Presentation is loading. Please wait.

Presentation is loading. Please wait.

Aegis: A Semantic Implementation of Privacy as Contextual Integrity in Social Ecosystems Imrul Kayes, Adriana Iamnitchi.

Published byFelix Parrish Modified over 9 years ago

Similar presentations

Presentation on theme: "Aegis: A Semantic Implementation of Privacy as Contextual Integrity in Social Ecosystems Imrul Kayes, Adriana Iamnitchi."— Presentation transcript:

1 Aegis: A Semantic Implementation of Privacy as Contextual Integrity in Social Ecosystems Imrul Kayes, Adriana Iamnitchi

2 Social Privacy Risks 2

3 Why Does This Happen? Inappropriate sharing and transferring of information (Permissive) Default privacy settings by OSN provider Because they can Lack of universal framework that establishes what is right and wrong Users do not change default settings 99% Twitter users >80% Facebook users When they do, they get it wrong 3

4 Applications Social Inference API Social Data Management Personal Aggregators Social Sensors Social Signals Evolution Towards Social Ecosystems Iamnitchi et al. ”The Social Hourglass: an Infrastructure for Socially-aware Applications and Services." IEEE Internet Computing (2012). 4

5 Privacy in Social Ecosystems Social Ecosystems amplify privacy concerns –Aggregated data from different contexts of activity –A more complete (uncomfortable?) digital recording of a person’s life –Social applications from different contexts of activity Default privacy settings become critical 5

6 Privacy as Contextual Integrity The right to appropriate flow of personal information Based on two life facts: –transfer of personal information happens in a social context –people alter behavior to correspond with the norms of the context Two norms: –Norms of appropriateness –Norms of distribution Nissenbaum, Helen. "Privacy as contextual integrity." Washington Law Review 79.1 (2004). 6

7 Our Solution Ontology-based social ecosystem data model to capture user online data semantics –Model social contexts –Model user roles Generate default privacy from social data based on Nissembaum’s contextual integrity framework Extensible, fine-grained default policy customizable by users Prototype implementation and experimental evaluation on three real-world large networks 7

8 Ontology-based Social Ecosystems Data Model Set of entities, instances, functions, relations and axioms A vocabulary for social ecosystems Provides formal and structured representation of user’s data and social spheres Gives semantic interoperability High-level logic inference is possible 8

9 9

10 System Model Unrestricted set of disjoint social contexts A user belongs to only one social context at any time A user can have one or more roles in every social context s/he is part of Each piece of data (resource) is assigned (created) to only one context Shared data(resources) are replicated in each of the other users’ current contexts A request for a resource is made on behalf of the requester’s role in the particular context in which the requester is when the request is made A request specifies an action, which could be read, write, delete or replicate to another user’s ownership. 10

11 Architecture 11

12 Policy Specification A policy is defined as a set of RDF statements Policies obey the two information norms of CI 12 Norms of appropriateness: Bob’s colleagues can read his professional groups in the Professional context Colleagues Alice Bob Professional Groups? Yes teammate Professional Groups? No Charlie ASK where { ?req rdf:type p:requestor. ?req p:allowed p:read. p:read p:performedOn Bob. ?req se:isColleagueOf Bob. Bob se:professionalMember ?group.} ASK where { ?req rdf:type p:requestor. ?req p:allowed p:read. p:read p:performedOn Bob. ?req se:isColleagueOf Bob. Bob se:professionalMember ?group.}

13 Policy Specification Norms of distribution: policy restricts the access to Bob’s photos if they are shared 13 AliceBob Charlie friends Shared contents (e.g., Photo) friends Photo? No ASK where { ?req rdf:type p:requestor. ?req p:allowed p:read. p:read p:performedOn Bob. ?req se:isFriendOf Bob. Bob se:hasPhoto ?photo. ?photo se:status se:notShared} ASK where { ?req rdf:type p:requestor. ?req p:allowed p:read. p:read p:performedOn Bob. ?req se:isFriendOf Bob. Bob se:hasPhoto ?photo. ?photo se:status se:notShared}

14 Context Inference Ontology defines hierarchy among resources (user data) Context inference is possible for each resource 14

15 Request Handling Flow Chart 15

16 Prototype Implementation Implemented the prototype in Java Platform Standard Edition 6 (Java SE 6) Jena’s APIs for RDF data management Ontology: Jena’s API for handling OWL ontologies leveraged TDB for persistent storage of knowledge base SPARQL: Jena’s query engine 16

