scholarly journals A Game-Theoretical Approach to Multimedia Social Networks Security

2014 ◽  
Vol 2014 ◽  
pp. 1-9 ◽  
Author(s):  
Enqiang Liu ◽  
Zengliang Liu ◽  
Fei Shao ◽  
Zhiyong Zhang
Keyword(s):  
Social Networks ◽  
Nash Equilibrium ◽  
Access Control ◽  
Control Model ◽  
Security Policies ◽  
Access Control Models ◽  
Multimedia Social Networks ◽  
Game Theoretical Approach ◽  
Game Theoretic ◽  
Stable Combination

The contents access and sharing in multimedia social networks (MSNs) mainly rely on access control models and mechanisms. Simple adoptions of security policies in the traditional access control model cannot effectively establish a trust relationship among parties. This paper proposed a novel two-party trust architecture (TPTA) to apply in a generic MSN scenario. According to the architecture, security policies are adopted through game-theoretic analyses and decisions. Based on formalized utilities of security policies and security rules, the choice of security policies in content access is described as a game between the content provider and the content requester. By the game method for the combination of security policies utility and its influences on each party’s benefits, the Nash equilibrium is achieved, that is, an optimal and stable combination of security policies, to establish and enhance trust among stakeholders.

scholarly journals Preserving Privacy in Multimedia Social Networks Using Machine Learning Anomaly Detection

2020 ◽  
Vol 2020 ◽  
pp. 1-14 ◽  
Author(s):  
Randa Aljably ◽  
Yuan Tian ◽  
Mznah Al-Rodhaan
Keyword(s):  
Machine Learning ◽  
Social Networks ◽  
Access Control ◽  
Anomaly Detection ◽  
Privacy Preservation ◽  
Support Vector ◽  
Detection Techniques ◽  
Access Control Models ◽  
Control Models ◽  
Multimedia Social Networks

Nowadays, user’s privacy is a critical matter in multimedia social networks. However, traditional machine learning anomaly detection techniques that rely on user’s log files and behavioral patterns are not sufficient to preserve it. Hence, the social network security should have multiple security measures to take into account additional information to protect user’s data. More precisely, access control models could complement machine learning algorithms in the process of privacy preservation. The models could use further information derived from the user’s profiles to detect anomalous users. In this paper, we implement a privacy preservation algorithm that incorporates supervised and unsupervised machine learning anomaly detection techniques with access control models. Due to the rich and fine-grained policies, our control model continuously updates the list of attributes used to classify users. It has been successfully tested on real datasets, with over 95% accuracy using Bayesian classifier, and 95.53% on receiver operating characteristic curve using deep neural networks and long short-term memory recurrent neural network classifiers. Experimental results show that this approach outperforms other detection techniques such as support vector machine, isolation forest, principal component analysis, and Kolmogorov–Smirnov test.

scholarly journals A Modularity and Extensibility Analysis on Authorization Frameworks

2016 ◽  
Vol 2 (1) ◽  
pp. 36
Author(s):  
Eduardo Martins Guerra ◽  
Jefferson O. Silva ◽  
Clovis Torres Fernandes
Keyword(s):  
Comparative Analysis ◽  
Access Control ◽  
Multiple Access ◽  
Control Model ◽  
Security Policies ◽  
Basic Form ◽  
Access Control Models ◽  
Adequate Response ◽  
Control Models ◽  
Simple Question

<p>Authorization in its most basic form can be<br />reduced to a simple question: “May a subject X access an object<br />Y?” The attempt to implement an adequate response to this<br />authorization question has produced many access control models<br />and mechanisms. The development of the authorization<br />mechanisms usually employs frameworks, which usually<br />implements one access control model, as a way of reusing larger<br />portions of software. However, some authorization requirements,<br />present on recent applications, have demanded for software<br />systems to be able to handle security policies of multiple access<br />control models. Industry has resolved this problem in a<br />pragmatic way, by using the framework to solve part of the<br />problem, and mingling business and the remaining authorization<br />concerns into the code. The main goal of this paper is to present a<br />comparative analysis between the existing frameworks developed<br />either within the academic and industry environments. This<br />analysis uses a motivating example to present the main industry<br />frameworks and consider the fulfillment of modularity,<br />extensibility and granularity requirements facing its suitability<br />for the existing access control models. This analysis included the<br />Esfinge Guardian framework, which is an open source<br />framework developed by the authors that provides mechanisms<br />that allows its extension to implement and combine different<br />authorization models.</p>

Access Control Models for Online Social Networks

2014 ◽  
pp. 451-484
Author(s):  
Rula Sayaf ◽  
Dave Clarke
Keyword(s):  
Social Networks ◽  
Access Control ◽  
Online Social Networks ◽  
Personal Data ◽  
Security And Privacy ◽  
Open Problems ◽  
Access Control Models ◽  
Control Models ◽  
Underlying Mechanisms ◽  
High Level

Access control is one of the crucial aspects in information systems security. Authorizing access to resources is a fundamental process to limit potential privacy violations and protect users. The nature of personal data in online social networks (OSNs) requires a high-level of security and privacy protection. Recently, OSN-specific access control models (ACMs) have been proposed to address the particular structure, functionality and the underlying privacy issues of OSNs. In this survey chapter, the essential aspects of access control and review the fundamental classical ACMs are introduced. The specific OSNs features and review the main categories of OSN-specific ACMs are highlighted. Within each category, the most prominent ACMs and their underlying mechanisms that contribute enhancing privacy of OSNs are surveyed. Toward the end, more advanced issues of access control in OSNs are discussed. Throughout the discussion, different models and highlight open problems are contrasted. Based on these problems, the chapter is concluded by proposing requirements for future ACMs.

