"Mashups are new Web 2.0 applications that seamlessly
combine contents from multiple heterogeneous data sources
into one integrated browser environment. The hallmark of
these applications is to facilitate dynamic information sharing
and analysis, thereby creating a more integrated and
convenient experience for end-users. As mashups evolve
into portals designed to offer convenient access to information
on critical domains, such as banking, shopping, investment,
enterprise mashups, and web desktops, concern
to protect clients¿ personal information and trade secrets
becomes important, thereby motivating the need for strong
security guarantees. In this project we designed and developed
a secure browser-independent mashup development framework called
OMOS (OpenMashupOS) which provides high assurance on mutual
authentication, data confidentiality, and message integrity
of mashup applications as they communicate within
a Web browser.
Moreover, we designed and developed a secure privacy-preserving
identity management protocol called Web2ID which supports single
sign-on, identity attribute exchange, and authorization delegation."
