SocACL : an ASP-based access control language for Online Social Networks

Edward Caprin, Yan Zhang

    Research output: Contribution to journalArticlepeer-review

    Abstract

    Online Social Networks (OSNs), such as Facebook and LinkedIn, encourage their users to disclose significant amounts of personal information to facilitate connecting and sharing content with other users. This has resulted in some OSNs holding vast amounts of information about their users; all of which is readily available via their profile page. As such, OSNs are particularly vulnerable to privacy breach attacks [3]. With the impact these breaches varying from simply embarrassing the user, to negatively influencing the decision of a potential employer, identity theft and even physical harm it is important that these breaches are addressed. OSN operators have responded to privacy concerns by providing user customisable privacy settings. However, these have proven ineffective, often resulting in settings that do not reflect the intentions of the user [5]. This is in part due to the coarse-grained nature of the information on which these settings are based. In this research we approach privacy management in OSNs as an access control problem, proposing a fine-grained, formal Attribute-Based Access Control (ABAC) language; SocACL (Social Access Control Language). SocACL is based on Answer Set Programming (ASP) and allows for policy specification using the most abundant sources of information available in OSNs; user attributes and relationships.
    Original languageEnglish
    Pages (from-to)207-210
    Number of pages4
    JournalLecture Notes in Computer Science
    Volume8099
    DOIs
    Publication statusPublished - 2013

    Fingerprint

    Dive into the research topics of 'SocACL : an ASP-based access control language for Online Social Networks'. Together they form a unique fingerprint.

    Cite this