|
Protecting Public OSN Posts from Unintended Access
Armknecht, Frederik
;
Hauptmann, Manuel
;
Roos, Stefanie
;
Strufe, Thorsten
|
URL:
|
https://ub-madoc.bib.uni-mannheim.de/35116
|
|
URN:
|
urn:nbn:de:bsz:180-madoc-351169
|
|
Dokumenttyp:
|
Arbeitspapier
|
|
Erscheinungsjahr:
|
2013
|
|
Ort der Veröffentlichung:
|
Mannheim [u.a.]
|
|
Sprache der Veröffentlichung:
|
Englisch
|
|
Einrichtung:
|
Fakultät für Wirtschaftsinformatik und Wirtschaftsmathematik > Theoretische Informatik (Krause 1996-)
Fakultät für Wirtschaftsinformatik und Wirtschaftsmathematik > Kryptographie (Juniorprofessur) (Armknecht 2010-2015)
|
|
Fachgebiet:
|
004 Informatik
|
|
Abstract:
|
The design of secure and usable access schemes to personal
data represent a major challenge of online social networks
(OSNs). State of the art requires prior interaction to grant
access. Sharing with users who are not subscribed or previously
have not been accepted as contacts in any case is
only possible via public posts, which can easily be abused
by automatic harvesting for user profiling, targeted spearphishing,
or spamming. Moreover, users are restricted to the
access rules defined by the provider, which may be overly restrictive,
cumbersome to define, or insufficiently fine-grained.
We suggest a complementary approach that can be easily
deployed in addition to existing access control schemes,
does not require any interaction, and includes even public,
unsubscribed users. It exploits the fact that different social
circles of a user share different experiences and hence encrypts
arbitrary posts. Hence arbitrary posts are encrypted,
such that only users with sufficient knowledge about the owner
can decrypt.
Assembling only well-established cryptographic primitives,
we prove that the security of our scheme is determined by
the entropy of the required knowledge. We consequently
analyze the efficiency of an informed dictionary attack and
assess the entropy to be on par with common passwords.
A fully functional implementation is used for performance
evaluations, and available for download on the Web.
|
|
Zusätzliche Informationen:
|
Online Ressource
|
 | Dieser Eintrag ist Teil der Universitätsbibliographie. |
 | Das Dokument wird vom Publikationsserver der Universitätsbibliothek Mannheim bereitgestellt. |
 Suche Autoren in
BASE:
Armknecht, Frederik
;
Hauptmann, Manuel
;
Roos, Stefanie
;
Strufe, Thorsten
Google Scholar:
Armknecht, Frederik
;
Hauptmann, Manuel
;
Roos, Stefanie
;
Strufe, Thorsten
ORCID:
Armknecht, Frederik  ORCID: 0009-0003-9935-8095 ; Hauptmann, Manuel ; Roos, Stefanie ; Strufe, Thorsten
Sie haben einen Fehler gefunden? Teilen Sie uns Ihren Korrekturwunsch bitte hier mit: E-Mail
Actions (login required)
 |
Eintrag anzeigen |
|
|
![[img]](https://madoc.bib.uni-mannheim.de/style/images/fileicons/application_pdf.png)