References of "Carvalho Ota, Fernando Kaway 50034480"
     in
Bookmark and Share    
Full Text
Peer Reviewed
See detailTowards Privacy Preserving Data Centric Super App
Carvalho Ota, Fernando Kaway UL; Meira, Jorge Augusto UL; Frank, Raphaël UL et al

in Carvalho Ota, Fernando Kaway; Meira, Jorge Augusto; Frank, Raphaël (Eds.) et al 2020 Mediterranean Communication and Computer Networking Conference, Arona 17-19 June 2020 (2020, September 10)

The number of smartphone users recently surpassed the numbers of desktop users on Internet, and opened up countless development challenges and business opportunities. Not only the fact that the majority ... [more ▼]

The number of smartphone users recently surpassed the numbers of desktop users on Internet, and opened up countless development challenges and business opportunities. Not only the fact that the majority of users are connected using their smartphones, but the number of Internet users in general has popularized the massive use of data-driven applications. In this context, the concept of super apps seems to be the next game-changer for the mobile apps industry, and the challenges related to security and privacy are key aspects for keeping user data safe. Thus, by combining different components for provisioning, authentication, membership and others, we propose a novel framework that enables the creation of a super app using privacy by design principles. [less ▲]

Detailed reference viewed: 89 (6 UL)
Full Text
Peer Reviewed
See detailMobile App to SGX Enclave Secure Channel
Carvalho Ota, Fernando Kaway UL; Meira, Jorge Augusto UL; Cassagnes, Cyril UL et al

in 2019 IEEE International Symposium on Software Reliability Engineering Workshops (2020, February 13)

The current challenge for several applications is to guarantee the user’s privacy when using personal data. The broader problem is to transfer and process the data without exposing the sensitive content ... [more ▼]

The current challenge for several applications is to guarantee the user’s privacy when using personal data. The broader problem is to transfer and process the data without exposing the sensitive content to anyone, including the service provider(s). In this paper, we address this challenge by proposing a protocol to combine secure frameworks in order to exchange and process sensitive data, i.e. respecting user’s privacy. Our contribution is a protocol to perform a secure exchange of data between a mobile application and a trusted execution environment. In our experiments we show independent implementations of our protocol using three different encryption modes (i.e., CBC, ECB, GCM encryption). Our results support the feasibility and importance of an end-to-end secure channel protocol. [less ▲]

Detailed reference viewed: 66 (3 UL)