An identity authentication protocol in online social networks

Lingjun Li; Xinxin Zhao; Guoliang Xue

doi:10.1145/2414456.2414471

An identity authentication protocol in online social networks

Lingjun Li, Xinxin Zhao, Guoliang Xue

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

2 Scopus citations

Abstract

Recent success of online social networks (OSNs) motivates the study of security issues in OSNs. A fundamental but challenging security issue in OSNs is to authenticate a friend's real identity. A solution to this issue will benefit a number of OSN security protocols. Existing solutions require users securely obtain some secret information from their friends before authentication takes place, which is not always possible in OSNs. In this paper, we propose a new authenticated key exchange protocol based on the exclusive secrets shared between friends. It provides identity authentication and key exchange in a plain setting, i.e., users do not need to securely exchange or distribute any information beforehand. The protocol is designed to work with low-entropy input information, because human beings are not good at dealing with a large amount of information. Another advantage of our protocol is its tolerance of input errors considering human error is always a possibility. We prove the security of the protocol in the universal composability (UC) framework and demonstrate its efficiency.

Original language	English (US)
Title of host publication	ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security
Pages	28-29
Number of pages	2
DOIs	https://doi.org/10.1145/2414456.2414471
State	Published - Dec 1 2012
Event	7th ACM Symposium on Information, Computer and Communications Security, ASIACCS 2012 - Seoul, Korea, Republic of Duration: May 2 2012 → May 4 2012

Publication series

Name	ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security

Other

Other	7th ACM Symposium on Information, Computer and Communications Security, ASIACCS 2012
Country	Korea, Republic of
City	Seoul
Period	5/2/12 → 5/4/12

ASJC Scopus subject areas

Computer Networks and Communications
Safety, Risk, Reliability and Quality

Access to Document

10.1145/2414456.2414471

Fingerprint Dive into the research topics of 'An identity authentication protocol in online social networks'. Together they form a unique fingerprint.

Cite this

Li, L., Zhao, X., & Xue, G. (2012). An identity authentication protocol in online social networks. In ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security (pp. 28-29). (ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security). https://doi.org/10.1145/2414456.2414471

An identity authentication protocol in online social networks. / Li, Lingjun; Zhao, Xinxin; Xue, Guoliang.

ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security. 2012. p. 28-29 (ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Li, L, Zhao, X & Xue, G 2012, An identity authentication protocol in online social networks. in ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security. ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security, pp. 28-29, 7th ACM Symposium on Information, Computer and Communications Security, ASIACCS 2012, Seoul, Korea, Republic of, 5/2/12. https://doi.org/10.1145/2414456.2414471

@inproceedings{f58f48ffa8ec4e96be1ff535e5dab04c,

title = "An identity authentication protocol in online social networks",

abstract = "Recent success of online social networks (OSNs) motivates the study of security issues in OSNs. A fundamental but challenging security issue in OSNs is to authenticate a friend's real identity. A solution to this issue will benefit a number of OSN security protocols. Existing solutions require users securely obtain some secret information from their friends before authentication takes place, which is not always possible in OSNs. In this paper, we propose a new authenticated key exchange protocol based on the exclusive secrets shared between friends. It provides identity authentication and key exchange in a plain setting, i.e., users do not need to securely exchange or distribute any information beforehand. The protocol is designed to work with low-entropy input information, because human beings are not good at dealing with a large amount of information. Another advantage of our protocol is its tolerance of input errors considering human error is always a possibility. We prove the security of the protocol in the universal composability (UC) framework and demonstrate its efficiency.",

author = "Lingjun Li and Xinxin Zhao and Guoliang Xue",

year = "2012",

month = dec,

day = "1",

doi = "10.1145/2414456.2414471",

language = "English (US)",

isbn = "9781450313032",

series = "ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security",

pages = "28--29",

booktitle = "ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security",

note = "7th ACM Symposium on Information, Computer and Communications Security, ASIACCS 2012 ; Conference date: 02-05-2012 Through 04-05-2012",

}

TY - GEN

T1 - An identity authentication protocol in online social networks

AU - Li, Lingjun

AU - Zhao, Xinxin

AU - Xue, Guoliang

PY - 2012/12/1

Y1 - 2012/12/1

N2 - Recent success of online social networks (OSNs) motivates the study of security issues in OSNs. A fundamental but challenging security issue in OSNs is to authenticate a friend's real identity. A solution to this issue will benefit a number of OSN security protocols. Existing solutions require users securely obtain some secret information from their friends before authentication takes place, which is not always possible in OSNs. In this paper, we propose a new authenticated key exchange protocol based on the exclusive secrets shared between friends. It provides identity authentication and key exchange in a plain setting, i.e., users do not need to securely exchange or distribute any information beforehand. The protocol is designed to work with low-entropy input information, because human beings are not good at dealing with a large amount of information. Another advantage of our protocol is its tolerance of input errors considering human error is always a possibility. We prove the security of the protocol in the universal composability (UC) framework and demonstrate its efficiency.

AB - Recent success of online social networks (OSNs) motivates the study of security issues in OSNs. A fundamental but challenging security issue in OSNs is to authenticate a friend's real identity. A solution to this issue will benefit a number of OSN security protocols. Existing solutions require users securely obtain some secret information from their friends before authentication takes place, which is not always possible in OSNs. In this paper, we propose a new authenticated key exchange protocol based on the exclusive secrets shared between friends. It provides identity authentication and key exchange in a plain setting, i.e., users do not need to securely exchange or distribute any information beforehand. The protocol is designed to work with low-entropy input information, because human beings are not good at dealing with a large amount of information. Another advantage of our protocol is its tolerance of input errors considering human error is always a possibility. We prove the security of the protocol in the universal composability (UC) framework and demonstrate its efficiency.

UR - http://www.scopus.com/inward/record.url?scp=84871993456&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84871993456&partnerID=8YFLogxK

U2 - 10.1145/2414456.2414471

DO - 10.1145/2414456.2414471

M3 - Conference contribution

AN - SCOPUS:84871993456

SN - 9781450313032

T3 - ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security

SP - 28

EP - 29

BT - ASIACCS 2012 - 7th ACM Symposium on Information, Computer and Communications Security

T2 - 7th ACM Symposium on Information, Computer and Communications Security, ASIACCS 2012

Y2 - 2 May 2012 through 4 May 2012

ER -