Compliance Monitoring of Third-Party Applications in Online Social Networks

Size: px

Start display at page:

Download "Compliance Monitoring of Third-Party Applications in Online Social Networks"

Posy Franklin
6 years ago
Views:

1 Compliance Monitoring of Third-Party Applications in Online Social Networks Florian Kelbert, Imperial College London Alexander Fromm, Technical University of Munich

6 Problem

7 Problem How to ensure that data is used in correspondence with policies?

8 Problem How to ensure that data is used in correspondence with policies?

9 Problem How to ensure that data is used in correspondence with policies?

10 Problem How to ensure that data is used in correspondence with policies?

11 Problem How to ensure that data is used in correspondence with policies?

12 Problem How to ensure that data is used in correspondence with policies? You may cache the content for up to 24 hours

13 Problem How to ensure that data is used in correspondence with policies? You may cache the content for up to 24 hours Only use friend data in the person s experience in your app

14 Problem How to ensure that data is used in correspondence with policies? You may cache the content for up to 24 hours Only use friend data in the person s experience in your app You may not disclose confidential information to a third party without the prior explicit consent of Tumblr.

15 To start with...

16 To start with... Social Networks are trusted

17 To start with... Social Networks are trusted

18 To start with... Social Networks are trusted Third Party Applications are not

19 To start with... Social Networks are trusted Third Party Applications are not Thousands of apps and developers

20 Overview

21 Overview User Data OSN Operator (trusted)

22 Overview User Data OSN Operator (trusted)

23 Overview User Data 1. Policy Provisioning Policy Database OSN Operator (trusted)

24 Overview Applications (untrusted) User Data 1. Policy Provisioning Policy Database OSN Operator (trusted)

25 Overview Applications (untrusted) PaaS / SEE (trusted) User Data 1. Policy Provisioning Policy Database PaaS Provider (trusted) OSN Operator (trusted)

26 Overview Applications (untrusted) User Data Libraries PaaS / SEE (trusted) 1. Policy Provisioning Policy Database PaaS Provider (trusted) OSN Operator (trusted)

27 Overview Applications (untrusted) Libraries User Data Monitor PaaS / SEE (trusted) 1. Policy Provisioning Policy Database PaaS Provider (trusted) OSN Operator (trusted)

28 Overview Applications (untrusted) 2. Request Libraries User Data Monitor PaaS / SEE (trusted) 1. Policy Provisioning Policy Database PaaS Provider (trusted) OSN Operator (trusted)

29 Overview Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request Policy Database Coordinator PaaS Provider (trusted) OSN Operator (trusted)

30 Overview Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies Policy Database Coordinator PaaS Provider (trusted) OSN Operator (trusted)

31 Overview Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 5. Policies Policy Database Coordinator PaaS Provider (trusted) OSN Operator (trusted)

32 Overview Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 5. Policies Decision Engine PaaS Provider (trusted) Policy Database Coordinator OSN Operator (trusted)

33 Overview Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

34 Overview 7. Request Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

35 Overview 7. Request 8. Response Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

36 Overview 7. Request 8. Response Applications (untrusted) User Data 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 9. Response 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

37 Overview 7. Request 8. Response Applications (untrusted) User Data 10. Response 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 9. Response 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

38 Overview 7. Request 8. Response Applications (untrusted) User Data Continuous policy evaluation 10. Response 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 9. Response 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

39 Some details follow...

40 Some details follow... Policy Provisioning

41 Some details follow... Policy Provisioning

42 Some details follow... Policy Provisioning

43 Policy Provisioning

44 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date

45 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date

46 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours

47 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours

48 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours Event: Condition: Action:

49 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours Event: Condition: Action: process(data)

50 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours Event: process(data) Condition: Action: <inhibit>

51 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours Event: process(data) Condition: not(repmin(24[hours], 1, receive(data))) Action: <inhibit>

