DocumentCode
3040070
Title
An Access Control Scheme for Protecting Personal Data
Author
Villegas, Wilfred ; Ali, Bader ; Maheswaran, Muthucumaru
Author_Institution
Sch. of Comput. Sci., McGill Univ., Montreal, QC
fYear
2008
fDate
1-3 Oct. 2008
Firstpage
24
Lastpage
35
Abstract
We present a personal data access control (PDAC) scheme inspired by protection schemes used in communities for sharing valuable commodities. We assume PDAC users are members of an online social network such as facebook.com. PDAC computes a ldquotrusted distancerdquo measure between users that is composed of the hop distance on the social network and an affine distance derived from experiential data. The trusted distance classifies users into three zones: acceptance, attestation, and rejection. User requests falling in the acceptance zone are accepted immediately while the requests in the rejection zone are rejected outright. Requests in the attestation zone need additional authorization to gain access. PDAC also tracks reposts to minimize the spread of data beyond the limits set by the data originator. PDAC was implemented on a social network emulator to demonstrate its viability. The performance of certain PDAC functions were examined using simulations driven by portions of social graphs obtained from myspace.com.
Keywords
authorisation; graph theory; interactive programming; authorization; facebook.com; online social network; personal data access control; personal data protection; social graphs; social network emulator; trusted distance; Access control; Authorization; Computer networks; Computer science; Computer security; Data privacy; Data security; Personal digital assistants; Protection; Social network services; PDAC; access control; social networks;
fLanguage
English
Publisher
ieee
Conference_Titel
Privacy, Security and Trust, 2008. PST '08. Sixth Annual Conference on
Conference_Location
Fredericton, NB
Print_ISBN
978-0-7695-3390-2
Type
conf
DOI
10.1109/PST.2008.14
Filename
4641270
Link To Document