Abstract :
In this paper we propose to use a formal language, called Secure UML, to model social networking privacy. Secure UML is a language for specifying role-based static and dynamic access control policies, the latter being policies that depend on the run-time satisfaction of specific constraints (e.g., the privacy settings in social networking sites). By using a formal language for modeling social networking privacy, we provide a rigorous, unambiguous description of the policies, and a solid, much-needed formal foundations for tools to validate them and to perform change impact analysis. To illustrate our proposal, as well as its benefits, we use Facebook as a case study, in particular, the latest two versions of Facebook´s policy for posting and tagging.
Keywords :
Unified Modeling Language; authorisation; formal languages; social networking (online); Facebook policy; change impact analysis; dynamic access control policy; formal foundation; formal language; modeling social networking privacy; role-based static access control policy; run-time satisfaction; secure UML; social networking sites; unambiguous description; Authorization; Data models; Facebook; Privacy; Tagging; Unified modeling language; Facebook; OCL; Privacy; SecureUML; Social Networks;
