User behaviour-based access control for social media with qualitative research and Bayesian modelling

Sara McCloskey; John Herbert

doi:10.1109/COMPSAC.2019.10269

User behaviour-based access control for social media with qualitative research and Bayesian modelling

Sara McCloskey
, John Herbert

School of Nursing and Midwifery

University College Cork

Research output: Chapter in Book/Report/Conference proceedings › Chapter › peer-review

Abstract

Access control systems protect against unauthorised access to resources, where security policies define what is allowed, and what is not. Traditional models focus on protecting access to files, directories, and processes; however, the rise of social media has brought about a need for a new type of model – one focused on sharing rather than protecting, and based on user behaviour rather than a technical specification. A methodology is proposed to perform what we call user behaviour-based access control, building access control policies through analysis of user behaviour. The process involves a combination of qualitative research practices and probabilistic reasoning to address the problems of uncertainty and diversity associated with the study of human behaviour. Data collection and analysis is achieved through semi-structured interviewing and grounded theory techniques. The results of the analysis are used to build a probabilistic model, in the form of a Bayesian network, which implements access control. Requests containing observations of the attribute values are pushed through the network to produce a probabilistic access control decision. The method has been evaluated on real social media users, and has been shown to be effective in capturing and mechanising user sharing preferences.

Original language	English
Title of host publication	Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019
Editors	Vladimir Getov, Jean-Luc Gaudiot, Nariyoshi Yamai, Stelvio Cimato, Morris Chang, Yuuichi Teranishi, Ji-Jiang Yang, Hong Va Leong, Hossian Shahriar, Michiharu Takemoto, Dave Towey, Hiroki Takakura, Atilla Elci, Susumu Takeuchi, Satish Puri
Publisher	IEEE Computer Society
Pages	575-579
Number of pages	5
ISBN (Electronic)	9781728126074
DOIs	https://doi.org/10.1109/COMPSAC.2019.10269
Publication status	Published - Jul 2019
Event	43rd IEEE Annual Computer Software and Applications Conference, COMPSAC 2019 - Milwaukee, United States Duration: 15 Jul 2019 → 19 Jul 2019

Publication series

Name	Proceedings - International Computer Software and Applications Conference
Volume	2
ISSN (Print)	0730-3157

Conference

Conference	43rd IEEE Annual Computer Software and Applications Conference, COMPSAC 2019
Country/Territory	United States
City	Milwaukee
Period	15/07/19 → 19/07/19

Keywords

Access control
Bayesian network
Qualitative research
Social media
User behaviour

Access to Document

10.1109/COMPSAC.2019.10269

Cite this

McCloskey, S., & Herbert, J. (2019). User behaviour-based access control for social media with qualitative research and Bayesian modelling. In V. Getov, J.-L. Gaudiot, N. Yamai, S. Cimato, M. Chang, Y. Teranishi, J.-J. Yang, H. V. Leong, H. Shahriar, M. Takemoto, D. Towey, H. Takakura, A. Elci, S. Takeuchi, & S. Puri (Eds.), Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019 (pp. 575-579). Article 8753983 (Proceedings - International Computer Software and Applications Conference; Vol. 2). IEEE Computer Society. https://doi.org/10.1109/COMPSAC.2019.10269

McCloskey, Sara ; Herbert, John. / User behaviour-based access control for social media with qualitative research and Bayesian modelling. Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019. editor / Vladimir Getov ; Jean-Luc Gaudiot ; Nariyoshi Yamai ; Stelvio Cimato ; Morris Chang ; Yuuichi Teranishi ; Ji-Jiang Yang ; Hong Va Leong ; Hossian Shahriar ; Michiharu Takemoto ; Dave Towey ; Hiroki Takakura ; Atilla Elci ; Susumu Takeuchi ; Satish Puri. IEEE Computer Society, 2019. pp. 575-579 (Proceedings - International Computer Software and Applications Conference).

@inbook{6b4aa6326b3941ab964a6f8015589275,

title = "User behaviour-based access control for social media with qualitative research and Bayesian modelling",

abstract = "Access control systems protect against unauthorised access to resources, where security policies define what is allowed, and what is not. Traditional models focus on protecting access to files, directories, and processes; however, the rise of social media has brought about a need for a new type of model – one focused on sharing rather than protecting, and based on user behaviour rather than a technical specification. A methodology is proposed to perform what we call user behaviour-based access control, building access control policies through analysis of user behaviour. The process involves a combination of qualitative research practices and probabilistic reasoning to address the problems of uncertainty and diversity associated with the study of human behaviour. Data collection and analysis is achieved through semi-structured interviewing and grounded theory techniques. The results of the analysis are used to build a probabilistic model, in the form of a Bayesian network, which implements access control. Requests containing observations of the attribute values are pushed through the network to produce a probabilistic access control decision. The method has been evaluated on real social media users, and has been shown to be effective in capturing and mechanising user sharing preferences.",

keywords = "Access control, Bayesian network, Qualitative research, Social media, User behaviour",

author = "Sara McCloskey and John Herbert",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 43rd IEEE Annual Computer Software and Applications Conference, COMPSAC 2019 ; Conference date: 15-07-2019 Through 19-07-2019",

year = "2019",

month = jul,

doi = "10.1109/COMPSAC.2019.10269",

language = "English",

series = "Proceedings - International Computer Software and Applications Conference",

