{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,1]],"date-time":"2026-06-01T20:11:12Z","timestamp":1780344672012,"version":"3.54.1"},"reference-count":50,"publisher":"MDPI AG","issue":"5","license":[{"start":{"date-parts":[[2023,5,21]],"date-time":"2023-05-21T00:00:00Z","timestamp":1684627200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Deanship of Scientific Research, Taif University","award":["TURSP-2020\/215"],"award-info":[{"award-number":["TURSP-2020\/215"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Systems"],"abstract":"<jats:p>This article discusses the importance of cross-platform UX\/UI designs and frameworks and their effectiveness in building web applications and websites. Third-party libraries (TPL) and plug-ins are also emphasized, as they can help developers quickly build and compose applications. However, using these libraries can also pose security risks, as a vulnerability in any library can compromise an entire server and customer data. The paper proposes using multi-authentication with specific parameters to analyze third-party applications and libraries used in cross-platform development. Based on multi-authentication, the proposed model will make setting up web desensitization methods and access control parameters easier. The study also uses various end-user and client-based decision-making indicators, supporting factors, and data metrics to help make accurate decisions about avoiding and blocking unwanted libraries and plug-ins. The research is based on experimentation with five web environments using specific parameters, affecting factors, and supporting data matrices.<\/jats:p>","DOI":"10.3390\/systems11050262","type":"journal-article","created":{"date-parts":[[2023,5,22]],"date-time":"2023-05-22T02:00:27Z","timestamp":1684720827000},"page":"262","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Dependable and Non-Dependable Multi-Authentication Access Constraints to Regulate Third-Party Libraries and Plug-Ins across Platforms"],"prefix":"10.3390","volume":"11","author":[{"ORCID":"https:\/\/orcid.org\/0000-0003-1884-9945","authenticated-orcid":false,"given":"Santosh Kumar","family":"Henge","sequence":"first","affiliation":[{"name":"Department of Computer Applications, Directorate of Online Education, Manipal University Jaipur, Jaipur 303007, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-0342-9788","authenticated-orcid":false,"given":"Gnaniyan Uma","family":"Maheswari","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Engineering, RMK College of Engineering and Technology, Chennai 601206, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-0734-3423","authenticated-orcid":false,"given":"Rajakumar","family":"Ramalingam","sequence":"additional","affiliation":[{"name":"School of Computer Science and Engineering, Vellore Institute of Technology, Chennai 600127, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8194-9354","authenticated-orcid":false,"given":"Sultan S.","family":"Alshamrani","sequence":"additional","affiliation":[{"name":"Department of Information Technology, College of Computers and Information Technology, Taif University, P.O. Box 11099, Taif 21944, Saudi Arabia"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8302-4571","authenticated-orcid":false,"given":"Mamoon","family":"Rashid","sequence":"additional","affiliation":[{"name":"Department of Computer Engineering, Faculty of Science and Technology, Vishwakarma University, Pune 411048, India"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7297-9161","authenticated-orcid":false,"given":"Jayalakshmi","family":"Murugan","sequence":"additional","affiliation":[{"name":"Department of Computer Science and Engineering, School of Computing, Kalasalingam Academy of Research and Education, Krishnankoil 626128, India"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"1968","published-online":{"date-parts":[[2023,5,21]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","first-page":"5","DOI":"10.1186\/1869-0238-4-5","article-title":"An analysis of security issues for cloud computing","volume":"4","author":"Hashizume","year":"2013","journal-title":"J. Internet Serv. Appl."},{"key":"ref_2","unstructured":"Zhao, G., Liu, J., Tang, Y., Sun, W., Zhang, F., Ye, X., and Tang, N. (2009). Cloud Computing, Proceedings of the First International Conference on Cloud Computing (CloudCom), Beijing, China, 1\u20134 December 2009, Springer."