IRIS - Institutional Research Information System
IRIS è il sistema di gestione integrata dei dati della ricerca (persone, progetti, pubblicazioni, attività) adottato dall'Università degli Studi dell’Insubria.

IRInSubria - Institutional Repository Insubria
IRInSubria raccoglie, conserva, documenta e dissemina le informazioni sulla produzione scientifica dell'Università degli Studi dell’Insubria anche ai fini della valutazione della ricerca.

In this article, we propose an access control mechanism for Web-based social networks, which adopts a rule-based approach for specifying access policies on the resources owned by network participants, and where authorized users are denoted in terms of the type, depth, and trust level of the relationships existing between nodes in the network. Different from traditional access control systems, our mechanism makes use of a semidecentralized architecture, where access control enforcement is carried out client-side. Access to a resource is granted when the requestor is able to demonstrate being authorized to do that by providing a proof. In the article, besides illustrating the main notions on which our access control model relies, we present all the protocols underlying our system and a performance study of the implemented prototype.

Enforcing Access Control in Web-based Social Networks

CARMINATI, BARBARA;FERRARI, ELENA;PEREGO, ANDREA
2009-01-01

Abstract

In this article, we propose an access control mechanism for Web-based social networks, which adopts a rule-based approach for specifying access policies on the resources owned by network participants, and where authorized users are denoted in terms of the type, depth, and trust level of the relationships existing between nodes in the network. Different from traditional access control systems, our mechanism makes use of a semidecentralized architecture, where access control enforcement is carried out client-side. Access to a resource is granted when the requestor is able to demonstrate being authorized to do that by providing a proof. In the article, besides illustrating the main notions on which our access control model relies, we present all the protocols underlying our system and a performance study of the implemented prototype.
2009
WOS:000272040100006
2-s2.0-70350406398
Carminati, Barbara; Ferrari, Elena; Perego, Andrea
Articolo su Rivista
File in questo prodotto:
File Dimensione Formato  
Tissec_Enforcing_access_control_SN.pdf

non disponibili

Descrizione: PDF editoriale
Tipologia: Altro materiale allegato
Licenza: DRM non definito
Dimensione 2.19 MB
Formato Adobe PDF
  Visualizza/Apri   Richiedi una copia
2.19 MB Adobe PDF   Visualizza/Apri   Richiedi una copia

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11383/1706212
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 202
  • ???jsp.display-item.citation.isi??? 135
social impact