Tamper-Evident User Profiles for WebID-Based Social Networks
Proceedings of 14th International Conference on Web Engineering (ICWE2014)
Empowering people to express themselves in global communities, social networks became almost indispensable for exchanging usergenerated content. User profiles are essential elements of social networks. They represent their members, but also disclose personal data to companies. W3C’s WebID offers an alternative to centralized social networks that aims at providing control about personal data. WebID relies on trusting the systems that host user profiles. There is a risk that attackers exploit this trust by tampering user profile data or stealing identities. In this paper, we therefore propose the IronClad approach. It improves trustworthiness by introducing tamper-evident WebID profiles. IronClad takes protective measures to publiclydiscover maliciousmanipulation of profile data. We exemplarily implement IronClad in an existing WebID identity management platform known from previous work.
Stefan Wild, Falko Braune, Dominik Pretzsch, Michel Rienäcker, Martin Gaedke: Tamper-Evident User Profiles for WebID-Based Social Networks; Pages 470-479; Proceedings of 14th International Conference on Web Engineering (ICWE2014)copy text to clipboard