Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
XACML-Based Access Control for Decentralized Online Social Networks
Karlstad University, Faculty of Health, Science and Technology (starting 2013), Department of Mathematics and Computer Science. (Distributed Systems and Communications Research Group (DISCO))
KTH Kungliga tekniska högskolan.
2014 (English)In: 2014 IEEE/ACM 7th International Conference on Utility and Cloud Computing (UCC 2014): Proceedings of a meeting held 8-11 December 2014, London, United Kingdom., IEEE, 2014, p. 671-676Conference paper, Published paper (Refereed)
Abstract [en]

With the increasing popularity of Online SocialNetworks (OSNs), one type of Big Data, namely personal,sensitive, and behavioral information, is being collected, analyzed,and spread on the Internet. As the collection and mining ofuser data improves, both qualitatively and quantitatively, users’privacy is more and more at risk. Current OSNs and other web services are, at least logically, centralized and thus morevulnerable to accidental or deliberate privacy leaks as wellas inference. Decentralization, taking away the control of asingle service provider, can be a step toward preserving theusers’ privacy and giving them control over their own data.Even after removing the threats from centralized big data, theusers’ personal data needs to be protected from unauthorizedaccess. In contrast to other proposals for decentralized OSNs,we aim to provide the basis for a privacy-preserving systembuilt from light-weight and readily available components, namelythe eXtensible Access Control Markup Language (XACML) andthe Security Assertion Markup Language (SAML) with secretkeyauthentication, including simple ways of formulating accesspolicies for users. We find that this combination provides astraightforward way of keeping and deliberately sharing personalinformation with other users that is robust against a range ofattacks including unauthorized access at least in the case of everyuser’s profile being stored on machines under their control. One can consider replicas on trusted servers; storage on untrustedservers, however, is left for future work.

Place, publisher, year, edition, pages
IEEE, 2014. p. 671-676
Keyword [en]
eXtensible Access Control Markup Language (XACML); Decentralized Online Social Networks (DOSN); Online Social Networks (OSN); peer-to-peer; Security Assertion Markup Language (SAML); access control; privacy.
National Category
Electrical Engineering, Electronic Engineering, Information Engineering
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-35389DOI: 10.1109/UCC.2014.108ISBN: 9781479978823 (print)OAI: oai:DiVA.org:kau-35389DiVA, id: diva2:795156
Conference
The 7th IEEE/ACM International Conference On Utility and Cloud Computing (UCC-2014) 8-11 dec, London UK
Available from: 2015-03-13 Created: 2015-03-13 Last updated: 2017-10-30Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full text

Authority records BETA

Nasim, Robayet

Search in DiVA

By author/editor
Nasim, Robayet
By organisation
Department of Mathematics and Computer Science
Electrical Engineering, Electronic Engineering, Information Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 165 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf