000107475 001__ 107475
000107475 005__ 20230519145517.0
000107475 0247_ $$2doi$$a10.3390/s21175716
000107475 0248_ $$2sideral$$a124904
000107475 037__ $$aART-2021-124904
000107475 041__ $$aeng
000107475 100__ $$0(orcid)0000-0001-8518-6884$$aSancho Larraz, Jorge$$uUniversidad de Zaragoza
000107475 245__ $$aAuthorizing Third-Party Applications Served through Messaging Platforms
000107475 260__ $$c2021
000107475 5060_ $$aAccess copy available to the general public$$fUnrestricted
000107475 5203_ $$aThe widespread adoption of smartphones and the new-generation wireless networks have changed the way that people interact among themselves and with their environment. The use of messaging platforms, such as WhatsApp, has become deeply ingrained in peoples’ lives, and many digital services have started to be delivered using these communication channels. In this work, we propose a new OAuth grant type to be used when the interaction between the resource owner and the client takes place through a messaging platform. This new grant type firstly allows the authorization server to be sure that no Man-in-the-Middle risk exists between the resource owner and the client before issuing an access token. Secondly, it allows the authorization server to interact with the resource owner through the same user-agent already being used to interact with the client, i.e., the messaging platform, which is expected to improve the overall user experience of the authorization process. To verify this assumption, we conducted a usability study in which subjects were required to perform the full authorization process using both the standard authorization code grant type (through a web-browser) and the new grant type defined in this work. They have also been required to fill in a small questionnaire including some demographic information and their impressions about both authorization flows. The results suggest that the proposed grant type eases the authorization process in most cases.
000107475 536__ $$9info:eu-repo/grantAgreement/ES/DGA-FEDER/T31-20R$$9info:eu-repo/grantAgreement/ES/DGA-MECD/FPU15-04841$$9info:eu-repo/grantAgreement/ES/MINECO-FEDER/TIN2016-76770-R
000107475 540__ $$9info:eu-repo/semantics/openAccess$$aby$$uhttp://creativecommons.org/licenses/by/3.0/es/
000107475 590__ $$a3.847$$b2021
000107475 592__ $$a0.803$$b2021
000107475 594__ $$a6.4$$b2021
000107475 591__ $$aCHEMISTRY, ANALYTICAL$$b29 / 87 = 0.333$$c2021$$dQ2$$eT2
000107475 593__ $$aAnalytical Chemistry$$c2021$$dQ1
000107475 591__ $$aINSTRUMENTS & INSTRUMENTATION$$b19 / 64 = 0.297$$c2021$$dQ2$$eT1
000107475 593__ $$aBiochemistry$$c2021$$dQ1
000107475 591__ $$aENGINEERING, ELECTRICAL & ELECTRONIC$$b95 / 277 = 0.343$$c2021$$dQ2$$eT2
000107475 593__ $$aInstrumentation$$c2021$$dQ1
000107475 593__ $$aInformation Systems$$c2021$$dQ1
000107475 593__ $$aElectrical and Electronic Engineering$$c2021$$dQ1
000107475 655_4 $$ainfo:eu-repo/semantics/article$$vinfo:eu-repo/semantics/publishedVersion
000107475 700__ $$0(orcid)0000-0001-9485-7678$$aGarcía Moros, José$$uUniversidad de Zaragoza
000107475 700__ $$0(orcid)0000-0002-5254-1402$$aAlesanco Iglesias, Álvaro$$uUniversidad de Zaragoza
000107475 7102_ $$15008$$2560$$aUniversidad de Zaragoza$$bDpto. Ingeniería Electrón.Com.$$cÁrea Ingeniería Telemática
000107475 773__ $$g21, 17 (2021), 5716 [16 pp.]$$pSensors$$tSensors$$x1424-8220
000107475 8564_ $$s1126844$$uhttps://zaguan.unizar.es/record/107475/files/texto_completo.pdf$$yVersión publicada
000107475 8564_ $$s2336520$$uhttps://zaguan.unizar.es/record/107475/files/texto_completo.jpg?subformat=icon$$xicon$$yVersión publicada
000107475 909CO $$ooai:zaguan.unizar.es:107475$$particulos$$pdriver
000107475 951__ $$a2023-05-18-15:18:03
000107475 980__ $$aARTICLE