Title: Quantify and alleviate OAuth approach token system exploiting by conspiracy lattice

Authors: G. Sreeram; S. Pradeep; Saideepthi Pabba; Nikhat Parveen

Addresses: Department of CSE, Vignana Bharathi Institute of Technology, Hyderabad – 501301, TS, India ' Department of CSE, Bhoj Reddy Engineering College for Women, Hyderabad – 500059, TS, India ' Department of CSE, K J Somaiya College of Engineering, Mumbai – 400077, Maharashtra, India ' Department of CSE, Koneru Lakshmaiah Education Foundation Guntur – 522502, AP, India

Abstract: We exposed a flourishing structure of high process eminence supertendence services on face book that influence fundamental of encounter. Collusion networks accumulate OAuth get admission to tokens from colluding contributors and abuse them to provide fake likes or feedback to their individuals. We completed a complete size examine to apprehend how these collusion networks exploited popular 0.33-celebration face book programs with susceptible security settings to retrieve OAuth get admission to tokens. We infiltrated famous collusion networks the use of honeypots and identified more than one million colluding face book debts by way of 'draining' these collusion networks. This determines outcome for face book and associated through the process of different alleviations which terminates open authorisation to get expression maltreatment externally giving up function stage convinces by third party engineers.

Keywords: access token; conspiracy lattice; OAuth; online social network; system and security; privacy.

DOI: 10.1504/IJSSE.2021.121472

International Journal of System of Systems Engineering, 2021 Vol.11 No.3/4, pp.301 - 319

Received: 10 Jul 2020
Accepted: 20 Nov 2020
Published online: 14 Mar 2022 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article