Towards privacy analysis of Internet-based messaging applications
Tools
Tools
Naz, M. and Khan, M. T. 
ORCID: https://orcid.org/0000-0002-5752-6420
(2025)
Towards privacy analysis of Internet-based messaging applications.
In: 2025 IEEE 30th International Conference on Emerging Technologies and Factory Automation (ETFA), Porto, Portugal, 2025.
IEEE Xplore
.
Institute of Electrical and Electronics Engineers, Inc. (IEEE), Piscataway, New Jersey, pp. 1-8.
ISBN 979-8331553838
(doi:10.1109/ETFA65518.2025.11205612)
![[thumbnail of VoR]](https://gala.gre.ac.uk/style/images/fileicons/application_pdf.png "VoR") |
PDF (VoR)
51782 KHAN_Towards_Privacy_Analysis_Of_Internet-Based_Messaging_Applications_(VoR)_2025.pdf - Published Version Restricted to Repository staff only Download (973kB) | Request a copy |
Abstract
Privacy of Internet-based messaging applications involves establishing multiple requirements such as confidentiality, anonymity, pseudonymity, and consent, each typically addressed in isolation using different techniques. To the best of our knowledge, no unified framework supports the privacy analysis of these aspects together. Therefore, the main goal of our work is to detect privacy breaches based on a unified modelling of the relationship among the privacy requirements by static program analysis. In this paper, we present initial results on the privacy (i.e., confidentiality) analysis of Ejabberd server – an open-source XMPP backend server used by popular messaging applications like WhatsApp. Based on the confidentiality modelling, we perform a privacy analysis of key Ejabberd modules that are responsible for user authentication. The findings highlight the module implementations that involve potential privacy breaches and serve as a basis for our future work towards developing a unified privacy evaluation framework.
| Item Type: | Conference Proceedings |
|---|---|
| Title of Proceedings: | 2025 IEEE 30th International Conference on Emerging Technologies and Factory Automation (ETFA), Porto, Portugal, 2025 |
| Uncontrolled Keywords: | privacy, analytical models, passwords, privacy breach, control systems, servers, Internet telephony, manufacturing automation |
| Subjects: | Q Science > Q Science (General) Q Science > QA Mathematics Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
| Faculty / School / Research Centre / Research Group: | Faculty of Engineering & Science Faculty of Engineering & Science > School of Computing & Mathematical Sciences (CMS) |
| Related URLs: | |
| Last Modified: | 26 Nov 2025 07:55 |
| URI: | https://gala.gre.ac.uk/id/eprint/51782 |
Actions (login required)
 |
View Item |
Downloads
Downloads per month over past year