Paper published in a book (Scientific congresses, symposiums and conference proceedings)
Towards Privacy Preserving Data Centric Super App
Carvalho Ota, Fernando Kaway; Meira, Jorge Augusto; Frank, Raphaëlet al.
2020 • In Carvalho Ota, Fernando Kaway; Meira, Jorge Augusto; Frank, Raphaëlet al. (Eds.) 2020 Mediterranean Communication and Computer Networking Conference, Arona 17-19 June 2020
network security; data security; data privacy; access protocols
Abstract :
[en] The number of smartphone users recently surpassed
the numbers of desktop users on Internet, and opened
up countless development challenges and business opportunities.
Not only the fact that the majority of users are connected
using their smartphones, but the number of Internet users
in general has popularized the massive use of data-driven
applications. In this context, the concept of super apps seems
to be the next game-changer for the mobile apps industry,
and the challenges related to security and privacy are key
aspects for keeping user data safe. Thus, by combining different
components for provisioning, authentication, membership and
others, we propose a novel framework that enables the creation
of a super app using privacy by design principles.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Services and Data management research group (SEDAN)
Disciplines :
Computer science
Author, co-author :
Carvalho Ota, Fernando Kaway ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Meira, Jorge Augusto ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Frank, Raphaël ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
State, Radu ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
External co-authors :
no
Language :
English
Title :
Towards Privacy Preserving Data Centric Super App
Publication date :
10 September 2020
Event name :
2020 Mediterranean Communication and Computer Networking Conference (MedComNet)
Event place :
Arona, Italy
Event date :
17-19 June 2020
Audience :
International
Main work title :
2020 Mediterranean Communication and Computer Networking Conference, Arona 17-19 June 2020
F. Ota, J. Meira, C. Cassagnes, R. State, "Mobile App to SGX Enclave Secure Channel", The 4th International Workshop on Reliability and Security Data Analysis, in press, 2019.
Liang, Xueping, et al. "Man in the cloud (mitc) defender: Sgx-based user credential protection for synchronization applications in cloud computing platform. " 2017 IEEE 10th International Conference on Cloud Computing (CLOUD). IEEE, 2017.
R. Lindermann, J. Hill, D. Biggs. FIDO Authenticator Security Requirements. 2018. URL: https://fidoalliance. org/specs/fido-securityrequirements/fido-authenticator-allowed-cryptography-list-v1. 2-fd-20180629. html
Valadares, Dalton Cézane Gomes, et al. "Achieving data dissemination with security using FIWARE and Intel software guard extensions (SGX). " 2018 IEEE Symposium on Computers and Communications (ISCC). IEEE, 2018.
Marlinspike, Moxie, and Trevor Perrin. "The x3dh key agreement protocol. " Open Whisper Systems (2016).
Contiu, Stefan, et al. "Ibbe-sgx: Cryptographic group access control using trusted execution environments. " 2018 48th Annual IEEE/IFIP International Conference on Dependable Systems and Networks (DSN). IEEE, 2018.
Severinsen, Kristoffer, Christian Johansen, and Sergiu Bursuc. "Securing the End-points of the Signal Protocol using Intel SGX based Containers. " Security Principles and Trust Hotspot 2017 (2017): 1.
Birrell, Eleanor, et al. "SGX enforcement of use-based privacy. " Proceedings of the 2018 Workshop on Privacy in the Electronic Society. 2018.
Küçük, Kubilay Ahmet, et al. "Exploring the use of Intel SGX for secure many-party applications. " Proceedings of the 1st Workshop on System Software for Trusted Execution. 2016.
Dilmaghani, Saharnaz, et al. "Privacy and Security of Big Data in AI Systems: A Research and Standards Perspective. " 2019 IEEE International Conference on Big Data (Big Data). IEEE, 2019.
Area, Solution Focus. "FIDO Support on Intel® Platforms. "
Cohn-Gordon, Katriel, et al. "A formal security analysis of the signal messaging protocol. " 2017 IEEE European Symposium on Security and Privacy (EuroS&P). IEEE, 2017.
Hintze, Daniel, et al. "CORMORANT: On Implementing Risk-Aware Multi-Modal Biometric Cross-Device Authentication For Android. " (2019).