52 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours Event: process(data) Condition: not(repmin(24[hours], 1, receive(data))) Action: <inhibit> Complex LTL formulas: propositional temporal cardinal spatial constraints

53 Policy Provisioning If you cache data you receive from us, [... ] keep it up to date Whenever some data is processed by the application, then it must have been received from the OSN within the last 24 hours Event: process(data) Condition: not(repmin(24[hours], 1, receive(data))) Action: <inhibit> Complex LTL formulas: propositional temporal cardinal spatial constraints

54 Some details follow... Policy Provisioning Application Deployment

55 Some details follow... Policy Provisioning Application Deployment

56 Some details follow... Policy Provisioning Application Deployment

57 Application Deployment

58 Application Deployment Analysis of binary app to find

59 Application Deployment Analysis of binary app to find Data sources e.g., retrieve from OSN

60 Application Deployment Analysis of binary app to find Data sources e.g., retrieve from OSN Data sinks e.g., data usage/sharing

61 Application Deployment Analysis of binary app to find Data sources e.g., retrieve from OSN Data sinks e.g., data usage/sharing Dependencies between them

62 Application Deployment Analysis of binary app to find Data sources e.g., retrieve from OSN Data sinks e.g., data usage/sharing Dependencies between them Instrumentation of sources and sinks for

63 Application Deployment Analysis of binary app to find Data sources e.g., retrieve from OSN Data sinks e.g., data usage/sharing Dependencies between them Instrumentation of sources and sinks for Data flow tracking Policy decisions

64 Some details follow... Policy Provisioning Application Deployment Event signaling for data flow tracking policy decisions

65 Event Signaling

66 Event Signaling Signal invocations of data sources data sinks

67 Event Signaling Signal invocations of data sources data sinks to decision engine:

68 Event Signaling Signal invocations of data sources data sinks to decision engine: Is data read from source? Is data written to sink?

69 Event Signaling Signal invocations of data sources data sinks to decision engine: Is data read from source? Is data written to sink? } i.e., does event of ECA rule match? Event: Condition: Action: process(data) not(repmin(24[hours], 1, receive(data))) <inhibit>

70 Event Signaling Signal invocations of data sources data sinks to decision engine: Is data read from source? Is data written to sink? } i.e., does event of ECA rule match? If Yes: Evaluate condition Event: Condition: Action: process(data) not(repmin(24[hours], 1, receive(data))) <inhibit>

71 Event Signaling Signal invocations of data sources data sinks to decision engine: Is data read from source? Is data written to sink? } i.e., does event of ECA rule match? If Yes: Evaluate condition If True: Apply action Event: Condition: Action: process(data) not(repmin(24[hours], 1, receive(data))) <inhibit>

72 Event Signaling Signal invocations of data sources data sinks to decision engine: Is data read from source? Is data written to sink? } i.e., does event of ECA rule match? If Yes: Evaluate condition If True: Apply action Event: Condition: Action: process(data) not(repmin(24[hours], 1, receive(data))) <inhibit>

73 Overview 7. Request 8. Response Applications (untrusted) User Data Continuous policy evaluation 10. Response 2. Request Libraries Monitor 1. Policy Provisioning PaaS / SEE (trusted) 3. Request 4. getpolicies 9. Response 5. Policies Decision Engine PaaS Provider (trusted) 6. deploypolicy Policy Database Coordinator OSN Operator (trusted)

74 Evaluation

75 Evaluation Between 15% and 41% performance overhead

76 Evaluation Between 15% and 41% performance overhead Depends much on the application and policy

77 Evaluation Between 15% and 41% performance overhead Depends much on the application and policy Problem: Real-world apps are not available

78 Summary

79 Summary Protection from data misuse is possible

80 Summary Protection from data misuse is possible Critical requirements

81 Summary Protection from data misuse is possible Critical requirements User awareness

82 Summary Protection from data misuse is possible Critical requirements User awareness Transparency for all involved parties

83 Summary Protection from data misuse is possible Critical requirements User awareness Transparency for all involved parties