DySCon: Dynamic Sharing Control for Distributed Team Collaboration in Networked Enterprises

Networked enterprises create virtual teams of distributed experts belonging to different enterprises where one user can be part of multiple teams; How to effectively control the sharing of personal and shared context information among members of multiple overlapping teams without compromising their privacy is a challenging research question. This paper describes sharing control in Peer to Peer and Web service based collaborative systems. In contrast to other sharing systems which mostly use static policy and context of requester and owner, we propose DySCon, a context based Dynamic Sharing Control mechanism which allows system defined as well as owner defined runtime policy adaptation for different levels using various contexts. We evaluate our Dynamic Sharing Control architecture by implementing a prototype Dynamic Sharing Control Messenger to enhance privacy of the owner.

[1]  Jeong-Oog Lee,et al.  Context-Aware Access Control Mechanism for Ubiquitous Applications , 2005, AWIC.

[2]  Gregory D. Abowd,et al.  Securing context-aware applications using environment roles , 2001, SACMAT '01.

[3]  Roshan K. Thomas,et al.  Team-based access control (TMAC): a primitive for applying role-based access controls in collaborative environments , 1997, RBAC '97.

[4]  Florian Schintke,et al.  Peer-to-Peer Computing , 2010, Euro-Par.

[5]  Seng-Phil Hong,et al.  Access control in collaborative systems , 2005, CSUR.

[6]  Tai-Myung Chung,et al.  Context-Role Based Access Control for Context-Aware Application , 2006, HPCC.

[7]  Stavros A. Koubias,et al.  A dynamic context-aware access control architecture for e-services , 2006, Comput. Secur..

[8]  Ravi S. Sandhu,et al.  Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management , 1997, DBSec.

[9]  Sameer Patil,et al.  Who gets to know what when: configuring privacy permissions in an awareness application , 2005, CHI.

[10]  Thomas Springer,et al.  Context-Dependent Access Control for Contextual Information , 2007, The Second International Conference on Availability, Reliability and Security (ARES'07).

[11]  Prasun Dewan,et al.  Access control for collaborative environments , 1992, CSCW '92.

[12]  Schahram Dustdar,et al.  Sharing hierarchical context for mobile web services , 2006, Distributed and Parallel Databases.

[13]  P. Samarati,et al.  Access control: principle and practice , 1994, IEEE Communications Magazine.

[14]  Gail-Joon Ahn,et al.  Authorization management for role-based collaboration , 2003, SMC'03 Conference Proceedings. 2003 IEEE International Conference on Systems, Man and Cybernetics. Conference Theme - System Security and Assurance (Cat. No.03CH37483).

[15]  Jan H. P. Eloff,et al.  A Trust and Context Aware Access Control Model for Web Services Conversations , 2007, TrustBus.

[16]  Schahram Dustdar,et al.  A middleware for service-oriented communication in mobile disaster response environments , 2008, MPAC '08.

[17]  Gregory D. Abowd,et al.  Towards a Better Understanding of Context and Context-Awareness , 1999, HUC.

[18]  Hyunseung Choo,et al.  A Semantic Context-Aware Access Control in Pervasive Environments , 2006, ICCSA.

[19]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[20]  Lalana Kagal,et al.  A Semantic Context-Aware Access Control Framework for Secure Collaborations in Pervasive Computing Environments , 2006, SEMWEB.

[21]  R. Sandhu,et al.  Access control: principles and practice , 1994, IEEE Commun. Mag..

[22]  Fan Hong,et al.  A Context-Aware Role-Based Access Control Model for Web Services , 2005, ICEBE.

[23]  Hamideh Afsarmanesh,et al.  Collaborative Networks: Reference Modeling , 2008 .