[KSCI] Korea Science Citation Index Service

http://dx.doi.org/10.9717/kmms.2016.19.2.308

A Secure Social Networking Site based on OAuth Implementation

Brian, Otieno Mark (Dept. of IT Convergence and Application Engineering, Pukyong National University)
Rhee, Kyung-Hyune (Dept. of IT Convergence and Application Engineering, Pukyong National University)

Publication Information

Journal of Korea Multimedia Society / v.19, no.2, 2016 , pp. 308-315 More about this Journal

Abstract

With the advancement in the area of cloud storage services as well as a tremendous growth of social networking sites, permission for one web service to act on the behalf of another has become increasingly vital as social Internet services such as blogs, photo sharing, and social networks. With this increased cross-site media sharing, there is a upscale of security implications and hence the need to formulate security protocols and considerations. Recently, OAuth, a new protocol for establishing identity management standards across services, is provided as an alternative way to share the user names and passwords, and expose personal information to attacks against on-line data and identities. Moreover, OwnCloud provides an enterprise file synchronizing and sharing that is hosted on user's data center, on user's servers, using user's storage. We propose a secure Social Networking Site (SSN) access based on OAuth implementation by combining two novel concepts of OAuth and OwnCloud. Security analysis and performance evaluation are given to validate the proposed scheme.

Keywords

OAuth; OwnCloud; Social Networking Sites;

Citations & Related Records

Times Cited By KSCI : 1 (Citation Analysis)

Reference
Cited By KSCI

1	Tae-Wong Seo, Man-Gon Park and Chang-Soo Kim, “Design and Implementation of the Extraction Mashup for Reported Disaster Information on SNSs,“ Journal of Korea Multimedia Society, Vol. 16, No. 11, pp. 1297-1304, 2013. DOI
2	D. Hardt, The OAuth 2.0 Authorization Framework, RFC 6749, 2012.
3	Er. Gurleen Kaur and Er. Deepak Aggarwal, “A Survey Paper on Social Sign-On Protocol OAuth 2.0,” Journal of Engineering Computers & Applied Sciences, Vol. 2, No. 6, pp. 93-96, 2013.
4	A. Santana de Oliveira, G. Serme, and Y. Lehmann, "Platform-level Support for Authorization in Cloud Service with OAuth 2," Proceedings of Intercloud Workshop Co-located with IEEE International Conference on Cloud Engineering, pp.458-465, 2014.
5	Yang and S. Manoharan, "A Security Analysis of the OAuth Protocol," Proceeding of IEEE Pacific Rim Conference on Communications, Computers, and Signal Processing, pp. 271-276, 2013.
6	Hammer-Lahav, The OAuth 1.0 protocol, The Internet Eng. Task Force RFC 5849, 2010.
7	ownCloud's Architecture Overview, https://owncloud.com/whitepapers (accessed, 11, Feb., 2016).
8	Paulo Jorge Correia, Providing Single Sign on (SSO) with Enterprise Identity Services and Directory Integration, Cisco Public BRKUCC-2664, USA, 2015.
9	JSON Web Token (JWT), https://tools.ietf.org/html/draft-ietf-oauth-json-web-token-32 (accessed, 11, Feb., 2016).