Relationship-based access control

Bruns, Glenn; Fong, Philip W. L.; Siahaan, Ida; Huth, Michael

doi:10.1145/2133601.2133616

Cited by 62 publications

(11 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…As first noted by Carminati et al [2006], the sole use of direct interpersonal relationships is not flexible enough in denoting authorized users in community-centered systems. Based on this observation, Gates [2007] has introduced a novel access control paradigm based on interpersonal relationships, called Relationship-Based Access Control (ReBAC), and several ReBAC models [Aktoudianakis et al 2013;Bruns et al 2012;Carminati et al 2009;Crampton and Sellwood 2014;Fong et al 2009;Fong et al 2013;] have been proposed since her seminal paper. These models allow the specification of access control policies that employ social relationships as the key factor in access decision making.…”

Section: Access Control Models For Community-centered Systemsmentioning

confidence: 99%

“…In a social graph, nodes denote the entities within the system and edges denote the interpersonal relationships between those entities. Many ReBAC models like the ones proposed by Bruns et al [2012], Carminati et al [2009 and Crampton and Sellwood [2014], rely on poly-relational social graphs. In these models, social graphs are extended by associating edges with a label indicating the type of relationship between two entities (e.g., friend, colleague, family).…”

Section: Access Control Models For Community-centered Systemsmentioning

confidence: 99%

“…Differently from modal logic, hybrid logic allows binding a node to a principal in the social graph. This makes it possible to express graded modalities that are necessary for the specification of relationship-based policies such as "access is granted to requesters who have at least k friends in common with the owner" [Bruns et al 2012]. Crampton and Sellwood [2014] propose a generic ReBAC model based on path conditions.…”

Section: :11mentioning

confidence: 99%

See 2 more Smart Citations

Survey on Access Control for Community-Centered Collaborative Systems

2018

View full text Add to dashboard Cite

The last decades have seen a growing interest and demand for community-centered collaborative systems and platforms. These systems and platforms aim to provide an environment in which users can collaboratively create, share and manage resources. While offering attractive opportunities for online collaboration and information sharing, they also open several security and privacy issues. This has attracted several research efforts towards the design and implementation of novel access control solutions that can handle the complexity introduced by collaboration. Despite these efforts, transition to practice has been hindered by the lack of maturity of the proposed solutions. The access control mechanisms typically adopted by commercial collaborative systems like online social network websites and collaborative editing platforms, are still rather rudimentary and do not provide users with a sufficient control over their resources. This survey examines the growing literature on access control for collaborative systems centered on communities, and identifies the main challenges to be addressed in order to facilitate the adoption of collaborative access control solutions in real-life settings. Based on the literature study, we delineate a roadmap for future research in the area of access control for community-centered collaborative systems.

show abstract

Section: Access Control Models For Community-centered Systemsmentioning

confidence: 99%

Section: Access Control Models For Community-centered Systemsmentioning

confidence: 99%

Section: :11mentioning

confidence: 99%

See 1 more Smart Citation

Survey on Access Control for Community-Centered Collaborative Systems

2018

View full text Add to dashboard Cite

show abstract

“…A break from that assumption was explicitly made in Cheng, Park, and Sandhu () where the graph also included relations between users and resources, and between resources and resources. In this paper we will call the graph of relationships a protection state after Bruns, Fong, Siahaan, and Huth () to make clear that relations in the protection state are more than social relations. Given a set of object names , C n (which include the names of subjects) and a set binary relationship names , C R , a protection state ,

scriptPS

, is defined by a set of binary relations over the object names in C N .…”

Section: Modeling the System To Protectmentioning

confidence: 99%

“…In our example, ( Alice, has _ property, User ) and ( Alice, has _ property, Admin ) will be edges in the protection state. It is problematic for Bruns et al () to capture propositions through relationships because based on the the way they decided to develop their formalization, the protection state has only users as nodes and “social” relationships as the only relationships. User and Admin are not users, and has_property is not a social relationship.…”

Section: Modeling the System To Protectmentioning

confidence: 99%

Relationship‐based access control: More than a social network access control model

Lobo

2018

WIREs Data Min & Knowl

View full text Add to dashboard Cite

show abstract

A smart access control mechanism based on user preference in online social networks

Shan

2022

Concurrency and Computation

View full text Add to dashboard Cite

SummaryAccess control can effectively protect users' data and privacy in social networks. Different access control models address different data privacy requirements, and the corresponding implementation technologies and performance are also quite different. The existing access control mechanisms of social networks rarely take into account the individual preferences of users, and cannot provide personalized services for users. Therefore, we have studied an analysis mechanism of user preference to quantify user preferences, and then use user preference values and some key information of users' social resources as decision vectors, and proposed an access control mechanism based on user preference (ACMBUP). ACMBUP turns the problem of access decision‐making into a problem of classification, that is, whether to allow access or not to allow access. At the same time, we add an encryption and decryption mechanism in ACMBUP to prevent data leakage and protect data when users interact with access mechanisms. Experiments show that this mechanism can automatically generate appropriate access control policies to meet the potential privacy needs of different users, so as to better protect the privacy of social networks data.

show abstract

Relationship-based access control

Cited by 62 publications

References 11 publications

Survey on Access Control for Community-Centered Collaborative Systems

Survey on Access Control for Community-Centered Collaborative Systems

Relationship‐based access control: More than a social network access control model

A smart access control mechanism based on user preference in online social networks

Contact Info

Product

Resources

About