Multiparty access control for online social networks

Model and mechanisms

Hongxin Hu, Gail-Joon Ahn, Jan Jorgensen

Research output: Contribution to journalArticle

101 Citations (Scopus)

Abstract

Online social networks (OSNs) have experienced tremendous growth in recent years and become a de facto portal for hundreds of millions of Internet users. These OSNs offer attractive means for digital social interactions and information sharing, but also raise a number of security and privacy issues. While OSNs allow users to restrict access to shared data, they currently do not provide any mechanism to enforce privacy concerns over data associated with multiple users. To this end, we propose an approach to enable the protection of shared data associated with multiple users in OSNs. We formulate an access control model to capture the essence of multiparty authorization requirements, along with a multiparty policy specification scheme and a policy enforcement mechanism. Besides, we present a logical representation of our access control model that allows us to leverage the features of existing logic solvers to perform various analysis tasks on our model. We also discuss a proof-of-concept prototype of our approach as part of an application in Facebook and provide usability study and system evaluation of our method.

Original languageEnglish (US)
Article number6193103
Pages (from-to)1614-1627
Number of pages14
JournalIEEE Transactions on Knowledge and Data Engineering
Volume25
Issue number7
DOIs
StatePublished - 2013

Fingerprint

Access control
Internet
Specifications

Keywords

  • multiparty access control
  • policy specification and management
  • security model
  • Social network

ASJC Scopus subject areas

  • Computational Theory and Mathematics
  • Information Systems
  • Computer Science Applications

Cite this

Multiparty access control for online social networks : Model and mechanisms. / Hu, Hongxin; Ahn, Gail-Joon; Jorgensen, Jan.

In: IEEE Transactions on Knowledge and Data Engineering, Vol. 25, No. 7, 6193103, 2013, p. 1614-1627.

Research output: Contribution to journalArticle

@article{8e2a12dbecde4a94bd278d073d7f262a,
title = "Multiparty access control for online social networks: Model and mechanisms",
abstract = "Online social networks (OSNs) have experienced tremendous growth in recent years and become a de facto portal for hundreds of millions of Internet users. These OSNs offer attractive means for digital social interactions and information sharing, but also raise a number of security and privacy issues. While OSNs allow users to restrict access to shared data, they currently do not provide any mechanism to enforce privacy concerns over data associated with multiple users. To this end, we propose an approach to enable the protection of shared data associated with multiple users in OSNs. We formulate an access control model to capture the essence of multiparty authorization requirements, along with a multiparty policy specification scheme and a policy enforcement mechanism. Besides, we present a logical representation of our access control model that allows us to leverage the features of existing logic solvers to perform various analysis tasks on our model. We also discuss a proof-of-concept prototype of our approach as part of an application in Facebook and provide usability study and system evaluation of our method.",
keywords = "multiparty access control, policy specification and management, security model, Social network",
author = "Hongxin Hu and Gail-Joon Ahn and Jan Jorgensen",
year = "2013",
doi = "10.1109/TKDE.2012.97",
language = "English (US)",
volume = "25",
pages = "1614--1627",
journal = "IEEE Transactions on Knowledge and Data Engineering",
issn = "1041-4347",
publisher = "IEEE Computer Society",
number = "7",

}

TY - JOUR

T1 - Multiparty access control for online social networks

T2 - Model and mechanisms

AU - Hu, Hongxin

AU - Ahn, Gail-Joon

AU - Jorgensen, Jan

PY - 2013

Y1 - 2013

N2 - Online social networks (OSNs) have experienced tremendous growth in recent years and become a de facto portal for hundreds of millions of Internet users. These OSNs offer attractive means for digital social interactions and information sharing, but also raise a number of security and privacy issues. While OSNs allow users to restrict access to shared data, they currently do not provide any mechanism to enforce privacy concerns over data associated with multiple users. To this end, we propose an approach to enable the protection of shared data associated with multiple users in OSNs. We formulate an access control model to capture the essence of multiparty authorization requirements, along with a multiparty policy specification scheme and a policy enforcement mechanism. Besides, we present a logical representation of our access control model that allows us to leverage the features of existing logic solvers to perform various analysis tasks on our model. We also discuss a proof-of-concept prototype of our approach as part of an application in Facebook and provide usability study and system evaluation of our method.

AB - Online social networks (OSNs) have experienced tremendous growth in recent years and become a de facto portal for hundreds of millions of Internet users. These OSNs offer attractive means for digital social interactions and information sharing, but also raise a number of security and privacy issues. While OSNs allow users to restrict access to shared data, they currently do not provide any mechanism to enforce privacy concerns over data associated with multiple users. To this end, we propose an approach to enable the protection of shared data associated with multiple users in OSNs. We formulate an access control model to capture the essence of multiparty authorization requirements, along with a multiparty policy specification scheme and a policy enforcement mechanism. Besides, we present a logical representation of our access control model that allows us to leverage the features of existing logic solvers to perform various analysis tasks on our model. We also discuss a proof-of-concept prototype of our approach as part of an application in Facebook and provide usability study and system evaluation of our method.

KW - multiparty access control

KW - policy specification and management

KW - security model

KW - Social network

UR - http://www.scopus.com/inward/record.url?scp=84878326313&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84878326313&partnerID=8YFLogxK

U2 - 10.1109/TKDE.2012.97

DO - 10.1109/TKDE.2012.97

M3 - Article

VL - 25

SP - 1614

EP - 1627

JO - IEEE Transactions on Knowledge and Data Engineering

JF - IEEE Transactions on Knowledge and Data Engineering

SN - 1041-4347

IS - 7

M1 - 6193103

ER -