The University of Insubria

		Barbara Carminati

	Contact data	Assistant Professor Department of Computer Science and Communication Via Mazzini 5, 21100 Varese E-mail: barbara.carminati@uninsubria.it
	Biography	Barbara Carminati is an Assistant Professor of Computer Science at the University of Insubria in Varese, Italy. Barbara Carminati received a MS degree in Computer Science in 2000, and a PhD. in computer science from the University of Milano, in 2004. Her main research interests include: database and web security, XML, secure information dissemination and publishing. She is also a lecturer at the Computer Science School of the University of Milano and University of Insubria at Como, and she has given industrial courses on topics such as database systems and security. Dr. Carminati has served as program committee member for the several conferences and workshops. (International DEXA Workshop on Web Semantics (WebS) 2005, IEEE International Conference on e-Technology, e-Commerce and e-Service (EEE05) 2005, IEEE International Conference on Cooperative Information Systems (CoopIS) 2004-5, IEEE International Conference on Services Computing (SCC) 2005, IEEE Middleware for Web Services (MSW) Workshop, 2005, IEEE International Workshop on Business Services Networks (BSN) 2005, 9th ACM Symposium on Access Control Models and Technologies (SACMAT ) 2004. Dr Carminati is an Editorial Board Member of Computer Standards & Interfaces, Elsevier.
	Research interests	The main research interests investigated can be organized in the following topics: XML security, Secure and Selective dissemination of information, Web service, and Security in Semantic Web. XML security: XML is currently the most relevant standardization effort in the area of document representation through markup languages and is rapidly becoming a standard for data representation and exchange over the Web. For this reason an attractive research area is the investigation of models and mechanisms for securing XML documents. In this topic our efforts are focused on access control mechanisms for XML data, with particular interested in innovative features, such as for instance access control policies with a temporal constrains, as well as the support for pull and push delivery of data. Secure and Selective dissemination of information: Our interests in this area are due to the fact that today the network is massively used as the main information distribution means both at internal and external level. Such a widespread use has sped up the development of a new class of information-centered systems focused on the selective dissemination of information. Regarding this topic, we are mainly focused on security issues in innovative architectures for data distribution, i.e., third-party architectures. In particular, we are focused on enforcing confidentiality, integrity, privacy, and authenticity even in the presence of an untrusted third party. Web service: Today the Web is the main means by which companies and organizations are carrying on their business. The central role that Web is currently playing in business world has forced many companies to reorganize their businesses by adopting the Web service paradigm. For this reason a strong effort of our research is devoted to investigate privacy and security issues in Web service.
	Teaching experience and appointments	Lab of Database Systems Information Systems Security
	Representative publications	Journals - B.Carminati, E.Ferrari, P.C.K. Hung. Exploring Privacy Issues in Web Services Discovery Agencies IEEE Security & Privacy Magazine. 