Preventing Sybil Attacks by Privilege Attenuation: A Design Principle for Social Network Systems

dc.contributor.authorFong, Philipeng
dc.date.accessioned2010-12-02T22:31:55Z
dc.date.available2010-12-02T22:31:55Z
dc.date.issued2010-12-02T22:31:55Z
dc.description.abstractIn Facebook-style Social Network Systems (FSNSs), which are a generalization of the access control model of Facebook, an access control policy specifies a graphtheoretic relationship between the resource owner and resource accessor that must hold in the social graph in order for access to be granted. Pseudonymous identities may collude to alter the topology of the social graph and gain access that would otherwise be forbidden. We formalize Denning’s Principle of Privilege Attenuation (POPA) as a run-time property, and demonstrate that it is a necessary and sufficient condition for preventing the above form of Sybil attacks. A static policy analysis is then devised for verifying that an FSNS is POPA compliant (and thus Sybil free). The static analysis is proven to be both sound and complete. We also extend our analysis to cover a peculiar feature of FSNS, namely, what Fong et al. dubbed as Stage-I Authorization. We discuss the anomalies resulted from this extension, and point out the need to redesign Stage-I Authorization to support a rational POPA-compliance analysis.eng
dc.description.refereedNoeng
dc.identifier.department2010-984-33eng
dc.identifier.doihttp://dx.doi.org/10.11575/PRISM/30602
dc.identifier.urihttp://hdl.handle.net/1880/48290
dc.language.isoengeng
dc.publisher.corporateUniversity of Calgaryeng
dc.publisher.facultyScienceeng
dc.subjectSocial network systemseng
dc.subject.otherAccess control, policy analysis, Sybil attackseng
dc.titlePreventing Sybil Attacks by Privilege Attenuation: A Design Principle for Social Network Systemseng
dc.typetechnical reporteng
thesis.degree.disciplineComputer Scienceeng
Files
Original bundle
Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
2010-984-33.pdf
Size:
397.49 KB
Format:
Adobe Portable Document Format
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.86 KB
Format:
Item-specific license agreed upon to submission
Description: