Attribute-Aware Relationship-Based Access Control for Online Social Networks - LNCS 8566: Data and Applications Security and Privacy XXVIII
Conference Papers Year : 2014

Attribute-Aware Relationship-Based Access Control for Online Social Networks

Yuan Cheng
  • Function : Author
  • PersonId : 978074
Jaehong Park
  • Function : Author
  • PersonId : 978075
Ravi Sandhu
  • Function : Author
  • PersonId : 978076

Abstract

Relationship-based access control (ReBAC) has been adopted as themost prominent approach for access control in online social networks (OSNs), where authorization policies are typically specified in terms of relationships of certain types and/or depth between the access requester and the target. However, using relationships alone is often not sufficient to enforce various security and privacy requirements that meet the expectation fromtoday’sOSN users. In thiswork, we integrate attribute-based policies into relationship-based access control. The proposed attribute-aware Re- BAC enhances access control capability and allows finer-grained controls that are not available in ReBAC. The policy specification language for the user-to-user relationship-based access control (UURAC) model proposed in [6] is extended to enable such attribute-aware access control. We also present an enhanced path-checking algorithm to determine the existence of the required attributes and relationships in order to grant access.
Fichier principal
Vignette du fichier
978-3-662-43936-4_19_Chapter.pdf (375.1 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01284863 , version 1 (08-03-2016)

Licence

Identifiers

Cite

Yuan Cheng, Jaehong Park, Ravi Sandhu. Attribute-Aware Relationship-Based Access Control for Online Social Networks. 28th IFIP Annual Conference on Data and Applications Security and Privacy (DBSec), Jul 2014, Vienna, Austria. pp.292-306, ⟨10.1007/978-3-662-43936-4_19⟩. ⟨hal-01284863⟩
73 View
205 Download

Altmetric

Share

More