Home // UBICOMM 2016, The Tenth International Conference on Mobile Ubiquitous Computing, Systems, Services and Technologies // View article

Browser-to-Browser Authentication and Trust Relationships for WebRTC

Authors:
Ibrahim Tariq Javed
Khalifa Toumi
Noel Crespi

Keywords: WebRTC; P2P; Identity Management; Authentication; Trust

Abstract:
WebRTC enables browsers to communicate in a Peer to Peer fashion without the use of any plug-ins. This technology is expected to lead a wave of disruptive yet innovative new communication services over the Web. However it also brings significant security and privacy concerns for the users. In WebRTC, authentication is decoupled from the website allowing users to validate each other directly using third party identity providers. User’s privacy and security highly depends upon the mechanism used for end-to-end authentication. To achieve security and enhance user privacy it is also essential to define trust between various entities involved in WebRTC security architecture. Therefore, in this paper, we analyze the identity architecture in detail to provide a comparison of suitable authentication protocols. A clear definition of trust is presented by defining various trust relationships that exist in WebRTC identity architecture.

Pages: 9 to 15

Copyright: Copyright (c) IARIA, 2016

Publication date: October 9, 2016

Published in: conference

ISSN: 2308-4278

ISBN: 978-1-61208-505-0

Location: Venice, Italy

Dates: from October 9, 2016 to October 13, 2016