. Privacy-aware RBAC - Leveraging RBAC for Privacy. To appear in IEEE Security & Privacy Magazine 2009. [PDF]

Elisa Bertino, Carolyn Brodie, Seraphin Calo, Lorrie Cranor, Clare-Marie Karat, John Karat, Ninghui Li, Dan Lin, Jorge Lobo, Qun Ni, Prathima Rao and Xiping Wang. Analysis of Privacy and Security Policies. IBM Journal of Research and Development Volume 53, Number 2, 2009. [PDF]

John Karat, Clare-Marie Karat, Elisa Bertino, Ninghui Li, Qun Ni, Carolyn Brodie, Jorge Lobo, Seraphin Calo, Lorrie Cranor, Ponnurangam Kumaraguru, and Robert Reeder: A Policy Framework for Security and Privacy Management. IBM Journal of Research and Development Volume 53, Number 2, 2009. [PDF]

Intern

IBM T. J. Watson Research Center, May 2008 - Aug 2008

Professional Activities

The 3rd IFIP International Conference on Trust Management (TM'09)

Projects

MURI award FA9550-08-1-0265 from the Air Force Office of Scientific Research

NSF Grant “IPS: Security Services for Healthcare Applications”

IBM Open Collaboration Initiative (NY Times report)

Privacy aware Role Based Access Control