Abstract
Social networks bring together users in a virtual platform and offer them the ability to share -within the Community- personal and professional information’s, photos, etc. which are sometimes sensitive. Although, the majority of these networks provide access control mechanisms to their users (to manage who accesses to which information), privacy settings are limited and do not respond to all users' needs. Hence, the published information remain all vulnerable to illegal access. In this paper, the access control policy of the social network is analyzed in a profound way by starting with its modeling with Organization Role Based Access Control model, and moving to the simulation of the policy with an appropriate simulator to test the coherence aspect, and ending with a discussion of analysis results which shows the gap between access control management options offered by Facebook and the real requirements of users in the same context. Extracted conclusions prove the need of developing a new access control model that meets most of these requirements, which will be the subject of a forthcoming work
Highlights
Facebook [1] is an online social network, free and very popular (1.65 billion users in 2016) allowing anyone to register, invite friends, exchange messages; share photos and videos, etc
It is interesting to use the model: Organization Role Based Access Control (OrBAC) [9] ; This is an access control model focused on the organization and based on first-order logic
This work is focused on the modeling and simulation of the entire policy as it is with the OrBAC model and MotOrBAC [12], software to edit all of the incoherencies detected in the policy, in addition, what the policy offers to the user as access control management features and the user's needs are compared in order to provide a more appropriate access control model using OrBAC and defining contextual rules to manage the policy of a finer way; This will be the subject of my forthcoming work
Summary
Facebook [1] is an online social network, free and very popular (1.65 billion users in 2016) allowing anyone to register, invite friends, exchange messages; share photos and videos, etc. It continues to expand to attract the largest number of users and offers them the means to manage access to their informations from the "Privacy Settings" interface It is often the subject of debate [3], [4], [6]–[8], because of privacy issues that remains .That lead us to closely analyze this problematic using an access control model allowing the extracting of incoherence problems that exist in Facebook Access control policy to subsequently propose the most appropriate access management solution to resources. It is interesting to use the model: Organization Role Based Access Control (OrBAC) [9] ; This is an access control model focused on the organization and based on first-order logic It meets all the previously mentioned requirements and adapts perfectly to the context of Facebook. This work is focused on the modeling and simulation of the entire policy as it is with the OrBAC model and MotOrBAC [12], software to edit all of the incoherencies detected in the policy, in addition, what the policy offers to the user as access control management features and the user's needs are compared in order to provide a more appropriate access control model using OrBAC and defining contextual rules to manage the policy of a finer way; This will be the subject of my forthcoming work
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
