{"id":"https://openalex.org/W7135080039","doi":"https://doi.org/10.48550/arxiv.2603.10056","title":"OAuthHub: Mitigating OAuth Data Overaccess through a Local Data Hub","display_name":"OAuthHub: Mitigating OAuth Data Overaccess through a Local Data Hub","publication_year":2026,"publication_date":"2026-03-09","ids":{"openalex":"https://openalex.org/W7135080039","doi":"https://doi.org/10.48550/arxiv.2603.10056"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2603.10056","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2603.10056","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2603.10056","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5128819346","display_name":"Qiyu Li","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Li, Qiyu","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5128843841","display_name":"Yuhe Tian","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tian, Yuhe","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5032046097","display_name":"Haojian Jin","orcid":"https://orcid.org/0000-0001-5212-2235"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jin, Haojian","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.13580000400543213,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.13580000400543213,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.07169999927282333,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T13194","display_name":"ICT in Developing Communities","score":0.06270000338554382,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/data-access","display_name":"Data access","score":0.6901999711990356},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.5181000232696533},{"id":"https://openalex.org/keywords/permission","display_name":"Permission","score":0.5055999755859375},{"id":"https://openalex.org/keywords/data-sharing","display_name":"Data sharing","score":0.48350000381469727},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.43630000948905945},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.43209999799728394},{"id":"https://openalex.org/keywords/access-control","display_name":"Access control","score":0.4140999913215637},{"id":"https://openalex.org/keywords/data-integrity","display_name":"Data integrity","score":0.3774000108242035}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7559999823570251},{"id":"https://openalex.org/C47487241","wikidata":"https://www.wikidata.org/wiki/Q5227230","display_name":"Data access","level":2,"score":0.6901999711990356},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.5181000232696533},{"id":"https://openalex.org/C2779089604","wikidata":"https://www.wikidata.org/wiki/Q7169333","display_name":"Permission","level":2,"score":0.5055999755859375},{"id":"https://openalex.org/C2779965156","wikidata":"https://www.wikidata.org/wiki/Q5227350","display_name":"Data sharing","level":3,"score":0.48350000381469727},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.43630000948905945},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.43209999799728394},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.4140999913215637},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4097999930381775},{"id":"https://openalex.org/C33762810","wikidata":"https://www.wikidata.org/wiki/Q461671","display_name":"Data integrity","level":2,"score":0.3774000108242035},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.3393000066280365},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.33649998903274536},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.28780001401901245},{"id":"https://openalex.org/C116537","wikidata":"https://www.wikidata.org/wiki/Q2169973","display_name":"Service provider","level":3,"score":0.28529998660087585},{"id":"https://openalex.org/C2777407602","wikidata":"https://www.wikidata.org/wiki/Q1888932","display_name":"Mandatory access control","level":4,"score":0.28049999475479126},{"id":"https://openalex.org/C10511746","wikidata":"https://www.wikidata.org/wiki/Q899388","display_name":"Data security","level":3,"score":0.2752000093460083},{"id":"https://openalex.org/C133462117","wikidata":"https://www.wikidata.org/wiki/Q4929239","display_name":"Data collection","level":2,"score":0.2709999978542328},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.2614000141620636},{"id":"https://openalex.org/C1009929","wikidata":"https://www.wikidata.org/wiki/Q179550","display_name":"Software bug","level":3,"score":0.2578999996185303},{"id":"https://openalex.org/C186967261","wikidata":"https://www.wikidata.org/wiki/Q5082128","display_name":"Mobile device","level":2,"score":0.25540000200271606},{"id":"https://openalex.org/C193519340","wikidata":"https://www.wikidata.org/wiki/Q891179","display_name":"Data loss","level":2,"score":0.2526000142097473}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2603.10056","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2603.10056","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2603.10056","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2603.10056","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Most":[0],"OAuth":[1,22,82,136,197],"service":[2],"providers,":[3],"such":[4],"as":[5,53],"Google":[6],"and":[7,99,115,127,150,153,164],"Microsoft,":[8],"offer":[9],"only":[10,86],"a":[11,19,45,104,129],"limited":[12],"range":[13],"of":[14,67,111],"coarse-grained":[15],"data":[16,30,40,59,75,113],"access.":[17,41],"As":[18],"result,":[20],"third-party":[21],"applications":[23],"often":[24],"end":[25],"up":[26],"accessing":[27],"more":[28],"user":[29,97],"than":[31,195],"necessary,":[32],"even":[33],"if":[34],"their":[35],"developers":[36,173],"want":[37],"to":[38,96,160],"minimize":[39],"We":[42,140],"present":[43],"OAuthHub,":[44],"development":[46,105],"framework":[47,106],"that":[48,73,107,155,175],"leverages":[49],"users'":[50],"personal":[51,125],"devices":[52],"the":[54,71,117,161],"intermediary":[55],"controller":[56],"for":[57,80,134],"OAuth-based":[58],"sharing":[60],"between":[61],"cloud":[62],"services.":[63],"The":[64],"key":[65],"innovations":[66],"OAuthHub":[68,142,156,194],"are:":[69],"(1)":[70],"insight":[72],"discretionary":[74],"access":[76,88,114,120,137],"is":[77],"largely":[78],"unnecessary":[79],"most":[81],"apps,":[83],"which":[84],"typically":[85],"require":[87],"at":[89,100],"three":[90,118,144],"well-defined":[91],"moments-during":[92],"installation,":[93],"in":[94],"response":[95],"actions,":[98],"scheduled":[101],"intervals;":[102],"(2)":[103],"requires":[108,157],"explicit":[109],"declarations":[110],"intended":[112],"supports":[116],"common":[119],"patterns":[121],"through":[122],"intermittently":[123],"available":[124],"devices;":[126],"(3)":[128],"centralized":[130],"runtime":[131],"permission":[132],"model":[133],"managing":[135],"across":[138],"providers.":[139],"evaluated":[141],"with":[143,171,186],"real-world":[145],"apps":[146],"on":[147],"both":[148],"PCs":[149],"mobile":[151],"phones":[152],"found":[154],"moderate":[158],"changes":[159],"application":[162],"code":[163,188],"imposes":[165],"insignificant":[166],"performance":[167],"overheads.":[168],"Our":[169],"study":[170],"18":[172],"showed":[174],"participants":[176],"completed":[177],"programming":[178],"tasks":[179],"significantly":[180],"faster":[181],"(9.1":[182],"vs.":[183,190],"18.0":[184],"minutes)":[185],"less":[187],"(4.7":[189],"15.8":[191],"lines)":[192],"using":[193],"conventional":[196],"APIs.":[198]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-03-13T00:00:00"}