Back to Philip Fong's home page.
We are interested in the specification, analysis, design, and implementation of novel access control models that are motivated by the security and privacy needs of emerging application domains such as electronic health record systems, social computing, etc. Our current work focuses on Relationship-Based Access Control (ReBAC) as well as access control models for privacy preservation.
Glenn Bruns, Philip W. L. Fong, Ida Siahaan, and Michael Huth. Relationship-Based Access Control: Its Expression and Enforcement Through Hybrid Logic. To appear in Proceedings of the 2nd ACM Conference on Data and Application Security and Privacy, San Antonio, TX, USA, February 7-9, 2012.
Philip W. L. Fong and Ida Siahaan. Relationship-Based Access Control Policies and Their Policy Languages. In Proceedings of the 16th ACM Symposium on Access Control Models and Technologies (SACMAT'11), pages 51-60, Innsbruck, Austria, June 15-17, 2011.
Philip W. L. Fong. Relationship-Based Access Control: Protection Model and Policy Language. In Proceedings of the First ACM Conference on Data and Application Security and Privacy (CODASPY'11), pages 191-202, San Antonio, Taxas, USA, February 21-23, 2011.
Mohammad Jafari, Philip W. L. Fong, Reihaneh Safavi-Naini, Ken Barker, and Nicholas Paul Sheppard. Towards Defining Semantic Foundations for Purpose-Based Privacy Policies. In Proceedings of the First ACM Conference on Data and Application Security and Privacy (CODASPY'11), pages 213-224, San Antonio, Taxas, USA, February 21-23, 2011.
Web-based social computing applications such as social networks, blogs, wikis and the like have emerged as popular platforms for decentralized information sharing as well as collaborative authoring. A first objective of this project is to better understand the protection models of existing social computing platforms, as well as formally articulating the security and privacy goals of such platforms. A second objective is the design and implement of novel protection mechanisms to address the specific security and privacy challenges motivated by the peculiar architecture and usage of these platforms.
Mohd Anwar and Philip W. L. Fong. A Visualization Tool for Evaluating Access Control Policies in Facebook-style Social Network Systems. To appear in Proceedings of the 27th ACM Symposium on Applied Computing (SAC'12), Security Track, Riva del Garda, Trento, Italy, March 26-30, 2012.
Philip W. L. Fong. Preventing Sybil Attacks by Privilege Attenuation: A Design Principle for Social Network Systems. In Proceedings of the 2011 IEEE Symposium on Security and Privacy (S&P'11), pages 263-278, Oakland, California, USA, May 22-25, 2011.
Seyed Hossein Ahmadinejad, Mohd Anwar, and Philip W. L. Fong. Inference Attacks by Third-Party Extensions to Social Network Systems. In Proceedings of the 3rd IEEE International Workshop on Security and Social Networking (SESOC'11) (published as part of Proceedings for the 2011 IEEE International Conference on Pervasive Computing and Communications Workshops - PERCOM Workshops), pages 282--287, Seattle, Washington, USA, March 21, 2011.
Mohd Anwar, Philip W. L. Fong, Xue-Dong Yang, and Howard Hamilton. Visualizing Privacy Implications of Access Control Policies in Social Network Systems. In Proceedings of the Fourth International Workshop on Data Privacy Management, Saint Malo, France, September 24, 2009.
Philip W. L. Fong, Mohd Anwar and Zhen Zhao. A Privacy Preservation Model for Facebook-Style Social Network Systems. In Proceedings of the 14th European Symposium on Research In Computer Security (ESORICS'09), volume 5789 of Lecture Notes in Computer Science, pages 303-320, Saint Malo, France, September 21-23, 2009.
We are interested in applying programming language technology to address the security challenges of complex software systems. Our current focus is on addressing the novel security challenges of smartphone platforms such as Android.
Philip W. L. Fong and Simon Orr. Isolating Untrusted Software Extensions by Custom Scoping Rules. Computer Languages, Systems and Structures, 36(3):268-287, October 2010. Elsevier.
Fei Yan and Philip W. L. Fong. Efficient IRM Enforcement of History-Based Access Control Policies. In Proceedings of the Fourth ACM Symposium on Information, Computer and Communication Security (ASIACCS'09), pages 35-46, Sydney, Australia, March 10-12, 2009.
Philip W. L. Fong. Discretionary Capability Confinement. International Journal of Information Security, 7(2):137-154, April 2008. Springer.
Philip W. L. Fong. Discretionary Capability Confinement. In Proceedings of the 11th European Symposium On Research In Computer Security (ESORICS'06), volume 4189 of Lecture Notes in Computer Science, pages 127-144, Hamburg, Germany, September 18-20, 2006. Springer.
Philip W. L. Fong and Simon Orr. A Module System for Isolating Untrusted Software Extensions. In Proceedings of the 22nd Annual Computer Security Applications Conference (ACSAC'06), pages 203-212, Miami Beach, Florida, USA, December 11-15, 2006.
Philip W. L. Fong. Access Control by Tracking Shallow Execution History. In Proceedings of the 2004 IEEE Symposium on Security and Privacy (S&P'04), pages 43-55, Berkeley, California, USA, May 9-12, 2004.
$Id: index.html,v 1.14 2012/03/20 16:33:06 pwlfong Exp $