[转载]Access Control Requirements for Web 2.0 Security and Privacy

文章作者：Carrie Gates
原始出处：http://seclab.cs.rice.edu/w2sp/2007/

本文章是Web 2.0 Security & Privacy 2007大会议题。

The increased social networking capabilities provided by Web 2.0 technologies requires a review of what we consider \private" and what we consider \personal" information, and will subsequently drive a new way of limiting and monitoring the information that we release online. Web 2.0 applications are creating large, complex conglomerations of personal data and so we need new approaches to describe and execute access control on that data.