17 Experimental Evaluation Objective: –Performance of the policy engine in executing default policies for realistic workloads –Scalability of the policy engine in executing default policies –Overhead induced by default policies 17

18 Experimental Evaluation Three real networks Thirteen test cases (100~70,000 users): snowball sampling from the networks Social ecosystems knowledge base including Person, Relationships and Groups Two types of responses -positive authorization access control response -negative authorization access control response 18

19 Access time increases linearly with the size of the SEKB Positive authorization Negative authorization Number of requests answered per second 19

20 Positive and negative authorization take about the same time TDB data structures are threaded B+Trees long scans (negative authorizations) proceeds without needing to traverse the branches of the tree 20

21 Performance decreases with increasing users Increased system memory to realistic capacity for an in-production server Distributed solutions for data management 21

22 Overhead induced by default policies is Statistically Insignificant 22

23 Future Work Test the effects of default policies - on applications that are too restrictive - user satisfaction with user-based surveys Formalize and analyze potential privacy attacks Understand the system in different platform settings 23

24 Summary Propose an ontology-based social ecosystem data model to capture user social data Employ semantic web technologies to generate default privacy polices based on Nissembaum’s contextual integrity theory Provide an architecture and prototype implementation of privacy model Experimental evaluation on three real-world large networks to demonstrate the applicability in practice 24

25 Thank You! Aegis: A Semantic Implementation of Privacy as Contextual Integrity in Social Ecosystems Imrul kayes, Adriana Iamnitchi http://www.cse.usf.edu/dsg/ imrul@mail.usf.edu 25

26 Back Up Slides 26

27 Social Sensors 27 Consume social signals: Location/collocation Schedule (Google calendar) Mobile phone activity (calls, etc) Online social network interactions Email Shared content (Netflix, CiteULike) Personal relations (family) …

28 Social Sensors Report on behalf of ego: –Alter, the person ego is interacting with –An activity tag: e.g., “outdoors”, “dining” Based on content, location, predefined labels, semantic web (ontologies), etc. –A weight: e.g., 0.15 Run on ego’s mobile devices, desktop, or on the web Process user interactions –To reduce noise –To distinguish between routine and meaningful interactions 28

29 29 Act as the user’s personal assistant Runs on trusted device (cell phone) Responsible for o Managing access to social signal apps o Personalization o Identity management Aggregators

30 Related Work Squicciarini et al. “PriMa” –auto generates access control policies for users –Based on factors such as average privacy preference of similar and related users, accessibility of similar items in similar and related users, closeness of owner and access or popularity of the owner –A large number of factors and their parametrized tuning is required –No performance evaluation 30

31 Related Work Shehab et al. “PolicyMgr” –leverages user provided example policy settings as training sets and build classifiers that are the basis for auto- generated policies –Practicality in terms of response time has not yet been shown 31

32 Related Work Our privacy model differs from other solutions –We focused on generating default policies for a social ecosystem that deals with users’ aggregated social data from different domains –We considered a privacy framework proposed by social theorists and translated it into an architecture and proof-of-concept implementation 32

Download ppt "Aegis: A Semantic Implementation of Privacy as Contextual Integrity in Social Ecosystems Imrul Kayes, Adriana Iamnitchi."

Similar presentations

ROWLBAC – Representing Role Based Access Control in OWL

ROWLBAC – Representing Role Based Access Control in OWL
A Stepwise Modeling Approach for Individual Media Semantics Annett Mitschick, Klaus Meißner TU Dresden, Department of Computer Science, Multimedia Technology.

A Stepwise Modeling Approach for Individual Media Semantics Annett Mitschick, Klaus Meißner TU Dresden, Department of Computer Science, Multimedia Technology.
Haystack: Per-User Information Environment 1999 Conference on Information and Knowledge Management Eytan Adar et al Presented by Xiao Hu CS491CXZ.

Haystack: Per-User Information Environment 1999 Conference on Information and Knowledge Management Eytan Adar et al Presented by Xiao Hu CS491CXZ.
Location Based Trust for Mobile User – Generated Content : Applications, Challenges and Implementations Presented By : Anand Dipakkumar Joshi USC.

