INTELLIGENT ACCESS CONTROL POLICIES FOR SOCIAL NETWORK SITE (original) (raw)

Osnac: An ontology-based access control model for social networking systems

2010

As the information flowing around in social networking systems is mainly related or can be attributed to their users, controlling access to such information by individual users becomes a natural requirement. The intricate semantic relations among data objects, different users, and between data objects and users further add to the complexity of access control needs. In this paper, we propose an access control model based on Semantic Web technologies that takes into account the above mentioned complex relations. The proposed model enables expressing much more fine-grained access control policies on a social network knowledge base than the few existing models. We demonstrate the applicability of our approach by implementing a proof-of-concept prototype of the proposed access control framework.

Social Semantic Network-Based Access Control

Lecture Notes in Social Networks, 2013

Social networks are the basis of the so called Web 2.0, raising many new challenges to the research community. In particular, the ability of these networks to allow the users to share their own personal information with other people opens new issues concerning privacy and access control. Nowadays the Web has further evolved into the Social Semantic Web where social networks are integrated and enhanced by the use of semantic conceptual models, e.g., the ontologies, where the social information and links among the users become semantic information and links. In this paper, we discuss which are the benefits of introducing semantics in social network-based access control. In particular, we analyze and detail two approaches to manage the access rights of the social network users relying on Semantic Web languages only, and we highlight, thanks to these two proposals, what are pros and cons of introducing semantics in social networks access control. Finally, we report on the other existing approaches coupling semantics and access control in the context of social networks.

Guarding a Walled Garden — Semantic Privacy Preferences for the Social Web

Lecture Notes in Computer Science, 2010

With increasing usage of Social Networks, giving users the possibility to establish access restrictions on their data and resources becomes more and more important. However, privacy preferences in nowaday's Social Network applications are rather limited and do not allow to define policies with fine-grained concept definitions. Moreover, due to the walled garden structure of the Social Web, current privacy settings for one platform cannot refer to information about people on other platforms. In addition, although most of the Social Network's privacy settings share the same nature, users are forced to define and maintain their privacy settings separately for each platform. In this paper, we present a semantic model for privacy preferences on Social Web applications that overcomes those problems. Our model extends the current privacy model for Social Platforms by semantic concept definitions. By means of these concepts, users are enabled to exactly define what portion of their profile or which resources they want to protect and which user category is allowed to see those parts. Such category definitions are not limited to one single platform but can refer to information from other platforms as well. We show how this model can be implemented as extension of the OpenSocial standard, to enable advanced privacy settings which can be exchanged among OpenSocial platforms.

Taxonomy for Privacy Policies of Social Networks Sites

Social Networking, 2013

Social networking sites (SNSs) are becoming increasingly popular on the Web. Sharing personal information in these networks can be dangerous, considering that malicious users can get access to this information and use them for purposes other than the original. Although SNSs typically provide tools for users to set who can access their shared data, this access restriction only applies to network users and not for third parties and the social network itself. In this paper, we present both a mechanism to enhance privacy in SNSs and taxonomy for classifying SNSs privacy policies. We combine and extend two taxonomies of privacy, unifying them to classify SNSs privacy policies and also the aforementioned mechanism. We evaluated the taxonomy classifying six SNSs privacy policies and the mechanism, presenting the results and our findings about the classification.

A Social Semantic Web Access Control Model

Journal on Data Semantics, 2012

In the Social Web, the users are invited to publish a lot of personal information. These data can be easily retrieved, and sometimes reused, without providing the users with fine-grained access control mechanisms able to restrict the access to their profiles, and data. In this paper, we present an access control model for the Social Semantic Web. Our model is grounded on the Social Semantic SPARQL Security for Access Control vocabulary (S4AC). This vocabulary can be used by the users to define their own terms of access to the data. We define an algorithm, implemented in our Access Control Manager, which allows to check, after a client query, to which extent the data are available, depending on the user's profile. The evaluation of the access conditions is related to different features, such as the social tags associated with the data, and the user's contextual information, such as being part of a group, being located in a specific place. We provide an evaluation of the overhead introduced by our Access Control Manager, and we show that access control in the Social Semantic Web comes with a cost, but this is acceptable given the benefits of data protection.

A Dynamic and Automated Access Control Management System for Social Networks

Security and Communication Networks

In recent years, online social networks (OSNs) have become an essential part of our social life. In OSNs, users can post resources to predefined groups of users, for example, family, friends, close friends. However, due to these predefined groups of users, few irrelevant users may get access to these published resources. Moreover, the users cannot configure privacy settings due to the lack of technical knowledge and the rigidity of the access control management system. To tackle these issues, we propose a text-based dynamic and fine-grain access control system for OSNs. Our proposed model uses a dynamic clustering algorithm to create user clusters based on the mutual interests of the users. After clustering, the proposed system creates automatic access rules based on the relationship between the users’ clusters and their resources. The proposed system will ensure fine-grained access control and automatic assignment of policies to the text-based resources. We have implemented our sys...

A Survey on Access Control Techniques for Social Networks

Innovative Solutions for Access Control Management

Online Social Networks (OSN) are getting popular day by day. Users share their information in OSN with others users. Access control is required to prevent unauthorized access to this information. Several studies have been conducted for access control in social networks. This chapter is a survey of available access control models/techniques based on social networks. Available access control models can be categorized as relationship-based, attributes-based, community structure-based and user activity centric model. A number of techniques have been proposed by several authors for access control in social networks. Most of the approaches use Social Network Analysis (SNA) techniques, others use user related information, for example, attributes or activities, the rest use a combination of approaches.