000000198 001__ 198
000000198 005__ 20130522141957.0
000000198 037__ $$aLERSSE-POSTER-2009-005
000000198 041__ $$aeng
000000198 100__ $$aSan-Tsai Sun
000000198 245__ $$aPoster: Toward Enabling Secure Web 2.0 Content Sharing Beyond Walled Gardens
000000198 260__ $$c2009-06-10
000000198 300__ $$a4
000000198 520__ $$aWeb 2.0 users need usable mechanisms for sharing their content with each other in a controlled manner across boundaries of content-hosting or application-service providers (CSPs). In this paper, we propose an approach for Web 2.0 content sharing beyond walled gardens. The system is built upon the existing secret-link mechanism and augments OpenID identity providers with both an OpenIDemail extension and a role-based trust-management policy service (RTPS). OpenIDemail extends the existing OpenID protocol to enable OpenID identity providers to use email as an alternative identifier. RTPS provides services for internet users to organize their online credentials and polices, and for CSPs to make access decisions. With our approach, the users do not need to setup an account on each CSP and do not require any special software installed to view shared content. The functionalities for content sharing using secret-link are shifted from CSPs to OpenIDemail providers. CSPs do not need to change their existing user management and access-control mechanisms. In addition, policy statements are URI-addressable, and same access policies can be reused and enforced across CSPs.
000000198 6531_ $$aWeb 2.0 Controlled Sharing
000000198 700__ $$aKonstantin Beznosov
000000198 8560_ $$fsantsais@ece.ubc.ca
000000198 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/198/files/198.pdf$$yTransfer from CDS 0.99.7
000000198 909C4 $$pSan-Tsai Sun and Konstantin Beznosov. "Poster: Towards enabling secure Web 2.0 user content sharing beyond walled gardens," poster at the USENIX Security 2009, August 13th 2009.
000000198 980__ $$aPOSTER