CARDS, Collaborative Audit and Report Data Sharing for A-posteriori Access Control in DOSNs, won the best poster presentation award at IEEE/CIC 2015 in Hangzhou, China. The paper approaches the traditional problem of access control in decentralized social networks from a new perspective: adopting the a-posteriori control paradigm instead of applying apriori enforcement mechanisms. As discussed in the paper, whilst these mechanisms ensure data protection in controlled stable environments, they demonstrate serious limitations in systems where not all access scenarios are predictable and where data flows are not deterministic. With decentralized social networks being one of scenarios where these limitations are shown at best, the paper suggests an audit-based environment, operated by transparency and accountability, where data is shared without pre-enforced controls. Instead, an audit process is installed in place to detect and punish misbehavior, and to deter malicious activity.
Reference: L. Bahri, B. Carminati, E. Ferrari. CARDS – Collaborative Audit and Report Data Sharing for A-posteriori Access Control in DOSNs. In Proc. of the 1st IEEE International Conference on Collaboration and Internet Computing (CIC 2015), October 2015.