1 / 13

DECENT: A Decentralized Architecture for Enforcing Privacy in Online Social Networks

This study proposes a decentralized architecture for addressing privacy challenges in online social networks, using advanced cryptography and a distributed hash table (DHT) data structure. The design includes features such as attribute-based encryption and efficient revocation mechanisms. A prototype implementation and performance evaluation have been conducted.

ctrout
Download Presentation

DECENT: A Decentralized Architecture for Enforcing Privacy in Online Social Networks

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. DECENT: A Decentralized Architecture for Enforcing Privacy in Online Social Networks Sonia Jahid1, ShirinNilizadeh2, PrateekMittal1, Nikita Borisov1, Apu Kapadia2 1University of Illinois at Urbana-Champaign 2Indiana University Bloomington Presented by: Sonia Jahid SESOC, 2012

  2. Privacy Issues

  3. Myself Decentralization - Challenges • Hybrid • Trusted Party • Availability • Access control by others • Confidentiality/Integrity • Malicious activities • Untrusted Party • Provider • Existing Research • Diaspora* [http://joindiaspora.com] • LotusNet [Aiello et al. ’12] • SafeBook [Cutillo et al. ’09 ] • PeerSoN [Buchegger et al. ’09] • Persona [Baden et al. ’09] • DHT • Cryptography

  4. OSN Data is complicated Wall Status Video Link Comment

  5. Our Contribution • Address the challenges • Decentralization of the OSN architecture • Advanced cryptography • Other design philosophes

  6. Design – Data Structure Alice’s Status Status Message Friend or Family Alice|Friend & Family ID, Read-Policy, Write-Policy CommentReference Bob’s Comment

  7. Design – Privacy Policy Alice • Restrictive Policy on comments Alice Bob StatusReference1

  8. Design - DHT • Provides • Storage/Lookup Operation • Availability • Append Operation • Verifies • Write policy • Append policy • Can not • Relate data to its owner • Figure out data owner’s social graph

  9. OR AND Colleague 1 Friend Neighbor Design – Confidentiality and Integrity • Attribute-based Encryption • User-defined attribute-based policy • Frequent revocation Alice Carol Diana Bob friend, colleague colleague friend, neighbor S.Jahid, P.Mittal, N.Borisov, EASiER: Encryption-based Access Control in Social Networks with Efficient Revocation

  10. Design – Confidentiality and Integrity Integrity • Write Policy – set to the owner • Request signed with Write-Secret-Key • Verified by readers • Append Policy – attribute-based • Comment-reference signed with Append-Secret-Key • Verified by readers Confidentiality • ABE Alice’s Object Write-Public-Key Append-Public-Key EAlice(Write-Secret-Key) ABE ABE(Append-Secret-Key) Data Sign Sign(CommentRef1) Sign(CommentRef2)

  11. Implementation and Evaluation • Prototype in Java • Simulation - FreePastry Simulator • Experiments on PlanetLab – Kademlia Cryptography Progressive Lookup Experiment on PlanetLab (12 Statuses) Simulation (60 Statuses)

  12. Conclusion • Contribution • Design and prototype of a decentralized OSN • Preliminary performance results • Ongoing Work • Optimizations in cryptography and DHT Lookup ShirinNilizadeh Prateek Mittal ApuKapadia Nikita Borisov

More Related