Location Based Trust for Mobile User – Generated Content : Applications, Challenges and Implementations Presented By : Anand Dipakkumar Joshi USC.
Building and Analyzing Social Networks Web Data and Semantics in Social Network Applications Dr. Bhavani Thuraisingham February 15, 2013.

Building and Analyzing Social Networks Web Data and Semantics in Social Network Applications Dr. Bhavani Thuraisingham February 15, 2013.
Prometheus: User-Controlled P2P Social Data Management for Socially-aware Applications Nicolas Kourtellis, Joshua Finnis, Paul Anderson, Jeremy Blackburn,

Prometheus: User-Controlled P2P Social Data Management for Socially-aware Applications Nicolas Kourtellis, Joshua Finnis, Paul Anderson, Jeremy Blackburn,
Daniela Oliveira 1, Dhiraj Murthy 1, Henric Johnson 2, S. Felix Wu 3, Roozbeh Nia 3 and Jeff Rowe 3 1 Bowdoin College 2 Blekinge Institute of Technology.

Daniela Oliveira 1, Dhiraj Murthy 1, Henric Johnson 2, S. Felix Wu 3, Roozbeh Nia 3 and Jeff Rowe 3 1 Bowdoin College 2 Blekinge Institute of Technology.
Privacy in Social Networks CSCE 201. Reading Dwyer, Hiltz, Passerini, Trust and privacy concern within social networking sites: A comparison of Facebook.

Privacy in Social Networks CSCE 201. Reading Dwyer, Hiltz, Passerini, Trust and privacy concern within social networking sites: A comparison of Facebook.
Privacy and Contextual Integrity: Framework and Applications Adam Barth, Anupam Datta, John C. Mitchell (Stanford), and Helen Nissenbaum (NYU) TRUST Winter.

Privacy and Contextual Integrity: Framework and Applications Adam Barth, Anupam Datta, John C. Mitchell (Stanford), and Helen Nissenbaum (NYU) TRUST Winter.
Sensemaking and Ground Truth Ontology Development Chinua Umoja William M. Pottenger Jason Perry Christopher Janneck.

Sensemaking and Ground Truth Ontology Development Chinua Umoja William M. Pottenger Jason Perry Christopher Janneck.
ReQuest (Validating Semantic Searches) Norman Piedade de Noronha 16 th July, 2004.

ReQuest (Validating Semantic Searches) Norman Piedade de Noronha 16 th July, 2004.
FI-WARE – Future Internet Core Platform FI-WARE Security July 2011 High-level Description.

FI-WARE – Future Internet Core Platform FI-WARE Security July 2011 High-level Description.
Cloud based linked data platform for Structural Engineering Experiment Xiaohui Zhang

Cloud based linked data platform for Structural Engineering Experiment Xiaohui Zhang
THE SECOND LIFE OF A SENSOR: INTEGRATING REAL-WORLD EXPERIENCE IN VIRTUAL WORLDS USING MOBILE PHONES Sherrin George & Reena Rajan.

THE SECOND LIFE OF A SENSOR: INTEGRATING REAL-WORLD EXPERIENCE IN VIRTUAL WORLDS USING MOBILE PHONES Sherrin George & Reena Rajan.
Audumbar Chormale Advisor: Dr. Anupam Joshi M.S. Thesis Defense

Audumbar Chormale Advisor: Dr. Anupam Joshi M.S. Thesis Defense
A Social Help Engine for Online Social Network Mobile Users Tam Vu, Akash Baid WINLAB, Rutgers University May 21,

A Social Help Engine for Online Social Network Mobile Users Tam Vu, Akash Baid WINLAB, Rutgers University May 21,
UT DALLAS Erik Jonsson School of Engineering & Computer Science FEARLESS engineering Security and Privacy in Social Networks Raymond Heatherly Data Security.

UT DALLAS Erik Jonsson School of Engineering & Computer Science FEARLESS engineering Security and Privacy in Social Networks Raymond Heatherly Data Security.
Semantic Web Technologies Lecture # 2 Faculty of Computer Science, IBA.

Semantic Web Technologies Lecture # 2 Faculty of Computer Science, IBA.
Architectural Design.

Architectural Design.
Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.

Understanding Android Security Yinshu Wu William Enck, Machigar Ongtang, and PatrickMcDaniel Pennsylvania State University.

Similar presentations

Ads by Google