JOURNAL BROWSE
Search
Advanced SearchSearch Tips
A Secure Social Networking Site based on OAuth Implementation
facebook(new window)  Pirnt(new window) E-mail(new window) Excel Download
 Title & Authors
A Secure Social Networking Site based on OAuth Implementation
Brian, Otieno Mark; Rhee, Kyung-Hyune;
  PDF(new window)
 Abstract
With the advancement in the area of cloud storage services as well as a tremendous growth of social networking sites, permission for one web service to act on the behalf of another has become increasingly vital as social Internet services such as blogs, photo sharing, and social networks. With this increased cross-site media sharing, there is a upscale of security implications and hence the need to formulate security protocols and considerations. Recently, OAuth, a new protocol for establishing identity management standards across services, is provided as an alternative way to share the user names and passwords, and expose personal information to attacks against on-line data and identities. Moreover, OwnCloud provides an enterprise file synchronizing and sharing that is hosted on user`s data center, on user`s servers, using user`s storage. We propose a secure Social Networking Site (SSN) access based on OAuth implementation by combining two novel concepts of OAuth and OwnCloud. Security analysis and performance evaluation are given to validate the proposed scheme.
 Keywords
OAuth;OwnCloud;Social Networking Sites;
 Language
English
 Cited by
 References
1.
Tae-Wong Seo, Man-Gon Park and Chang-Soo Kim, “Design and Implementation of the Extraction Mashup for Reported Disaster Information on SNSs,“ Journal of Korea Multimedia Society, Vol. 16, No. 11, pp. 1297-1304, 2013. crossref(new window)

2.
D. Hardt, The OAuth 2.0 Authorization Framework, RFC 6749, 2012.

3.
A. Santana de Oliveira, G. Serme, and Y. Lehmann, "Platform-level Support for Authorization in Cloud Service with OAuth 2," Proceedings of Intercloud Workshop Co-located with IEEE International Conference on Cloud Engineering, pp.458-465, 2014.

4.
Yang and S. Manoharan, "A Security Analysis of the OAuth Protocol," Proceeding of IEEE Pacific Rim Conference on Communications, Computers, and Signal Processing, pp. 271-276, 2013.

5.
Hammer-Lahav, The OAuth 1.0 protocol, The Internet Eng. Task Force RFC 5849, 2010.

6.
Er. Gurleen Kaur and Er. Deepak Aggarwal, “A Survey Paper on Social Sign-On Protocol OAuth 2.0,” Journal of Engineering Computers & Applied Sciences, Vol. 2, No. 6, pp. 93-96, 2013.

7.
ownCloud's Architecture Overview, https://owncloud.com/whitepapers (accessed, 11, Feb., 2016).

8.
Paulo Jorge Correia, Providing Single Sign on (SSO) with Enterprise Identity Services and Directory Integration, Cisco Public BRKUCC-2664, USA, 2015.

9.
JSON Web Token (JWT), https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32 (accessed, 11, Feb., 2016).