publisher = "IEEE Computer Society",

pages = "575--579",

editor = "Vladimir Getov and Jean-Luc Gaudiot and Nariyoshi Yamai and Stelvio Cimato and Morris Chang and Yuuichi Teranishi and Ji-Jiang Yang and Leong, \{Hong Va\} and Hossian Shahriar and Michiharu Takemoto and Dave Towey and Hiroki Takakura and Atilla Elci and Susumu Takeuchi and Satish Puri",

booktitle = "Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019",

address = "United States",

}

McCloskey, S & Herbert, J 2019, User behaviour-based access control for social media with qualitative research and Bayesian modelling. in V Getov, J-L Gaudiot, N Yamai, S Cimato, M Chang, Y Teranishi, J-J Yang, HV Leong, H Shahriar, M Takemoto, D Towey, H Takakura, A Elci, S Takeuchi & S Puri (eds), Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019., 8753983, Proceedings - International Computer Software and Applications Conference, vol. 2, IEEE Computer Society, pp. 575-579, 43rd IEEE Annual Computer Software and Applications Conference, COMPSAC 2019, Milwaukee, United States, 15/07/19. https://doi.org/10.1109/COMPSAC.2019.10269

User behaviour-based access control for social media with qualitative research and Bayesian modelling. / McCloskey, Sara; Herbert, John.
Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019. ed. / Vladimir Getov; Jean-Luc Gaudiot; Nariyoshi Yamai; Stelvio Cimato; Morris Chang; Yuuichi Teranishi; Ji-Jiang Yang; Hong Va Leong; Hossian Shahriar; Michiharu Takemoto; Dave Towey; Hiroki Takakura; Atilla Elci; Susumu Takeuchi; Satish Puri. IEEE Computer Society, 2019. p. 575-579 8753983 (Proceedings - International Computer Software and Applications Conference; Vol. 2).

Research output: Chapter in Book/Report/Conference proceedings › Chapter › peer-review

TY - CHAP

T1 - User behaviour-based access control for social media with qualitative research and Bayesian modelling

AU - McCloskey, Sara

AU - Herbert, John

PY - 2019/7

Y1 - 2019/7

N2 - Access control systems protect against unauthorised access to resources, where security policies define what is allowed, and what is not. Traditional models focus on protecting access to files, directories, and processes; however, the rise of social media has brought about a need for a new type of model – one focused on sharing rather than protecting, and based on user behaviour rather than a technical specification. A methodology is proposed to perform what we call user behaviour-based access control, building access control policies through analysis of user behaviour. The process involves a combination of qualitative research practices and probabilistic reasoning to address the problems of uncertainty and diversity associated with the study of human behaviour. Data collection and analysis is achieved through semi-structured interviewing and grounded theory techniques. The results of the analysis are used to build a probabilistic model, in the form of a Bayesian network, which implements access control. Requests containing observations of the attribute values are pushed through the network to produce a probabilistic access control decision. The method has been evaluated on real social media users, and has been shown to be effective in capturing and mechanising user sharing preferences.

AB - Access control systems protect against unauthorised access to resources, where security policies define what is allowed, and what is not. Traditional models focus on protecting access to files, directories, and processes; however, the rise of social media has brought about a need for a new type of model – one focused on sharing rather than protecting, and based on user behaviour rather than a technical specification. A methodology is proposed to perform what we call user behaviour-based access control, building access control policies through analysis of user behaviour. The process involves a combination of qualitative research practices and probabilistic reasoning to address the problems of uncertainty and diversity associated with the study of human behaviour. Data collection and analysis is achieved through semi-structured interviewing and grounded theory techniques. The results of the analysis are used to build a probabilistic model, in the form of a Bayesian network, which implements access control. Requests containing observations of the attribute values are pushed through the network to produce a probabilistic access control decision. The method has been evaluated on real social media users, and has been shown to be effective in capturing and mechanising user sharing preferences.

KW - Access control

KW - Bayesian network

KW - Qualitative research

KW - Social media

KW - User behaviour

UR - https://www.scopus.com/pages/publications/85072668335

U2 - 10.1109/COMPSAC.2019.10269

DO - 10.1109/COMPSAC.2019.10269

M3 - Chapter

AN - SCOPUS:85072668335

T3 - Proceedings - International Computer Software and Applications Conference

SP - 575

EP - 579

BT - Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019

A2 - Getov, Vladimir

A2 - Gaudiot, Jean-Luc

A2 - Yamai, Nariyoshi

A2 - Cimato, Stelvio

A2 - Chang, Morris

A2 - Teranishi, Yuuichi

A2 - Yang, Ji-Jiang

A2 - Leong, Hong Va

A2 - Shahriar, Hossian

A2 - Takemoto, Michiharu

A2 - Towey, Dave

A2 - Takakura, Hiroki

A2 - Elci, Atilla

A2 - Takeuchi, Susumu

A2 - Puri, Satish

PB - IEEE Computer Society

T2 - 43rd IEEE Annual Computer Software and Applications Conference, COMPSAC 2019

Y2 - 15 July 2019 through 19 July 2019

ER -

McCloskey S, Herbert J. User behaviour-based access control for social media with qualitative research and Bayesian modelling. In Getov V, Gaudiot JL, Yamai N, Cimato S, Chang M, Teranishi Y, Yang JJ, Leong HV, Shahriar H, Takemoto M, Towey D, Takakura H, Elci A, Takeuchi S, Puri S, editors, Proceedings - 2019 IEEE 43rd Annual Computer Software and Applications Conference, COMPSAC 2019. IEEE Computer Society. 2019. p. 575-579. 8753983. (Proceedings - International Computer Software and Applications Conference). doi: 10.1109/COMPSAC.2019.10269

User behaviour-based access control for social media with qualitative research and Bayesian modelling

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this