Collaborative Access Control in WebdamLog

Vera Zaychik Moffit 1 Julia Stoyanovich 1 Serge Abiteboul 2, 3 Gerome Miklau 4
3 DAHU - Verification in databases
LSV - Laboratoire Spécification et Vérification [Cachan], ENS Cachan - École normale supérieure - Cachan, Inria Saclay - Ile de France, CNRS - Centre National de la Recherche Scientifique : UMR8643
Abstract : The management of Web users' personal information is increasingly distributed across a broad array of applications and systems, including online social networks and cloud-based services. Users wish to share data using these systems, but avoiding the risks of unintended disclosures or unauthorized access by applications has become a major challenge. We propose a novel access control model that operates within a distributed data management framework based on datalog. Using this model, users can control access to data they own and control applications they run. They can conveniently specify access control policies providing flexible tuple-level control derived using provenance information. We present a formal specification of the model, an implementation built using an open-source distributed datalog engine, and an extensive experimental evaluation showing that the computational cost of access control is modest.
Document type :
Conference papers
Complete list of metadatas

Cited literature [22 references]  Display  Hide  Download

https://hal.inria.fr/hal-01136473
Contributor : Serge Abiteboul <>
Submitted on : Friday, March 27, 2015 - 1:21:42 PM
Last modification on : Thursday, February 7, 2019 - 5:29:33 PM
Long-term archiving on : Tuesday, April 18, 2017 - 1:40:19 AM

File

sec_for_serge.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01136473, version 1

Citation

Vera Zaychik Moffit, Julia Stoyanovich, Serge Abiteboul, Gerome Miklau. Collaborative Access Control in WebdamLog. Proceeding of the ACM Sigmod Conference on Data Management, 2015, Melbourne, Australia. ⟨hal-01136473⟩

Share

Metrics

Record views

436

Files downloads

358