Balancing Isolation and Sharing of Data in Third-Party Extensible App Ecosystems

Schröder, Florian; Reischuk, Raphael M.; Gehrke, Johannes

doi:10.1007/978-3-319-19890-3_64

Florian Schröder¹⁷,
Raphael M. Reischuk¹⁸ &
Johannes Gehrke¹⁹

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 9114))

Included in the following conference series:

International Conference on Web Engineering

2740 Accesses

Abstract

In the landscape of application ecosystems, today’s cloud users wish to personalize not only their browsers with various extensions or their smartphones with various applications, but also the various extensions and applications themselves. The resulting personalization significantly raises the attractiveness for typical Web 2.0 users, but gives rise to various security risks and privacy concerns, such as unforeseen access to certain critical components, undesired information flow of personal information to untrusted applications, or emerging attack surfaces that were not possible before a personalization has taken place. We propose a novel extensibility mechanism to implement personalization of existing cloud applications towards (possibly untrusted) components in a secure and privacy-friendly manner. More details of the results can be found in the long version [4] of this paper.

Download to read the full chapter text

Chapter PDF

Digital Privacy and Data Security in Cloud-Based Services: A Call for Action

PaaSword: A Holistic Data Privacy and Security by Design Framework for Cloud Services

Article Open access 22 March 2017

STRATUS: Towards Returning Data Control to Cloud Users

Keywords

These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.

References

Arellano, C., Díaz, O., Iturrioz, J.: Opening Personalization to Partners: An Architecture of Participation for Websites. In: Brambilla, M., Tokuda, T., Tolksdorf, R. (eds.) ICWE 2012. LNCS, vol. 7387, pp. 91–105. Springer, Heidelberg (2012)
Chapter Google Scholar
Jørstad, I., Thanh, D.V., Dustdar, S.: Personalisation of next generation mobile services. In: Norrie, M.C., Dustdar, S., Gall, H.C. (eds.) UMICS 2006 (2007)
Google Scholar
Reischuk, R.M., Backes, M., Gehrke, J.: SAFE extensibility for data-driven web applications. In: 21st Int. Conf. on World Wide Web, pp. 799–808. ACM (2012)
Google Scholar
Schröder, F., Reischuk, R.M., Gehrke, J.: Balancing isolation and sharing of data for third-party extensible app ecosystems (2015). http://arxiv.org/abs/1412.7641
Toch, E., Wang, Y., Cranor, L.F.: Personalization and privacy: a survey of privacy risks and remedies in personalization-based systems. User Modeling and User-Adapted Interaction 22(1–2), 203–220 (2012)
Article Google Scholar

Download references

Author information

Authors and Affiliations

Saarland University, Saarbrücken, Germany
Florian Schröder
ETH Zurich, Zürich, Switzerland
Raphael M. Reischuk
Cornell University, Ithaca, NY, USA
Johannes Gehrke

Authors

Florian Schröder
View author publications
You can also search for this author in PubMed Google Scholar
Raphael M. Reischuk
View author publications
You can also search for this author in PubMed Google Scholar
Johannes Gehrke
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Raphael M. Reischuk .

Editor information

Editors and Affiliations

Bielefeld University, Bielefeld, Germany
Philipp Cimiano
Eramus University Rotterdam, Rotterdam, The Netherlands
Flavius Frasincar
Delft University of Technology, Delft, The Netherlands
Geert-Jan Houben
Pontifical Catholic University of Rio de Janeiro, Rio de Janeiro, Brazil
Daniel Schwabe

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Schröder, F., Reischuk, R.M., Gehrke, J. (2015). Balancing Isolation and Sharing of Data in Third-Party Extensible App Ecosystems. In: Cimiano, P., Frasincar, F., Houben, GJ., Schwabe, D. (eds) Engineering the Web in the Big Data Era. ICWE 2015. Lecture Notes in Computer Science(), vol 9114. Springer, Cham. https://doi.org/10.1007/978-3-319-19890-3_64

Download citation

DOI: https://doi.org/10.1007/978-3-319-19890-3_64
Published: 10 June 2015
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-19889-7
Online ISBN: 978-3-319-19890-3
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics