PeerShare: A System Secure Distribution of Sensitive Data among Social Contacts

We present the design and implementation of the PeerShare , a system that can be used by applications to securely distribute sensitive data to social contacts of a user. PeerShare incorporates a generic framework that allows different applications to distribute data with authenticity and confidentiality guarantees to authorized sets of recipients, specified in terms of social relationships. By using existing interfaces in popular social networks for user authentication and social graph information, PeerShare is designed to be easy to use for both end users as well as developers of applications. We have used PeerShare already in three different applications and plan to make it available for developers.

[1]  Michael Backes,et al.  A Security API for Distributed Social Networks , 2011, NDSS.

[2]  Bobby Bhattacharjee,et al.  Persona: an online social network with user-defined privacy , 2009, SIGCOMM '09.

[3]  Chris Palmer,et al.  Public Key Pinning Extension for HTTP , 2015, RFC.

[4]  Refik Molva,et al.  Safebook: A privacy-preserving online social network leveraging on real-life trust , 2009, IEEE Communications Magazine.

[5]  Dick Hardt,et al.  The OAuth 2.0 Authorization Framework , 2012, RFC.

[6]  Prateek Mittal,et al.  DECENT: A decentralized architecture for enforcing privacy in online social networks , 2011, 2012 IEEE International Conference on Pervasive Computing and Communications Workshops.

[7]  N. Asokan,et al.  PeerSense: Who is near you? , 2012, 2012 IEEE International Conference on Pervasive Computing and Communications Workshops.

[8]  N. Asokan,et al.  On-board credentials with open provisioning , 2009, ASIACCS '09.

[9]  Michael Backes,et al.  Securing social networks , 2011, PODC '11.

[10]  Peter Gutmann,et al.  PKI: It's Not Dead, Just Resting , 2002, Computer.

[11]  Chuan Qin,et al.  TagSense: a smartphone-based approach to automatic image tagging , 2011, MobiSys '11.

[12]  Peter Gutmann Pki: It's Not Dead, Just Resting Pki's Evolution , 2001 .

[13]  Ahmad-Reza Sadeghi,et al.  CrowdShare: Secure Mobile Resource Sharing , 2013, ACNS.

[14]  Emiliano De Cristofaro,et al.  Fast and Private Computation of Cardinality of Set Intersection and Union , 2012, CANS.