Browse by author
Lookup NU author(s): Maciej Machulak, Professor Aad van Moorsel
Web 2.0 technologies have made it possible to migrate traditional desktop applications to the Web, resulting in a rich and dynamic user experience and in expanded functionality. Individuals can create and manage their content online, and they are not only consumers of Web services, but also active participants in creating, enriching and personalizing these services. As a result, potentially large amounts of personal, sensitive, and valuable data is put online, spread across various Web services. Users willingly share this data with other users and services on the Web, but are also concerned about maintaining privacy and keeping their personal data secure. Currently, users must use diverse access control solutions available for each Web service to secure data and control its dissemination. When such mechanisms are used on a daily basis, they add considerable overhead, especially since these mechanisms often lack sophistication with respect to functionality as well as user interfaces. To alleviate this problem, we discuss in this paper a novel approach to access management for Web resources that includes a user as a core part of its model. The proposal puts the user in charge of assigning access authorization to resources that may be hosted at various Web applications. It facilitates the ability of users to share data more selectively using a centralized authorization manager which makes access decisions based on user instructions. It also supports requesters in accessing such data.
Author(s): Machulak MP, Maler EL, Catalano D, van Moorsel A
Publication type: Report
Publication status: Published
Series Title: School of Computing Science Technical Report Series
Year: 2010
Pages: 12
Print publication date: 01/03/2010
Source Publication Date: March 2010
Report Number: 1196
Institution: School of Computing Science, University of Newcastle upon Tyne
Place Published: Newcastle upon Tyne
URL: http://www.cs.ncl.ac.uk/publications/trs/papers/1196.pdf
