Annotation-based access control for collaborative information spaces

Web 2.0 social platforms (e.g., Flickr, YouTube) and Collaborative Working Environments (e.g., Microsoft SharePoint, BSCW) provide Web-based collaborative information spaces which enable common users and/or professionals to work together and share their online resources. Most of these collaborative information spaces provide role-based or group-based, coarse-grained access control policies which cannot successfully cope with the requirements posed by massive and open collaboration. In this paper, we present an annotation-based access control (AnBAC) model supported by a Collaboration Vocabulary (CoVoc) as a more flexible and user-centric access control approach. Based on this, we developed two tools: Uncle-Share is a gadget that provides annotation-based access control and can be equipped with CoVoc for annotating collaborative relationships. Who-With-Whom uses CoVoc to visualize extended social networks in order to help users to select appropriate contacts to grant access to resources.

[1]  Savas Parastatidis,et al.  Task-Based Access Control for Virtual Organizations , 2004, FIDJI.

[2]  Seng-Phil Hong,et al.  Access control in collaborative systems , 2005, CSUR.

[3]  Vincent Yun Shen,et al.  Setting Access Permission through Transitive Relationship in Web-based Social Networks , 2008, SWKM.

[4]  Rob Johnson,et al.  More Content - Less Control: Access Control in the Web 2.0 , 2006 .

[5]  G. T. Gangemi,et al.  Computer Security Basics , 2006 .

[6]  Ravi S. Sandhu,et al.  Roles versus groups , 1996, RBAC '95.

[7]  Clodoaldo Robledo,et al.  Google Web Toolkit , 2012 .

[8]  Mustaque Ahamad,et al.  Generalized role-based access control , 2001, Proceedings 21st International Conference on Distributed Computing Systems.

[9]  Joshua Fogel,et al.  Internet social network communities: Risk taking, trust, and privacy concerns , 2009, Comput. Hum. Behav..

[10]  Vassilios Peristeras,et al.  Extracting and Utilizing Social Networks from Log Files of Shared Workspaces , 2009, PRO-VE.

[11]  L. Stein,et al.  OWL Web Ontology Language - Reference , 2004 .

[12]  Vassilios Peristeras,et al.  Uncle-Share: Annotation-Based Access Control for Cooperative and Social Systems , 2008, OTM Conferences.

[13]  Yutaka Matsuo,et al.  Real-world oriented information sharing using social networks , 2005, GROUP '05.

[14]  Barbara Carminati,et al.  Private Relationships in Social Networks , 2007, 2007 IEEE 23rd International Conference on Data Engineering Workshop.

[15]  Barbara Carminati,et al.  Rule-Based Access Control for Social Networks , 2006, OTM Workshops.

[16]  Bin Zhao Collaborative Access Control , 2001 .

[17]  James A. Hendler,et al.  A new form of Web content that is meaningful to computers will unleash a revolution of new possibili , 2002 .

[18]  Barbara Carminati,et al.  Enforcing access control in Web-based social networks , 2009, TSEC.

[19]  Vijayalakshmi Atluri,et al.  Role-based Access Control , 1992 .

[20]  H. Lan,et al.  SWRL : A semantic Web rule language combining OWL and ruleML , 2004 .

[21]  Axel Kern,et al.  Rule support for role-based access control , 2005, SACMAT '05.

[22]  Kevin L. Mills,et al.  Computer-Supported Cooperative Work (CSCW) , 2010 .

[23]  Patrick Brézillon,et al.  Understanding Context Before Using It , 2005, CONTEXT.

[24]  Alec Wolman,et al.  Lockr: social access control for web 2.0 , 2008, WOSN '08.

[25]  Vassilios Peristeras,et al.  An Annotation-Based Access Control Model and Tools for Collaborative Information Spaces , 2008, WSKS.

[26]  Paolo Traverso,et al.  Service-Oriented Computing: State of the Art and Research Challenges , 2007, Computer.

[27]  Maryam Najafian Razavi,et al.  Improving personal privacy in social systems with people-tagging , 2009, GROUP '09.

[28]  Prasun Dewan,et al.  Access control for collaborative environments , 1992, CSCW '92.

[29]  Sebastian Ryszard Kruk,et al.  D-FOAF: Distributed Identity Management with Access Rights Delegation , 2006, ASWC.

[30]  Yuzhong Qu,et al.  Design and Application of Rule Based Access Control Policies , 2005 .

[31]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[32]  Dan Brickley,et al.  Resource description framework (RDF) schema specification , 1998 .

[33]  Piero A. Bonatti,et al.  Protune: A Framework for Semantic Web Policies , 2008, International Semantic Web Conference.

[34]  Jeffrey M. Bradshaw,et al.  Rule-based and Ontology-based Policies: Toward a Hybrid Approach to Control Agents in Pervasive Environments , 2005 .

[35]  Gail-Joon Ahn,et al.  Beyond User-to-User Access Control for Online Social Networks , 2008, ICICS.

[36]  Leon Gommans,et al.  Policy Based Access Control in Dynamic Grid-based Collaborative Environment , 2006, International Symposium on Collaborative Technologies and Systems (CTS'06).

[37]  Jim X. Chen,et al.  A model for team-based access control (TMAC 2004) , 2004, International Conference on Information Technology: Coding and Computing, 2004. Proceedings. ITCC 2004..

[38]  Atul Prakash,et al.  Requirements of role-based access control for collaborative systems , 1996, RBAC '95.

[39]  Fausto Giunchiglia,et al.  RelBAC: Relation Based Access Control , 2008, 2008 Fourth International Conference on Semantics, Knowledge and Grid.

[40]  Nora Kamprath,et al.  Supporting attribute-based access control with ontologies , 2006, First International Conference on Availability, Reliability and Security (ARES'06).

[41]  Konstantin Beznosov,et al.  Supporting relationships in access control using role based access control , 1999, RBAC '99.

[42]  Kouichi Sakurai,et al.  A Collaborative Role-Based Access Control for Trusted Operating Systems in Distributed Environment , 2005, IEICE Trans. Fundam. Electron. Commun. Comput. Sci..