4.6 Article

oGBAC-A Group Based Access Control Framework for Information Sharing in Online Social Networks

IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING (2021)

Get Full Text
Add to Collection

Journal

IEEE TRANSACTIONS ON DEPENDABLE AND SECURE COMPUTING
Volume 18, Issue 1, Pages 100-116

Publisher

IEEE COMPUTER SOC
DOI: 10.1109/TDSC.2018.2875697

Keywords

Privacy protection; access control; social networks; attribute-based encryption; information flow

Categories

Computer Science, Hardware & Architecture Computer Science, Information Systems Computer Science, Software Engineering

Ask authors/readers for more resources

Protocol

Community support

Reagent

Community support

The paper introduces a group-based access control framework to prevent privacy disclosure when sharing information in online social networks. By extending group-centric secure information sharing models and incorporating ideas from attribute-based access control, the framework ensures privacy protection by imposing restrictions on information flow among groups. The security and efficiency of the implemented system is analyzed to demonstrate the effectiveness of the oGBAC model.
Internet users receive various online social networks (OSNs) services, however, providers of OSNs do not always provide users fine-grained privacy protection mechanisms with sufficient privacy protection for shared resources. In this paper, we propose a formal Group-Based Access Control (oGBAC) framework for preventing privacy disclosure when sharing information within or among groups in OSNs. Our framework extends the group-centric Secure Information Sharing (g-SIS) models by adapting the concept of the group to OSNs. We impose some restrictions to the group and information flow among groups to ensure that operations cannot incur privacy disclosure when sharing information among friends in OSNs. In view of characteristics of OSNs and the requirements of secure information flow, the oGBAC model also incorporates some ideas from the Attribute-Based Access Control (ABAC) to develop information flow based rules using relationship among attributes (such as tags, time and security levels) of objects and subjects in OSNs. Administration related rules and access related rules are designed for each access operation of group based OSNs' information sharing. The security of oGBAC model is analyzed using formal methods. To demonstrate the usability of the oGBAC model, we implement the model with the Comparative Attribute-Based Encryption (CCP-CABE), and analyze the security and efficiency of the implemented system to prove the effectiveness of the implemented system.

Authors

I am an author on this paper
Click your name to claim this paper and add it to your profile.

Reviews

Primary Rating

4.6
Not enough ratings

Secondary Ratings

Novelty
-
Significance
-
Scientific rigor
-
Rate this paper

Recommended

No Data Available
No Data Available
Webinars Posters Questions Hubs Funding Journals Papers Connect Collections Reviewers About Us FAQs Mobile App Privacy Policy Terms of Use
© Peeref 2019-2024. All rights reserved.