Presentation is loading. Please wait.

Presentation is loading. Please wait.

Online Social Network: Threats &

Published byByron Garrett Modified over 6 years ago

Similar presentations

Presentation on theme: "Online Social Network: Threats &"— Presentation transcript:

1 Online Social Network: Threats &
Solutions GE Liqi CAI Ni LIN Ziyi proudly Presented

2 figure1.1 Word Cloud of OSNs with More Than 100 Million Active Users.
In recent years, global online social network (OSN) usage has increased sharply as these networks have become interwoven into people’s everyday lives as virtual meeting places that facilitate communication.

3 Outline 1. Threats 2. Solutions 3. Discussions

4 1 Threats

5 Threats 1. Classic threats, namely, privacy and security threats that not only jeopardize OSN users but also Internet users not using social networks. 2. Modern threats, that is, threats that are mostly unique to the environment of OSNs and which use the OSN infrastructure to endanger user privacy and security. 3. Combination threats, where we describe how today’s attackers can, and often do, combine various types of attacks in order to create more sophisticated and lethal attacks.

6 Classical Threats Malware. Malware in social networks uses the OSN structure to propagate itself among users and their friends in the network. Phishing Attacks. Cross-Site Scripting (XSS).

7 Modern threats are typically unique to OSN environments.
De-Anonymization Attacks. Identity Clone Attacks. Socware. Clickjacking.

8 Clickjacking An example of a clickjacking attack occurred on Twitter in 2009 when Twitter was plagued by a “Don’t Click” attack. The attacker tweeted a link with the message “Don’t Click” along with a masked URL (the actual URL domain was hidden). When Twitter users clicked on the “Don’t Click” message, the message automatically spread virally and was posted onto their Twitter accounts.

9 2 Solution

10 1、Social Network Operator Solution 2、Commercial Solution
Intro 1、Social Network Operator Solution 2、Commercial Solution 3、Academic Solution

11 Social Network Operator Solution
Authentication Mechanisms to make sure the user is the real person Security and Privacy Settings enable users to protect their personal data Internet Protection Mechanisms additional internal protection mechanisms for defense Report Users users can report abuse or policy violations

12 Commercial Solution Software
manage privacy settings; protect children from harmful content Application eg. warns the user about unsafe links and sites Web Service help parents to control their children in using social network Software Suite include anti-virus, fire-wall, and other Internet protection layers

13 Academic Solution Improving Privacy Setting Interfaces
help user to configure the privacy setting well Phishing Detection base on identify phishing websites and phishing URLs Spammer Detection Cloned Profile Detection Fake Profile Detection Socware Detection Preventing Information and Location Leakage

14 3 Discussion

15 Protection Layers First protection layer: Door lock
Second protection layer: Security alarm Third protection layer: Security camera Fourth protection layer: Neighborhood watch Fifth protection layer: Policeforce NEXT

16 First: Door lock Prevent unwelcome intruders
Entering and viewing OSN users’ personal posts and details Security and Privacy Settings Privacy Scanner, ZoneAlarm Privacy Scan Improving privacy settings. BACK

17 Second: Security alarm
Prevent malicious users Collecting OSN users’ personal posts and details Different commercial Internet security solutions &Solutions offered by academic researchers Effective in identifying active threats Insufficient for identifying more targeted threats de-anonymization attacks, identity clone attacks, inference attacks. BACK

18 Third: Security camera
Specific to children Protect both young children and teenagers Monitor online activity various monitoring software, eg. Net Nanny & MinorMonitor Help parents protect their children online predators and cyberbullying BACK

19 Fourth: Neighborhood watch
Using wisdom of the crowd pinpoint malicious users Various solutions Report other users to OSN operator Work together to identify & report Fake profiles, clickjacking, internet fraud, socware, and cyberbullying BACK

20 Fifth: Security alarm Authentication mechanisms
Make sure that only real people can login Identifying malicious users Prevent them from logging into & attacking other users Identify potential threats Based on network topology, users’ IP, login times, behavioral patterns BACK

21 Future Research Create synergy among the different security solutions
Apply various algorithms to enhance OSN security Analyze and evaluate the different existing privacy solutions Developing privacy-preserving OSNs Studying the emerging security threats

22 4 Conclusion

23 References [1] Academia.edu. [Online; accessed 09- January-2014]. [2] A. Acquisti and R. Gross. Imagined communities: Awareness, information sharing, and privacy on the facebook. In Privacy enhancing technologies, pages 36–58. Springer, 2006. [3] A. Acquisti, R. Gross, and F. Stutzman. Faces of facebook: Privacy in the age of augmented reality. BlackHat USA, 2011. [4] A. Aggarwal, J. Almeida, and P. Kumaraguru. Detection of spam tip- ping behaviour on foursquare. In Proceedings of the 22nd international conference on World Wide Web companion, pages 641–648. Interna- tional World Wide Web Conferences Steering Committee, 2013.

