Friendly Surveillance: A New Adversary Model for Privacy in Decentralized Online Social Networks
2012 (English)In: Current Issues in IT Security 2012, 5th interdisciplinary Conference, Freiburg, Germany, May 08-10, 2012. Proceedings / [ed] Jochen Jähnke and Nicolas von zur Mühlen and Klaus Rechert and Dirk von Suchodoletz, Berlin, Germany: Duncker & Humblot, 2012, 195-206 p.Conference paper (Refereed)
In pace with the ever increasing popularity of Social Network Services (SNS) the critical privacy flaws of these applications got into focus of media as well as research interest in the last decade. The centralized aggregation of personal user data has been identified as a fundamental problem of popular services such as Facebook or Google+.
To mitigate this shortcoming the concept of a Decentralized OnlineSocial Network (DOSN) has evolved, where users form a peer-to-peer (P2P) network to corporately operate the service. While this architectural shift immediately eliminates the threat of a central provider adversary, new challenges to protect the users’ privacy arise.
In this paper we focus on the friend adversary model – that is an attacker that exploits the social relationship status established to the target user. We examine the properties of a friend adversary in a decentralized system by analyzing its capabilities, attack impacts as well as incentives and compare the results to the centralized case. We identify several implementation issues of DOSNs that can alleviate illegitimate data collection for a friend adversary. Furthermore, background knowledge abouta user may complement this information to mount relevant and privacy invading attacks. We conclude that friend adversaries can be powerful attackers indeed and propose to consider this hitherto less emphasized threat for DOSN implementations.
Place, publisher, year, edition, pages
Berlin, Germany: Duncker & Humblot, 2012. 195-206 p.
IdentifiersURN: urn:nbn:se:kth:diva-96816ISBN: 978-3-86113-115-1ISBN: 978-3-428-13887-6OAI: oai:DiVA.org:kth-96816DiVA: diva2:532875
Current Issues in IT Security 2012, 5th interdisciplinary Conference, Freiburg, Germany, May 08-10, 2012.
FunderICT - The Next Generation
QC 201301102012-06-122012-06-122013-06-24Bibliographically approved