Challenges of Meta Access Control Model Enforcement to an Increased Interoperability

2018 ◽  
pp. 651-661 ◽  
Author(s):  
Sérgio Luís Guerreiro
Keyword(s):  
Access Control ◽  
Control Model ◽  
Control Mechanisms ◽  
Access Control Model ◽  
Extra Effort ◽  
Access Control Models ◽  
Control Models ◽  
Ontological Approach ◽  
Core Issues ◽  
Access Data

When organizations are collaborating, their access control models need to interoperate. However, nowadays in the industry, there are too many access control models variants and, most of times; the interoperability enforcement consumes an extra effort. In this context, this paper identifies the challenges towards how to design and enforce a meta-access control model to facilitate the interoperability between the different access control mechanisms available. The problem is posed using an ontological approach. Then, the challenges are explained using a descriptive explanation of the meta access control enforcement. The core issues addressed are: access models interoperability, standardization of storage for access data and provisioning of access models.

Challenges of Meta Access Control Model Enforcement to an Increased Interoperability

2019 ◽  
pp. 247-258
Author(s):  
Sérgio Luís Guerreiro
Keyword(s):  
Access Control ◽  
Control Model ◽  
Control Mechanisms ◽  
Access Control Model ◽  
The Core ◽  
Extra Effort ◽  
Access Control Models ◽  
Ontological Approach ◽  
Core Issues ◽  
Access Data

When organizations are collaborating, their access control models need to interoperate. However, there are too many access control model variants, and the interoperability enforcement consumes extra effort. In this context, this chapter identifies the challenges of how to design and enforce a meta-access control model to facilitate the interoperability between the different access control mechanisms available. The problem is posed using an ontological approach. Then, the challenges are explained using a descriptive explanation of the meta access control enforcement. The core issues addressed are access models interoperability, standardization of storage for access data, and provisioning of access models.

Towards a Scalable Role and Organization Based Access Control Model with Decentralized Security Administration

2009 ◽  
pp. 94-117
Author(s):  
Zhixiong Zhang ◽  
Xinwen Zhang ◽  
Ravi Sandhu
Keyword(s):  
Access Control ◽  
Scale Up ◽  
Control Model ◽  
Security Policies ◽  
Traditional Role ◽  
Access Control Model ◽  
Role Hierarchy ◽  
Role Based ◽  
Organization Based Access Control ◽  
Administrative Tasks

This chapter addresses the problem that traditional role-base access control (RBAC) models do not scale up well for modeling security policies spanning multiple organizations. After reviewing recently proposed Role and Organization Based Access Control (ROBAC) models, an administrative ROBAC model called AROBAC07 is presented and formalized in this chapter. Two examples are used to motivate and demonstrate the usefulness of ROBAC. Comparison between AROBAC07 and other administrative RBAC models are given. We show that ROBAC/AROBAC07 can significantly reduce administration complexity for applications involving a large number of organizational units. Finally, an application compartment-based delegation model is introduced, which provides a method to construct administrative role hierarchy in AROBAC07. We show that the AROBAC07 model provides convenient ways to decentralize administrative tasks for ROBAC systems and scales up well for role-based systems involving a large number of organizational units.

Integrating Access Policies into the Development Process of Hypermedia Web Systems

2008 ◽  
pp. 1514-1530
Author(s):  
Paloma Diaz ◽  
Daniel Sanz ◽  
Susana Montero ◽  
Ignacio Aedo
Keyword(s):  
Access Control ◽  
Development Process ◽  
Control Model ◽  
Development Method ◽  
Access Control Models ◽  
High Level ◽  
Access Policies ◽  
Whole Life Cycle ◽  
Hypermedia Applications ◽  
Web Systems

This chapter discusses the integration of access control in the development process of hypermedia applications. Two key ideas are proposed: the use of high level, abstract access control models and the inclusion of access control in the whole life cycle of hypermedia applications. Authors present an access control model for hypermedia that makes it possible to formalize access policies using elements of the hypermedia domain, those used to specify structure and navigation services. Abstract models are not enoughto assist developers in dealing with security in a systematic way. Thus, authors describe how high-level access rules can be specified following the Ariadne Development Method (ADM). The ARCE project is used as example of development.

Sign in / Sign up

Export Citation Format

Share Document