Abstract
In this paper, we propose an attribute-based access control model called ABAC–TG for online social networks (OSNs). This model comprehensively considers user and object attributes and two main social attributes: trust and gossip, which are calculated based on the Ego-node (the user sharing the information) point of view. Each user is evaluated trust and gossip wise by several criteria, such as total number of friends, number of interactions between two users, and more. A new algorithm for calculating user gossiping value by graph clustering is defined, and this gossiping value can also be used for trust calculation. The ABAC model is formally presented, including rules and attribute definitions, and is demonstrated by several use case scenarios. The gossip and trust assessments provide more accurate and viable information-sharing decisions that serve the purpose of more precise and flexible authorizations.
This work is novel in two respects. First, we are using trust and gossip as dynamic attribute calculations. And second, we present a new algorithm for calculating the user’s gossip value from the ego user point of view and use it either as part of the trust attribute calculation or as a separate attribute in the ABAC model.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Hu, V.C., et al.: Guide to attribute based access control (ABAC) definition and considerations. NIST Spec. Publ. 800, 162 (2014)
Patil, V.T., Shyamasundar, R.K.: Undoing of privacy policies on facebook. In: Livraga, G., Zhu, S. (eds.) DBSec 2017. LNCS, vol. 10359, pp. 239–255. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-61176-1_13
Lavi, T., Gudes, E.: Trust-based dynamic RBAC. ICISSP 317–324 (2016)
Sherchan, W., Nepal, S., Paris, C.: A survey of trust in social networks. ACM Comput. Surv. 45(4), 47, 1–47, 33 (2013)
Voloch, N., Levy, P., Elmakies, M., Gudes, E.: An access control model for data security in online social networks based on role and user credibility. CSCML 156–168 (2019)
Mishra, N., Schreiber, R., Stanton, I., Tarjan, R.E.: Clustering social networks. WAW 56–67 (2007)
Banerjee, A., Chandrasekhar, A., Duflo, E., Jackson, M.O.: Gossip: identifying central individuals in a social network. CoRR abs/1406.2293 (2014)
Patil, V.T., Jatain, N., Shyamasundar, R.K.: Role of apps in undoing of privacy policies on facebook. In: Kerschbaum, F., Paraboschi, S. (eds.) DBSec 2018. LNCS, vol. 10980, pp. 85–98. Springer, Cham (2018). https://doi.org/10.1007/978-3-319-95729-6_6
banerjee, A., Chandrasekhar, A.G., Duflos, E., Jackoson, M.O.: Using gossips to spread information: theory and evidence from two randomized controlled trial, Rev. Econ. Stud. (2016).
Zhang, Z., Han, L., Li, C., Wang, J.: A novel attribute-based access control model or multimedia social netwroks. Neural Netw. World 26(6), 543–557 (2016)
Pang, J., Zhang, Y.: A new access control scheme for Facebook-style social networks. Comput. Secur. 54, 44–59 (2015)
Gal-Oz, N., Yahalom, R., Gudes, E.: Identifying knots of trust in virtual communities. In: Wakeman, I., Gudes, E., Jensen, C.D., Crampton, J. (eds.) IFIPTM 2011. IAICT, vol. 358, pp. 67–81. Springer, Heidelberg (2011). https://doi.org/10.1007/978-3-642-22200-9_8
Shaw, A.K., Tsvetkova, K., Daneshvar, R.: The effect of gossip on social networks. CompLex 16(4), 39–47 (2011)
Voloch, N., Gudes, E.: An MST-based information flow model for security in online social networks. In: Proceedings of ICUFN, pp. 460–465 (2019)
Voloch, N., Nissim, P., Elmakies, M., Gudes, E.: A role and trust access control model for preserving privacy and image anonymization in social networks. In: Meng, W., Cofta, P., Jensen, C.D., Grandison, T. (eds.) IFIPTM 2019. IAICT, vol. 563, pp. 19–27. Springer, Cham (2019). https://doi.org/10.1007/978-3-030-33716-2_2
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 IFIP International Federation for Information Processing
About this paper
Cite this paper
Swissa, A., Gudes, E. (2021). An ABAC Model with Trust and Gossiping (ABAC–TG) for Online Social Networks. In: Barker, K., Ghazinour, K. (eds) Data and Applications Security and Privacy XXXV. DBSec 2021. Lecture Notes in Computer Science(), vol 12840. Springer, Cham. https://doi.org/10.1007/978-3-030-81242-3_22
Download citation
DOI: https://doi.org/10.1007/978-3-030-81242-3_22
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-81241-6
Online ISBN: 978-3-030-81242-3
eBook Packages: Computer ScienceComputer Science (R0)
