An Access Control Scheme for Protecting Personal Data

Author

Villegas, Wilfred ; Ali, Bader ; Maheswaran, Muthucumaru

Author_Institution

Sch. of Comput. Sci., McGill Univ., Montreal, QC

fYear

2008

fDate

1-3 Oct. 2008

Firstpage

24

Lastpage

35

Abstract

We present a personal data access control (PDAC) scheme inspired by protection schemes used in communities for sharing valuable commodities. We assume PDAC users are members of an online social network such as facebook.com. PDAC computes a ldquotrusted distancerdquo measure between users that is composed of the hop distance on the social network and an affine distance derived from experiential data. The trusted distance classifies users into three zones: acceptance, attestation, and rejection. User requests falling in the acceptance zone are accepted immediately while the requests in the rejection zone are rejected outright. Requests in the attestation zone need additional authorization to gain access. PDAC also tracks reposts to minimize the spread of data beyond the limits set by the data originator. PDAC was implemented on a social network emulator to demonstrate its viability. The performance of certain PDAC functions were examined using simulations driven by portions of social graphs obtained from myspace.com.

Keywords

authorisation; graph theory; interactive programming; authorization; facebook.com; online social network; personal data access control; personal data protection; social graphs; social network emulator; trusted distance; Access control; Authorization; Computer networks; Computer science; Computer security; Data privacy; Data security; Personal digital assistants; Protection; Social network services; PDAC; access control; social networks;

fLanguage

English

Publisher

ieee

Conference_Titel

Privacy, Security and Trust, 2008. PST '08. Sixth Annual Conference on

Conference_Location

Fredericton, NB

Print_ISBN

978-0-7695-3390-2

Type

conf

DOI

10.1109/PST.2008.14

Filename

4641270