HAC: Hybrid Access Control for Online Social Networks

The rapid development of communication and network technologies including mobile networks and GPS presents new characteristics of OSNs. These new characteristics pose extra requirements on the access control schemes of OSNs, which cannot be satisfied by relationship-based access control currently. In this paper, we propose a hybrid access control model (HAC) which leverages attributes and relationships to control access to resources. A new policy specification language is developed to define policies considering the relationships and attributes of users. A path checking algorithm is proposed to figure out whether paths between two users can fit in with the hybrid policy. We develop a prototype system and demonstrate the feasibility of the proposed model.

[1]  Barbara Carminati,et al.  P3D - Privacy-Preserving Path Discovery in Decentralized Online Social Networks , 2011, 2011 IEEE 35th Annual Computer Software and Applications Conference.

[2]  Bhavani M. Thuraisingham,et al.  A semantic web based framework for social network access control , 2009, SACMAT '09.

[3]  Yuan Cheng,et al.  An Access Control Model for Online Social Networks Using User-to-User Relationships , 2016, IEEE Transactions on Dependable and Secure Computing.

[4]  Sang Woo Lee,et al.  A comparative study of KakaoStory and Facebook: Focusing on use patterns and use motives , 2017, Telematics Informatics.

[5]  Yuan Cheng,et al.  Attribute-Aware Relationship-Based Access Control for Online Social Networks , 2014, DBSec.

[6]  Philip W. L. Fong Relationship-based access control: protection model and policy language , 2011, CODASPY '11.

[7]  Barbara Carminati,et al.  Performance analysis of relationship-based access control in OSNs , 2012, 2012 IEEE 13th International Conference on Information Reuse & Integration (IRI).

[8]  Ebrahim Tarameshloo,et al.  Access control models for geo-social computing systems , 2014, SACMAT '14.

[9]  Yang Zhang,et al.  A Logical Approach to Restricting Access in Online Social Networks , 2015, SACMAT.

[10]  Guangjun Liu,et al.  RSE-PoW: a Role Symmetric Encryption PoW Scheme with Authorized Deduplication for Multimedia Data , 2017, Mobile Networks and Applications.

[11]  Fan Hong,et al.  An Attribute-Based Access Control Model for Web Services , 2006, PDCAT.

[12]  Barbara Carminati,et al.  Rule-Based Access Control for Social Networks , 2006, OTM Workshops.

[13]  Barbara Carminati,et al.  Privacy-Aware Collaborative Access Control in Web-Based Social Networks , 2008, DBSec.

[14]  Junjie Yan,et al.  Social Attribute Aware Incentive Mechanism for Device-to-Device Video Distribution , 2017, IEEE Transactions on Multimedia.

[15]  Huaqun Wang,et al.  Two-Factor Data Access Control With Efficient Revocation for Multi-Authority Cloud Storage Systems , 2017, IEEE Access.

[16]  Amirreza Masoumzadeh,et al.  OSNAC: An Ontology-based Access Control Model for Social Networking Systems , 2010, 2010 IEEE Second International Conference on Social Computing.

[17]  Ravi S. Sandhu,et al.  Object-to-Object Relationship-Based Access Control: Model and Multi-Cloud Demonstration (Invited Paper) , 2016, 2016 IEEE 17th International Conference on Information Reuse and Integration (IRI).

[18]  Xin Jin,et al.  A Unified Attribute-Based Access Control Model Covering DAC, MAC and RBAC , 2012, DBSec.

[19]  Michael Backes,et al.  A Security API for Distributed Social Networks , 2011, NDSS.

[20]  Ebrahim Tarameshloo,et al.  On protection in federated social computing systems , 2014, CODASPY '14.

[21]  Jason Crampton,et al.  Path conditions and principal matching: a new approach to access control , 2014, SACMAT '14.

[22]  Bhavani M. Thuraisingham,et al.  Semantic web-based social network access control , 2011, Comput. Secur..

[23]  Yuan Cheng,et al.  A User-to-User Relationship-Based Access Control Model for Online Social Networks , 2012, DBSec.

[24]  Barbara Carminati,et al.  Enforcing relationships privacy through collaborative access control in web-based Social Networks , 2009, 2009 5th International Conference on Collaborative Computing: Networking, Applications and Worksharing.

[25]  Michael Huth,et al.  Relationship-based access control: its expression and enforcement through hybrid logic , 2012, CODASPY '12.

[26]  Philip W. L. Fong,et al.  A Privacy Preservation Model for Facebook-Style Social Network Systems , 2009, ESORICS.

[27]  Philip W. L. Fong,et al.  Relationship-based access control policies and their policy languages , 2011, SACMAT '11.

[28]  Jin Tong,et al.  Attributed based access control (ABAC) for Web services , 2005, IEEE International Conference on Web Services (ICWS'05).

[29]  Panagiotis Papadimitratos,et al.  Privacy-Preserving Relationship Path Discovery in Social Networks , 2009, CANS.

[30]  David Sánchez,et al.  Privacy-driven access control in social networks by means of automatic semantic annotation , 2016, Comput. Commun..

[31]  Preethi Srinivas,et al.  Key allocation schemes for private social networks , 2009, WPES '09.

[32]  Josep Domingo-Ferrer,et al.  Privacy homomorphisms for social networks with private relationships , 2008, Comput. Networks.

[33]  Philip W. L. Fong,et al.  A visualization tool for evaluating access control policies in facebook-style social network systems , 2012, SAC '12.

[34]  Yuan Cheng,et al.  Relationship-Based Access Control for Online Social Networks: Beyond User-to-User Relationships , 2012, 2012 International Conference on Privacy, Security, Risk and Trust and 2012 International Confernece on Social Computing.

[35]  Barbara Carminati,et al.  Enforcing access control in Web-based social networks , 2009, TSEC.