A decentralized open web cryptographic standard

A decentralized open web cryptographic standard

Security in web services is not well defined and is largely based on measures employed by the organization providing the service, the effectiveness of which vary greatly depending on the expertise, implementation, and business motivation. To address the mentioned issue, this paper proposes an open s...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Computers & electrical engineering 2022-04, Vol.99, p.107751, Article 107751
Hauptverfasser: Das, Dedipyaman, Sethuraman, Sibi Chakkaravarthy, Satapathy, Suresh Chandra
Format: Artikel
Sprache:eng
Schlagworte:
Access control
Authentication and authorization
Cryptography
Decentralization
Open standard
Privacy
Secrecy aspects
Security
Web security
Web services
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Security in web services is not well defined and is largely based on measures employed by the organization providing the service, the effectiveness of which vary greatly depending on the expertise, implementation, and business motivation. To address the mentioned issue, this paper proposes an open standard called Decentralized Open Web Cryptographic Standard (DOWCS) and reference implementation for decentralized protection of sensitive data. Services may adhere to the standards, to assure security to the end-user. Taking OAuth and PGP as reference models, the standard incorporates multiple layers of security to ensure secrecy of the said data while also decentralizing the key information required to derive the confidential data from the encrypted format.
ISSN:0045-7906
1879-0755
DOI:10.1016/j.compeleceng.2022.107751