},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Zhang, S., Zhang, S., Chen, X., and Huo, X. (2010, January 22\u201324). Cloud Computing Research and Development Trend. Proceedings of the Second International Conference on Future Networks (ICFN\u201910), Sanya, China.","DOI":"10.1109\/ICFN.2010.58"},{"key":"ref_4","unstructured":"Cloud Security Alliance (2023, February 01). Security Guidance for Critical Areas of Focus in Cloud Computing V3.0. Available online: https:\/\/cloudsecurityalliance.org\/guidance\/csaguide.v3.0.pdf."},{"key":"ref_5","unstructured":"Marinos, A., and Briscoe, G. (2009). Cloud Computing, Proceedings of the First International Conference, CloudCom 2009, Beijing, China, 1\u20134 December 2009, Springer. Proceedings 1."},{"key":"ref_6","unstructured":"Centre for the Protection of National Infrastructure (2023, February 01). Information Security Briefing 01\/2010 Cloud Computing, Available online: http:\/\/www.cpni.gov.uk\/Documents\/Publications\/2010\/2010007-ISB_cloud_computing.pdf."},{"key":"ref_7","doi-asserted-by":"crossref","unstructured":"Khalid, A. (2010, January 9\u201310). Cloud Computing: Applying issues in Small Business. Proceedings of the International Conference on Signal Acquisition and Processing (ICSAP\u201910), Bangalore, India.","DOI":"10.1109\/ICSAP.2010.78"},{"key":"ref_8","unstructured":"KPMG (2023, February 01). From Hype to Future: KPMG\u2019s 2010 Cloud Computing Survey. Available online: http:\/\/www.techrepublic.com\/whitepapers\/from-hype-to-futurekpmgs-2010-cloud-computing-survey\/2384291."},{"key":"ref_9","doi-asserted-by":"crossref","first-page":"469","DOI":"10.3390\/fi4020469","article-title":"Security analysis in the migration to cloud environments","volume":"4","author":"Rosado","year":"2012","journal-title":"Future Internet"},{"key":"ref_10","unstructured":"Mather, T., Kumaraswamy, S., and Latif, S. (2009). Cloud Security and Privacy, O\u2019Reilly Media, Inc."},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Kaur, G., Vashisth, A., and Batth, R.S. (2019, January 24\u201326). X-Ortho: Fuzzy Rule Based Expert System for Diagnosing Infective Diseases of Hinge Joint Knee. Proceedings of the 2019 International Conference on Automation, Computational and Technology Management (ICACTM), London, UK.","DOI":"10.1109\/ICACTM.2019.8776831"},{"key":"ref_12","first-page":"5073","article-title":"X-Tumour: Fuzzy Rule Based Medical Expert System to Detect Tumours in Gynaecology","volume":"9","author":"Dimple","year":"2016","journal-title":"Int. J. Control Theory Appl."},{"key":"ref_13","unstructured":"Li, W., and Ping, L. (2009). Cloud Computing, Proceedings of the 1st International conference on Cloud Computing, Beijing, China, 1\u20134 December 2009, Springer."},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"Rittinghouse, J.W., and Ransome, J.F. (2017). Ransome. Cloud Computing: Implementation, Management, and Security, CRC Press.","DOI":"10.1201\/9781439806814"},{"key":"ref_15","first-page":"7","article-title":"Int. J","volume":"15","author":"Kalpana","year":"2017","journal-title":"Comput. Sci. Inf. Secur."},{"key":"ref_16","unstructured":"Claesson, A. (2022, February 02). Securing Third-Party Dependencies in Development. Available online: https:\/\/www.mnemonic.no\/globalassets\/security-report\/securing-third-party-dependencies-in-development.pdf."},{"key":"ref_17","unstructured":"Tebaa, M., El Hajji, S., and El Ghazi, A. (2012). National Days of Network Security and Systems (JNS2), IEEE Computer Society."},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Naehrig, M., Lauter, K., and Vaikuntanathan, V. (2011, January 21). Can homomorphic encryption be practical?. Proceedings of the 3rd ACM workshop on Cloud Computing Security workshop, Chicago, IL, USA.","DOI":"10.1145\/2046660.2046682"},{"key":"ref_19","unstructured":"Xanthopoulos, S., and Xinogalos, S. (2013, January 19\u201321). A Comparative Analysis of Cross-platform Development Approaches for Mobile Applications. Proceedings of the 6th Balkan Conference in Informatics, Thessaloniki, Greece. ACM 978-1-4503-1851-8\/13\/09."