Affiliation:
1. University of Parma, Italy
Abstract
Social networking sites have deeply changed the perception of the web in the last years. Although the current approach to build social networking systems is to create huge centralized systems owned by a single company, such strategy has many drawbacks, e.g., lack of privacy, lack of anonymity, risks of censorship and operating costs. These issues contrast with some of the main requirements of information systems, including: (i) confidentiality, i.e., the interactions between a user and the system must remain private unless explicitly public; (ii) integrity; (iii) accountability; (iv) availability; (v) identity and anonymity. Moreover, social networking platforms are vulnerable to many kind of attacks: (i) masquerading, which occurs when a user disguises his identity and pretends to be another user; (ii) unauthorized access; (iii) denial of service; (iv) repudiation, which occurs when a user participates in an activity and later claims he did not; (v) eavesdropping; (vi) alteration of data; (vii) copy and replay attacks; and, in general, (viii) attacks making use of social engineering techniques. In order to overcome both the intrinsic defects of centralized systems and the general vulnerabilities of social networking platforms, many different approaches have been proposed, both as federated (i.e., consisting of multiple entities cooperating to provide the service, but usually distinct from users) or peer-to-peer systems (with users directly cooperating to provide the service); in this work the most interesting ones were reviewed. Eventually, the authors present their own approach to create a solid distributed social networking platform consisting in a novel peer-to-peer system that leverages existing, widespread and stable technologies such as distributed hash tables and BitTorrent. The topics considered in detail are: (i) anonymity and resilience to censorship; (ii) authenticatable contents; (iii) semantic interoperability using activity streams and weak semantic data formats for contacts and profiles; and (iv) data availability.
Reference45 articles.
1. Baden, R., Bender, A., Spring, N., Bhattacharjee, B., & Starin, D. (2009). Persona: An online social network with user-defined privacy. In Proceedings of the ACM conference on Data communication, SIGCOMM '09, (pp. 135–146). ACM.
2. Berners-Lee, T. (2010, December). Long live the web: A call for continued open standards and neutrality. Scientific American Magazine. Retrieved September 26, 2012, from http://www.scientificamerican.com/article.cfm?id=long-live-the-web
3. Bethencourt, J., Sahai, A., & Waters, B. (2007). Ciphertext -policy attribute-based encryption. In IEEE Symposium on Security and Privacy (pp. 321-334). IEEE Computer Society.
4. Biddle, P., England, P., Peinado, M., & Willman, B. (2002). The Darknet and the future of content distribution. In Lecture Notes in Computer Science, Vol. 2696. Proceedings of the 2002 ACM Workshop on Digital Rights Management (pp. 155–176). Berlin: Springer / Verlag.
5. Boneh, D., & Franklin, M. (2001). Identity based encryption from the Weil pairing. Extended abstract in Lecture Notes in Computer Science, Vol. 2139. Advances in Cryptology – Crypto 2001 (pp. 231–229). Berlin: Springer / Verlag.
Cited by
8 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. General Collective Intelligence as a Platform for Social Technology;Pervasive Computing and Social Networking;2022-09-02
2. A P2P Architecture for Social Networking;Applying Integration Techniques and Methods in Distributed Systems and Technologies;2019
3. Blogracy;Censorship, Surveillance, and Privacy;2019
4. Information Attacks and Defenses on the Social Web;Global Implications of Emerging Technology Trends;2018
5. Supporting Health and Community Care with Multi-Agent Systems;International Journal of Privacy and Health Information Management;2017-07