TY - GEN
T1 - Collaborative access control in WebdamLog
AU - Moffitt, Vera Zaychik
AU - Stoyanovich, Julia
AU - Abiteboul, Serge
AU - Miklau, Gerome
N1 - Publisher Copyright:
Copyright © 2015 ACM.
PY - 2015/5/27
Y1 - 2015/5/27
N2 - The management of Web users' personal information is increasingly distributed across a broad array of applications and systems, including online social networks and cloudbased services. Users wish to share data using these systems, but avoiding the risks of unintended disclosures or unauthorized access by applications has become a major challenge. We propose a novel access control model that operates within a distributed data management framework based on datalog. Using this model, users can control access to data they own and control applications they run. They can conveniently specify access control policies providing flexible tuple-level control derived using provenance information. We present a formal specification of the model, an implementation built using an open-source distributed datalog engine, and an extensive experimental evaluation showing that the computational cost of access control is modest.
AB - The management of Web users' personal information is increasingly distributed across a broad array of applications and systems, including online social networks and cloudbased services. Users wish to share data using these systems, but avoiding the risks of unintended disclosures or unauthorized access by applications has become a major challenge. We propose a novel access control model that operates within a distributed data management framework based on datalog. Using this model, users can control access to data they own and control applications they run. They can conveniently specify access control policies providing flexible tuple-level control derived using provenance information. We present a formal specification of the model, an implementation built using an open-source distributed datalog engine, and an extensive experimental evaluation showing that the computational cost of access control is modest.
UR - http://www.scopus.com/inward/record.url?scp=84944628025&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84944628025&partnerID=8YFLogxK
U2 - 10.1145/2723372.2749433
DO - 10.1145/2723372.2749433
M3 - Conference contribution
AN - SCOPUS:84944628025
T3 - Proceedings of the ACM SIGMOD International Conference on Management of Data
SP - 197
EP - 211
BT - SIGMOD 2015 - Proceedings of the 2015 ACM SIGMOD International Conference on Management of Data
PB - Association for Computing Machinery
T2 - ACM SIGMOD International Conference on Management of Data, SIGMOD 2015
Y2 - 31 May 2015 through 4 June 2015
ER -