Presentation is loading. Please wait.

Presentation is loading. Please wait.

Solutions to Security and Privacy Issues in Mobile Social Networking

Published byLillian Walton Modified over 8 years ago

Similar presentations

Presentation on theme: "Solutions to Security and Privacy Issues in Mobile Social Networking"— Presentation transcript:

1 Solutions to Security and Privacy Issues in Mobile Social Networking
Speaker: Xiaoliang Li Shijie Yang Xinyang Li Instructor: Shambhu Upadhyaya Date: 04/30/2015

2 Outline Introduction Background Security Analysis Solution Analysis
Conclusion 4/30/2015

3 Introduction The focus is on security and privacy in location-aware mobile social network (LAMSN) systems. Security and Privacy Problems. Propose a design for a system that provides solutions for these security and privacy problems. 4/30/2015

4 Outline Introduction Background Security Analysis Solution Analysis
Conclusion 4/30/2015

5 Background Mobile social networking.
Mobile social networking is social networking where individuals with similar interests converse and connect with one another through their mobile phone and/or tablet A current trend for social networking websites, such as Facebook is to create mobile apps to give their users instant and real-time access from their device. 4/30/2015

6 Background Mobile social networking. 4/30/2015

7 Background Mobile social networking is hot.
Facebook: There are 1.9 billion mobile active users (MAU) (Source: Facebook as of 1/28/15) an increase of 26 percent year-over-year. Twitter: 288 million monthly active users and 80% of Twitter active users are on mobile 4/30/2015

8 Background Relevant features of mobile social networking.
Context information 4/30/2015

9 Background Relevant features of mobile social networking.
Many applications enables the creation of context-aware (location-aware) services that exploit social network information found on existing online social network. These Apps pay little heed to the security and privacy concerns associated with revealing one’s personal social networking preferences and friendship information to the ubiquitous computing environment. 4/30/2015

10 Outline Introduction Background Security Analysis Solution Analysis
Conclusion 4/30/2015

11 Security and privacy issue
Direct anonymity Indirect anonymity or K-anonymity Eavesdropping, spoofing, replay, and wormhole attacks 4/30/2015

12 Security and privacy issue
Peer-to-Peer Model Client-Server Model Security and privacy issue P2P system CS system Direct anonymity YES Indirect anonymity or K-anonymity Eavesdropping, spoofing, replay, and wormhole attacks NO 4/30/2015

13 Security and privacy issue
Direct anonymity 4/30/2015

14 Security and privacy issue
Indirect anonymity or K-anonymity 4/30/2015

15 Security and privacy issue
Eavesdropping, spoofing, replay, and wormhole attacks 4/30/2015

16 Outline Introduction Background Security Analysis Solution Analysis
Conclusion 4/30/2015 16

17 Solutions Identity Server and Anonymous Identifier 4/30/2015 17

18 IS & AID Generate AID using a cryptographic hash function such as SHA-1, with a random salt value. Consume AID or remove AID when it is timeout IS does not support the retrieval of personally identifiable information Solves the direct anonymity problem. 4/30/2015 18

19 K-Anonymity Exploring the use of logic simplification algorithms such as Quine-McCluskey to solve K-Anonymity problem. Algorithms determine admissible sets that should maintain to guarantee at least k minimal sets of users are always indistinguishable as related to the n sequential sets. 4/30/2015 19

20 Eavesdropping, Spoofing, Replay, and Wormhole Attacks
AIDs prevent spoofing and replay attacks. IS verifies if mobile device who attempts to obtain social network information for the mobile user associated with this AID is within an acceptable range of this AID to solve Wormhole Attacks. Provide reasonable protection against eavesdropping such as HTTPS. 4/30/2015 20

21 Outline Introduction Background Security Analysis Solution Analysis
Conclusion 4/30/2015 21

22 Conclusion support anonymous exchange of social network information with real world location-based systems. enable context-aware systems that do not compromise users’ security and privacy. Show it is possible to move forward with creative mobile social network applications without further compromising user security and privacy. 4/30/2015 22

23 Thank you ! 4/30/2015 23

Download ppt "Solutions to Security and Privacy Issues in Mobile Social Networking"

Similar presentations

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.

Key distribution and certification In the case of public key encryption model the authenticity of the public key of each partner in the communication must.
Secure Multiparty Computations on Bitcoin

Secure Multiparty Computations on Bitcoin
Kerberos Assisted Authentication in Mobile Ad-hoc Networks Authors: Asad Amir Pirzada and Chris McDonald Sources: Proceedings of the 27th Australasian.

Kerberos Assisted Authentication in Mobile Ad-hoc Networks Authors: Asad Amir Pirzada and Chris McDonald Sources: Proceedings of the 27th Australasian.
CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukCryptographic Authentication1 Cryptographic Authentication Protocols CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,

Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,
Data Integrity Proofs in Cloud Storage Sravan Kumar R, Ashutosh Saxena Communication Systems and Networks (COMSNETS), 2011 Third International Conference.

Data Integrity Proofs in Cloud Storage Sravan Kumar R, Ashutosh Saxena Communication Systems and Networks (COMSNETS), 2011 Third International Conference.
Presenter: Nguyen Ba Anh HCMC University of Technology Information System Security Course.

Presenter: Nguyen Ba Anh HCMC University of Technology Information System Security Course.
Session Hijacking Why web security depends on communications security and how TLS everywhere is the only solution. Scott Helme - 6th Aug 2013 - scotthel.me.

Session Hijacking Why web security depends on communications security and how TLS everywhere is the only solution. Scott Helme - 6th Aug scotthel.me.
All Your Contacts Are Belong to Us: Automated Identity Theft Attacks on Social Networks Reporter : 鄭志欣 Advisor: Hsing-Kuo Pao Date : 2010/12/06 1.

All Your Contacts Are Belong to Us: Automated Identity Theft Attacks on Social Networks Reporter : 鄭志欣 Advisor: Hsing-Kuo Pao Date : 2010/12/06 1.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
Efficient Private Techniques for Verifying Social Proximity Michael J. Freedman and Antonio Nicolosi Discussion by: A. Ziad Hatahet.

Efficient Private Techniques for Verifying Social Proximity Michael J. Freedman and Antonio Nicolosi Discussion by: A. Ziad Hatahet.
USign—A Security Enhanced Electronic Consent Model Yanyan Li 1 Mengjun Xie 1 Jiang Bian 2 1 University of Arkansas at Little Rock 2 University of Arkansas.

USign—A Security Enhanced Electronic Consent Model Yanyan Li 1 Mengjun Xie 1 Jiang Bian 2 1 University of Arkansas at Little Rock 2 University of Arkansas.
Credit Card Fingerprint Scanner Dennis Seran CS 410 / Spring 2004.

Credit Card Fingerprint Scanner Dennis Seran CS 410 / Spring 2004.
Federated Authentication mechanism for mobile services Dasun Weerasinghe, Saritha Arunkumar, M Rajarajan, Veselin Rakocevic Mobile Networks Research Group.

Federated Authentication mechanism for mobile services Dasun Weerasinghe, Saritha Arunkumar, M Rajarajan, Veselin Rakocevic Mobile Networks Research Group.
 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.

 Guarantee that EK is safe  Yes because it is stored in and used by hw only  No because it can be obtained if someone has physical access but this can.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
1 The Sybil Attack John R. Douceur Microsoft Research Presented for Cs294-4 by Benjamin Poon.

1 The Sybil Attack John R. Douceur Microsoft Research Presented for Cs294-4 by Benjamin Poon.

Similar presentations

Ads by Google