LAMP - Label-Based Access-Control for More Privacy in Online Social Networks
Access control in Online Social Networks (OSNs) is generally approached with a relationship-based model. This limits the options in expressing privacy preferences to only the types of relationships users establish in the OSN. Moreover, current proposals d
- PDF / 882,211 Bytes
- 16 Pages / 439.37 x 666.142 pts Page_size
- 50 Downloads / 199 Views
roduction
Online Social Networks (OSNs) enable users to have more freedom and proximity in keeping in touch with their friends and in expanding their social contacts. However, they also create serious privacy concerns given the personal nature of information users share over them on almost a daily basis [3,7]. Users publish their personal stories and updates, as they might also express their opinion by interacting on information shared by others, but, in most cases, they are not fully aware of the size of the audience that gets access to their information.1 Moreover, privacy settings currently available in OSNs remain both complicated to use, and not flexible enough to model all the privacy preferences that users may require [10]. This limitation seems to come, fundamentally, from relying solely on a relationship based model for access control (ReBAC), as mostly adopted by nowadays OSNs and research proposals. ReBAC is characterized by the explicit tracking of interpersonal relationships among users, and the expression of access control policies in terms of these relationships [5]. These relationships could refer to 1
http://www.americanbar.org/publications/blt/2014/01/03a claypoole.html.
c IFIP International Federation for Information Processing 2016 Published by Springer International Publishing Switzerland 2016. All Rights Reserved S. Foresti and J. Lopez (Eds.): WISTP 2016, LNCS 9895, pp. 171–186, 2016. DOI: 10.1007/978-3-319-45931-8 11
172
L. Bahri et al.
Fig. 1. Privacy management with ReBAC vs. LAMP
explicit friendship links established by users [2,6], or they could be inferred from relationships created between users through the resources they share [4] (e.g., connecting users who are tagged in the same photo), or by linking other public information, such as considering attendance to the same school, or originating from the same country as a basis for relationships between users (e.g., the work in [14]). However, this type of access control limits, by design, the options for privacy settings. For instance, defining privacy settings based only on the social relationships implicitly enforces that all the friends of a user who belong to the same relationship type are equal and, hence, will enjoy the same access and interaction rights. For example, referring to Fig. 1a, if Walt categorizes Mike and Dima as family, and Javier and Lina as colleagues, then all the information Walt shares with the family group will be accessible by both Mike and Dima and the same goes for information shared with the colleagues one. In case Walt needs to share an item only with Mike and Javier, he is required to create a new group or categorization under which he declares both of them. Additionally, the information that users create in OSNs is subject to interactions from their friends, resulting in the creation of intermingled nets of objects with multiple co-owners. For example, Walt shares a photo, and one of his friends tags Dima in it, or Dima shares a status update and Walt comments on it. Such scenarios exemplify the cr
Data Loading...