},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"175","DOI":"10.1016\/j.jss.2019.04.001","article-title":"Towards the definitive evaluation framework for cross-platform app development approaches","volume":"153","author":"Rieger","year":"2019","journal-title":"J. Syst. Softw."},{"key":"ref_21","doi-asserted-by":"crossref","first-page":"22","DOI":"10.1016\/j.jss.2019.03.015","article-title":"Verifying fragility in digital systems with uncertainties using DSVerifier v2.0","volume":"153","author":"Chaves","year":"2019","journal-title":"J. Syst. Softw."},{"key":"ref_22","doi-asserted-by":"crossref","first-page":"31","DOI":"10.1016\/j.scico.2013.11.013","article-title":"Extending a model-driven cross-platform development approach for business apps","volume":"97","author":"Kuchen","year":"2015","journal-title":"Sci. Comput. Program."},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Pusti\u0161ek, M., Umek, A., and Kos, A. (2019). Approaching the Communication Constraints of Ethereum-Based Decentralized Applications. Sensors, 19.","DOI":"10.3390\/s19112647"},{"key":"ref_24","doi-asserted-by":"crossref","unstructured":"Akasiadis, C., Pitsilis, V., and Spyropoulos, C.D. (2019). A Multi-Protocol IoT Platform Based on Open-Source Frameworks. Sensors, 19.","DOI":"10.3390\/s19194217"},{"key":"ref_25","doi-asserted-by":"crossref","first-page":"14442","DOI":"10.3390\/s121114442","article-title":"Framework for End-User Programming of Cross-Smart Space Applications","volume":"12","author":"Palviainen","year":"2012","journal-title":"Sensors"},{"key":"ref_26","doi-asserted-by":"crossref","unstructured":"Bi\u00f8rn-Hansen, A., Gr\u00f8nli, T.-M., and Ghinea, G. (2019). Animations in Cross-Platform Mobile Applications: An Evaluation of Tools, Metrics and Performance. Sensors, 19.","DOI":"10.3390\/s19092081"},{"key":"ref_27","doi-asserted-by":"crossref","unstructured":"Hang, L., and Kim, D.-H. (2019). Design and Implementation of an Integrated IoT Blockchain Platform for Sensing Data Integrity. Sensors, 19.","DOI":"10.3390\/s19102228"},{"key":"ref_28","doi-asserted-by":"crossref","first-page":"7775917","DOI":"10.1155\/2022\/7775917","article-title":"A Comprehensive Review of Android Security: Threats, Vulnerabilities, Malware Detection, and Analysis","volume":"2022","author":"Acharya","year":"2022","journal-title":"Secur. Commun. Netw."},{"key":"ref_29","doi-asserted-by":"crossref","first-page":"6819002","DOI":"10.1155\/2022\/6819002","article-title":"Container Performance and Vulnerability Management for Container Security Using Docker Engine","volume":"2022","author":"Alyas","year":"2022","journal-title":"Secur. Commun. Netw."},{"key":"ref_30","doi-asserted-by":"crossref","first-page":"6926408","DOI":"10.1155\/2022\/6926408","article-title":"An Attribute-Based Access Control Model for Internet of Things Using Hyperledger Fabric Blockchain","volume":"2022","author":"Shammar","year":"2022","journal-title":"Wirel. Commun. Mob. Comput."},{"key":"ref_31","first-page":"5743892","article-title":"An Empirical Study of Cross-Platform Mobile Development in Industry","volume":"2019","author":"Ghinea","year":"2019","journal-title":"Wirel. Commun. Mob. Comput."},{"key":"ref_32","first-page":"9629034","article-title":"A Server-Side JavaScript Security Architecture for Secure Integration of Third-Party Libraries","volume":"2019","author":"Massacci","year":"2019","journal-title":"Secur. Commun. Netw."},{"key":"ref_33","first-page":"3297","article-title":"Blockchain merkle-tree ethereum approach in enterprise multi-tenant cloud environment","volume":"74","author":"Dhiman","year":"2023","journal-title":"Comput. Mater. Contin."},{"key":"ref_34","doi-asserted-by":"crossref","unstructured":"Dhiman, P., Henge, S.K., Ramalingam, R., Dumka, A., Singh, R., Gehlot, A., Rashid, M., Alshamrani, S.S., AlGhamdi, A.S., and Alshehri, A. (2022). Secure Token\u2013Key Implications in an Enterprise Multi-Tenancy Environment Using BGV\u2013EHC Hybrid Homomorphic Encryption. Electronics, 11.","DOI":"10.3390\/electronics11131942"},{"key":"ref_35","unstructured":"Dhiman, P., and Henge, S.K. (2019, January 13\u201314). Comparative Analysis of Cloud Security Complexities and Past Proposed Non-Homomorphic and Homomorphic Encryption Methodologies with Limitation. Proceedings of the 4th International Conference on Information and Communication Technology for Competitive Strategies (ICTCS-2019), Udaipur, India."