24 Thank you!

Download ppt "Online Social Network: Threats &"

Similar presentations

HQ in Israel Threat research, security operations center 24/7. In-depth understanding and insight into how cyber crime works. Over 10 million online identities.

HQ in Israel Threat research, security operations center 24/7. In-depth understanding and insight into how cyber crime works. Over 10 million online identities.
Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.

Social Network Security Issues: Social Engineering and Phishing Attacks Jeffrey Allen, Leon Gomez, Marlon Green, Phillip Ricciardi, Christian Sanabria.
Social media threats. Warning! May contain mild peril.

Social media threats. Warning! May contain mild peril.
Facebook Security and Privacy Issues Brian Allen Network Security Analyst Washington University December 2, 2010 Alumni House.

Facebook Security and Privacy Issues Brian Allen Network Security Analyst Washington University December 2, 2010 Alumni House.
AVG- Protecting those who are vulnerable.  Free Anti-Virus Software ◦ J.R. Smith President of AVG oversees a lineup of antivirus products used by 110.

AVG- Protecting those who are vulnerable.  Free Anti-Virus Software ◦ J.R. Smith President of AVG oversees a lineup of antivirus products used by 110.
1 On Protecting Private Information in Social Networks: A Proposal Bo Luo 1 and Dongwon Lee 2 1 The University of Kansas, 2 The Pennsylvania.

1 On Protecting Private Information in Social Networks: A Proposal Bo Luo 1 and Dongwon Lee 2 1 The University of Kansas, 2 The Pennsylvania.
Privacy in Social Networks CSCE 201. Reading Dwyer, Hiltz, Passerini, Trust and privacy concern within social networking sites: A comparison of Facebook.

Privacy in Social Networks CSCE 201. Reading Dwyer, Hiltz, Passerini, Trust and privacy concern within social networking sites: A comparison of Facebook.
Hongyu Gao, Tuo Huang, Jun Hu, Jingnan Wang.  Boyd et al. Social Network Sites: Definition, History, and Scholarship. Journal of Computer-Mediated Communication,

Hongyu Gao, Tuo Huang, Jun Hu, Jingnan Wang.  Boyd et al. Social Network Sites: Definition, History, and Scholarship. Journal of Computer-Mediated Communication,
Kaspersky Lab: The Best of Both Worlds Alexey Denisyuk, pre-sales engineer Kaspersky Lab Eastern Europe 5 th April 2012 / 2 nd InfoCom Security Conference.

Kaspersky Lab: The Best of Both Worlds Alexey Denisyuk, pre-sales engineer Kaspersky Lab Eastern Europe 5 th April 2012 / 2 nd InfoCom Security Conference.
CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.

CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.
SHASHANK MASHETTY Email security. Introduction Electronic mail most commonly referred to as email or e- mail. Electronic mail is one of the most commonly.

SHASHANK MASHETTY security. Introduction Electronic mail most commonly referred to as or e- mail. Electronic mail is one of the most commonly.
Internet safety By Lydia Snowden.

Internet safety By Lydia Snowden.
Internet Safety Basics Being responsible -- and safer -- online Visit age-appropriate sites Minimize chatting with strangers. Think critically about.

Internet Safety Basics Being responsible -- and safer -- online Visit age-appropriate sites Minimize chatting with strangers. Think critically about.
Social Media Attacks By Laura Jung. How the Attacks Start Popularity of these sites with millions of users makes them perfect places for cyber attacks.

Social Media Attacks By Laura Jung. How the Attacks Start Popularity of these sites with millions of users makes them perfect places for cyber attacks.
An Insight into the Relationship Between Social Media and the Susceptibility to Malicious Intent Presented by Rebecca Morgan 15/05/2015 >>>>2.

An Insight into the Relationship Between Social Media and the Susceptibility to Malicious Intent Presented by Rebecca Morgan 15/05/2015 >>>>2.
Distributed Phishing Attacks Markus Jakobsson Joint work with Adam Young, LECG.

Distributed Phishing Attacks Markus Jakobsson Joint work with Adam Young, LECG.
Network and Systems Security By, Vigya Sharma (2011MCS2564) FaisalAlam(2011MCS2608) DETECTING SPAMMERS ON SOCIAL NETWORKS.

Network and Systems Security By, Vigya Sharma (2011MCS2564) FaisalAlam(2011MCS2608) DETECTING SPAMMERS ON SOCIAL NETWORKS.
Using Social Networks to Harvest Addresses Reporter: Chia-Yi Lin Advisor: Chun-Ying Huang Mail: 9/14/2015 1.

Using Social Networks to Harvest Addresses Reporter: Chia-Yi Lin Advisor: Chun-Ying Huang Mail: 9/14/
BUSINESS B1 Information Security.

BUSINESS B1 Information Security.
INTERNET SAFETY Tips for becoming a “surfer” dude!

INTERNET SAFETY Tips for becoming a “surfer” dude!

Similar presentations

Ads by Google