Multiparty access control for online social networks: Model and mechanisms

Hongxin Hu, Gail-Joon Ahn, Jan Jorgensen

Research output: Contribution to journalArticle

108 Scopus citations

Abstract

Online social networks (OSNs) have experienced tremendous growth in recent years and become a de facto portal for hundreds of millions of Internet users. These OSNs offer attractive means for digital social interactions and information sharing, but also raise a number of security and privacy issues. While OSNs allow users to restrict access to shared data, they currently do not provide any mechanism to enforce privacy concerns over data associated with multiple users. To this end, we propose an approach to enable the protection of shared data associated with multiple users in OSNs. We formulate an access control model to capture the essence of multiparty authorization requirements, along with a multiparty policy specification scheme and a policy enforcement mechanism. Besides, we present a logical representation of our access control model that allows us to leverage the features of existing logic solvers to perform various analysis tasks on our model. We also discuss a proof-of-concept prototype of our approach as part of an application in Facebook and provide usability study and system evaluation of our method.

Original languageEnglish (US)
Article number6193103
Pages (from-to)1614-1627
Number of pages14
JournalIEEE Transactions on Knowledge and Data Engineering
Volume25
Issue number7
DOIs
StatePublished - Jun 3 2013

    Fingerprint

Keywords

  • Social network
  • multiparty access control
  • policy specification and management
  • security model

ASJC Scopus subject areas

  • Information Systems
  • Computer Science Applications
  • Computational Theory and Mathematics

Cite this