3(5):14-21, 2005. - E.Bertino, B.Carminati, E.Ferrari. Merkle Tree Authentication in UDDI Registries. International Journal of Web Services Research, 1(2):37-57, 2004, Idea Group Inc. -E.Bertino, B.Carminati, E.Ferrari, B. Thuraisingham, A. Gupta. Selective and Authentic Third-Party Distribution of XML Documents. IEEE Transactions on Knowledge and Data Engineering (TKDE), 16(10):1263-1278, 2004. - E.Bertino, B.Carminati, E.Ferrari. Access Control for XML documents and data. Information Security Technical Report, 9(3):19-34, 2004, Elsevier Science. - B. Carminati, E.Ferrari. Management of Access Control Policies for XML Document Sources. International Journal of Information Security, 1(4):236-260, 2003, Springer. - E.Bertino, B.Carminati, E.Ferrari. XML Security. Information Security Technical Report, 6(2):44-58, 2001, Elsevier Science. International Conferences - B.Carminati, E. Ferrari, E. Bertino. Securing XML Data in Third-Party Distribution Systems In proc. of the ACM Fourteenth Conference on Information and Knowledge Management (CIKM'05), Bremen, Germany, 2005, ACM Press. - B.Carminati, E. Ferrari. AC-XML Documents: Improving the Performance of a Web Access Control Module. In proc. of the 10th ACM Symposium on Access Control Models and Technologies (SACMAT'10), Stockholm, Sweden, 2005, ACM Press. - B.Carminati, E.Ferrari. Trusted Privacy Manager: A system for enforcing privacy on outsourced data. In proc. of ICDE'05 International Workshop on Privacy Data Management, Tokyo, Japan, 2005, IEEE Society Press. - B.Carminati, E.Ferrari, P.C.K Hung. Web Services Composition: A Security Perspective. In proc. of ICDE'05 International Workshop on Challanges in Web Information Retrieval and Integration, Tokyo, Japan, 05, IEEE Society Press. - E.Bertino, B.Carminati, E.Ferrari. Assuring Security Properties in Third-party Architectures. In proc. of International Conference on Data Engineering (ICDE'05), Tokyo, Japan, 2005, IEEE Society Press. - W. Castelnovo, B. Carminati, E.Ferrari, M. Simonetta. Organizational Heterogeneity in Networked Government. In proc. of the eChallenges e-2005 Conference, Ljubljana, Slovenia, 2005. -B.Carminati, E.Ferrari, B. Thuraisingham. Using RDF for Policy Specification and En-forcement. In proc. of International Workshop on Web Semantics - WebS 2004, Zaragoza, Spain, 2004, IEEE Society Press. - P.C.K Hung, E. Ferrari, B. Carminati. Towards Standardized Web Services Privacy Technologies. In proc. of IEEE International Conference on Web Services (ICWS'04), San Diego, CA, USA, 2004, IEEE Society Press. - E. Bertino, B. Carminati, E. Ferrari. A Flexible Authentication Method for UDDI Registries. In proc. of The First International Conference on Web Services (ICWS'03), Las Vegas, Nevada, USA, 2003, IEEE Society Press. - E.Bertino, B.Carminati, E.Ferrari, G.Mella. Author-X: A System for Secure Dissemination and Update of XML Documents. In proc. of 3rd International Workshop on Databases in Networked Information Systems (DNIS'03), Aizu, Japan, 2003, LNCS Springer. - E. Bertino, B. Carminati, E. Ferrari. A Temporal Key Management Scheme for Broad-casting XML Documents. In proc. of the 9th ACM Conference on Computer and Com- munications Security (CCS'02), Washington, 2002, ACM Press. - B. Carminati. Secure Publishing of XML Documents. In proc. of iPh.D. Workshop, EDBT02, Lecture Notes in Computer Science, 2490:587-596, Praga, 2002, LNCS Springer. - E. Bertino, B. Carminati, E. Ferrari. A Secure Publishing Service for Digital Libraries of XML Documents. In proc. of Information Security Conference (ISC01), Lecture Notes in Computer Science, 2200:347-362, Malaga, Spain, 2001, LNCS Springer. National Conferences - B.Carminati, W.Castelnovo, E.Ferrari. Un Metodo per il Controllo degli Accessi per Applicazioni di E-Government. AICA, Italy, 2002. - B.Carminati, W.Castelnovo, E.Ferrari. Organizzazioni virtuali: coordinamento e sicurezza. AICA, Italy, 2003. Chapters in Books - B.Carminati, E.Ferrari, P.C.K. Hung.Privacy Issues in Web Services Architecture (WSA). Chapter in G.Yee editor book "Privacy Protection for E-Services", Idea Group Inc. Under publication. - E.Bertino, B.Carminati, and E.Ferrari. Secure Data Dissemination. Chapter in book "Information Security Policies and Actions in Modern Integrated Systems", Idea Group Inc.

	The University of Insubria, - Via Ravasi, 2 - 21100 Varese - P.I. 02481820120 - C.F. 95039180120 © 2006 Università degli Studi dell'Insubria. All rights reserved. Privacy Policy \| About the Site \| Feedback \| Sitemap