Abstract | ||
---|---|---|
We present a storage management framework for Web 2.0 services that places users back in control of their data. Current Web services complicate data management due to data lock-in and lack usable protection mechanisms, which makes cross-service sharing risky. Our framework allows multiple Web services shared access to a single copy of data that resides on a personal storage repository, which the user acquires from a cloud storage provider. Access control is based on hierarchically, filtered views, which simplify cross-cutting policies, and enable least privilege management. We also integrate a powerbox [16], which allows applications to request additional authority at run time thereby enabling applications running under a least privilege regime to provide useful open and save as dialogs. |
Year | DOI | Venue |
---|---|---|
2010 | 10.1145/1752046.1752048 | EUROSEC |
Keywords | Field | DocType |
data lock-in,privilege regime,multiple web service,storage management framework,access control,practical protection,privilege management,cloud storage provider,current web service,personal storage repository,data management,cloud,web service,web services | Web development,Internet privacy,World Wide Web,Principle of least privilege,Computer security,Computer science,Access control,Web service,Data management,Cloud storage,WS-Policy,Cloud computing | Conference |
Citations | PageRank | References |
4 | 0.42 | 12 |
Authors | ||
4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Neal H. Walfield | 1 | 7 | 1.13 |
Paul T. Stanton | 2 | 7 | 1.15 |
John Linwood Griffin | 3 | 476 | 35.66 |
Randal Burns | 4 | 1955 | 115.15 |