Inferring Unknown Privacy Control Policies in a Social Networking System
关键词:
摘要: Social networking systems (SNSs) such as Facebook allow users to control accesses certain information belonging them via a set of privacy settings. However, due various potential system design considerations and usability restrictions settings are never complete, i.e., not all the applicable policies related user configurable. In fact, access is governed by collection fixed specified SNS. We observe that an SNS less than transparent about policies; although some might be communicated help pages nudges (e.g., profile picture public on Facebook), they tend incomplete inaccurate. this paper, we propose approach infer enforced policy consequently unknown given explicit other Such helps end understand better implicit imposed can leveraged operator improve transparency their system.
acm.org
sci-hub.se 参考文章(8)
Amirreza Masoumzadeh, James Joshi, Privacy settings in social networking systems: what you cannot control computer and communications security. pp. 149- 154 ,(2013) , 10.1145/2484313.2484331
Hongxin Hu, GailJoon Ahn, Enabling verification and conformance testing for access control model Proceedings of the 13th ACM symposium on Access control models and technologies - SACMAT '08. pp. 195- 204 ,(2008) , 10.1145/1377836.1377867
Lujo Bauer, Scott Garriss, Michael K. Reiter, Detecting and resolving policy misconfigurations in access-control systems ACM Transactions on Information and System Security. ,vol. 14, pp. 2- ,(2011) , 10.1145/1952982.1952984
George Danezis, Inferring privacy policies for social networking services security and artificial intelligence. pp. 5- 10 ,(2009) , 10.1145/1654988.1654991
E. Martin, Tao Xie, Inferring access-control policy properties via machine learning ieee international workshop on policies for distributed systems and networks. pp. 235- 238 ,(2006) , 10.1109/POLICY.2006.19
Mark Hall, Eibe Frank, Geoffrey Holmes, Bernhard Pfahringer, Peter Reutemann, Ian H. Witten, The WEKA data mining software ACM SIGKDD Explorations Newsletter. ,vol. 11, pp. 10- 18 ,(2009) , 10.1145/1656274.1656278
Dianxiang Xu, Lijo Thomas, Michael Kent, Tejeddine Mouelhi, Yves Le Traon, A model-based approach to automated testing of access control policies Proceedings of the 17th ACM symposium on Access Control Models and Technologies - SACMAT '12. pp. 209- 218 ,(2012) , 10.1145/2295136.2295173
Lujun Fang, Kristen LeFevre, Privacy wizards for social networking sites the web conference. pp. 351- 360 ,(2010) , 10.1145/1772690.1772727