xAccess: A unified user-centric access control framework for web applications

摘要: With the rapid growth of Web 2.0, users are contributing more and content on Internet, in form user profiles, blogs, reviews, etc. this increased sharing comes a pressing need for access control policies mechanisms to protect users' privacy. Access has remained largely centralized under web applications. Moreover, most applications either provide no or very primitive limited control. We argue that owner any piece data should be able decide how data. This argument hold not only data, but also users. In other words, choose their own models independent underlying work, we present novel framework, called xAccess, providing empowers they want accessed. xAccess is analogous single sign-on mechanism, however, instead login capability, it provides with point defining his one multiple On hand, enables individual use unified across applications; allows an application support different deployed by its model abstraction. demonstrate viability our design means platform prototype. The usability further evaluated developing sample using APIs.