enhancing security and privacy in online social networks sonia jahid [email protected] university...
TRANSCRIPT
![Page 1: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/1.jpg)
Enhancing Security and Privacy in Online
Social Networks
Sonia [email protected]
University of Illinois at Urbana-Champaign
PhD Forum
![Page 2: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/2.jpg)
Online Social Network (OSN)
![Page 3: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/3.jpg)
Motivating Examples
![Page 4: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/4.jpg)
Our Goal …
A Private and Secure Online Social NetworkA Private and Secure Online Social Network
Shift the access enforcement point from the provider to the users
Shift the access enforcement point from the provider to the users
4
![Page 5: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/5.jpg)
Decentralization
ProviderProvider Trusted Party
Myself
Hybrid
Untrusted Party
• Availability• Access control by others• Confidentiality/Integrity• Malicious activities
![Page 6: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/6.jpg)
WallWallStatusStatus
CommentComment
VideoVideo
LinkLink
Complicated OSN Data
and Access Control
Complicated OSN Data
and Access Control
![Page 7: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/7.jpg)
• Access Control– Attribute-based encryption with efficient
revocation
• Architecture Design– Distributed hash table– Object oriented data– Efficient algorithm for newsfeed
Our Contribution
7
EASiER – ASIACCS 2011, DECENT – SESOC 2012, CACHET – CoNEXT 2012
![Page 8: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/8.jpg)
Example
GHC Rocks!
Friend|Alice|Friend
Reference
Alice’s Status
Bob’s Comment
Read
Write/Delete
Append
![Page 9: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/9.jpg)
Application?
![Page 10: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/10.jpg)
Our Goal
• Health Information Exchange– Patient-centric health data through a secure
distributed storage service
10
![Page 11: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/11.jpg)
Challenges
• Confidentiality, Integrity, Availability• Private Audit• Anonymous search• Break the glass policy
11
![Page 12: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/12.jpg)
Private Audit
• Properties– Authentication– Access Control– Auditing– Anonymity
• Concept– Revocable
Anonymity
StorageStorage
Data
Data
Access
Access
A0danc*#-3948sk3m4lksfmÂp
A0danc*#-3948sk3m4lksfmÂp
Logging Information
12
Doctor
Nurse
![Page 13: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/13.jpg)
Anonymous Search
• Properties– Anonymity– Efficiency– Correctness
• Concept– Public Key Encryption
Keyword-based search– Private Information
Retrieval
StorageStorage
Alice, Lab
13
![Page 14: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/14.jpg)
Break the Glass Policy
• Properties– Emergency access on
data– Auditing
Alice’s Data
Alice’s Data
14
![Page 15: Enhancing Security and Privacy in Online Social Networks Sonia Jahid sjahid2@illinois.edu University of Illinois at Urbana-Champaign PhD Forum](https://reader035.vdocuments.mx/reader035/viewer/2022070403/56649f2e5503460f94c4828d/html5/thumbnails/15.jpg)
Research Summary
• Techniques to enhance security and privacy of a social network
• Challenges and application of such techniques in healthcare domain
Sonia Jahidhttp://[email protected]
15