},{"key":"ref_36","doi-asserted-by":"crossref","unstructured":"Singh, P.K., Singh, Y., Chhabra, J.K., Ill\u00e9s, Z., and Verma, C. (2022). Recent Innovations in Computing. Lecture Notes in Electrical Engineering, Springer.","DOI":"10.1007\/978-981-16-8892-8"},{"key":"ref_37","doi-asserted-by":"crossref","first-page":"163","DOI":"10.1016\/j.asej.2015.08.004","article-title":"Taxonomy of Cross-Platform Mobile Applications Development Approaches","volume":"8","author":"Abdullah","year":"2017","journal-title":"Ain Shams Eng. J."},{"key":"ref_38","doi-asserted-by":"crossref","unstructured":"Hamza, A.A., Halim, I.T.A., Sobh, M.A., and Bahaa-Eldin, A.M. (2022). HSAS-MD Analyzer: A Hybrid Security Analysis System Using Model-Checking Technique and Deep Learning for Malware Detection in IoT Apps. Sensors, 22.","DOI":"10.3390\/s22031079"},{"key":"ref_39","doi-asserted-by":"crossref","first-page":"102509","DOI":"10.1016\/j.jnca.2019.102509","article-title":"PGFit: Static permission analysis of health and fitness apps in IoT programming frameworks","volume":"152","author":"Nobakht","year":"2019","journal-title":"J. Netw. Comput. Appl."},{"key":"ref_40","unstructured":"Celik, Z.B., McDaniel, P., and Tan, G. (2018, January 11\u201313). Soteria: Automated Iot Safety and Security Analysis. Proceedings of the 2018 {USENIX} Annual Technical Conference, Boston, MA, USA."},{"key":"ref_41","doi-asserted-by":"crossref","unstructured":"Wang, Q., Hassan, W.U., Bates, A., and Gunter, C. (2018, January 18\u201321). Fear and Logging in the Internet of Things. Proceedings of the Network and Distributed Systems Symposium, San Diego, CA, USA.","DOI":"10.14722\/ndss.2018.23282"},{"key":"ref_42","doi-asserted-by":"crossref","unstructured":"Celik, Z.B., Tan, G., and McDaniel, P.D. (2019, January 24\u201327). IoTGuard: Dynamic Enforcement of Security and Safety Policy in Commodity IoT. Proceedings of the NDSS, San Diego, CA, USA.","DOI":"10.14722\/ndss.2019.23326"},{"key":"ref_43","unstructured":"Tian, Y., Zhang, N., Lin, Y.H., Wang, X., Ur, B., Guo, X., and Tague, P. (2017, January 5). Smartauth: User-Centered Authorization for the Internet of Things. Proceedings of the 26th {USENIX} Security Symposium, Vancouver, BC, Canada."},{"key":"ref_44","doi-asserted-by":"crossref","unstructured":"Chen, J., Diao, W., Zhao, Q., Zuo, C., Lin, Z., Wang, X., Lau, W.C., Sun, M., Yang, R., and Zhang, K. (2018, January 18\u201321). IoTFuzzer: Discovering Memory Corruptions in IoT Through App-Based Fuzzing. Proceedings of the NDSS, San Diego, CA, USA.","DOI":"10.14722\/ndss.2018.23159"},{"key":"ref_45","unstructured":"Roundy, K.A., and Miller, B.P. (2010). International Workshop on Recent Advances in Intrusion Detection, Springer."},{"key":"ref_46","doi-asserted-by":"crossref","unstructured":"Zhan, X., Liu, T., Fan, L., Li, L., Chen, S., Luo, X., and Liu, Y. (2021). Research on Third-Party Libraries in Android Apps: A Taxonomy and Systematic Literature Review. arXiv.","DOI":"10.1109\/TSE.2021.3114381"},{"key":"ref_47","doi-asserted-by":"crossref","first-page":"30","DOI":"10.1145\/353323.353382","article-title":"Enforceable Security Policies","volume":"3","author":"Schneider","year":"2000","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"ref_48","unstructured":"Flanagan, D. (2011). JavaScript: The Definitive Guide, O\u2019Reilly Media, Inc.. [6th ed.]."},{"key":"ref_49","doi-asserted-by":"crossref","unstructured":"Lekies, S., Stock, B., and Johns, M. (2013, January 4\u20138). 25 Million Flows Later Large-scale Detection of DOM-based XSS. Proceedings of the ACM Conference on Computer and Communications Security (CCS), Berlin, Germany.","DOI":"10.1145\/2508859.2516703"},{"key":"ref_50","doi-asserted-by":"crossref","unstructured":"Nikiforakis, N., Invernizzi, L., Kapravelos, A., Van Acker, S., Joosen, W., Kruegel, C., Piessens, F., and Vigna, G. (2012, January 16\u201318). You are what you include: Large-scale evaluation of remote Javascript inclusions. Proceedings of the ACM Conference on Computer and Communications Security (CCS\u201912), Raleigh, CA, USA.","DOI":"10.1145\/2382196.2382274"}],"container-title":["Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/2079-8954\/11\/5\/262\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T19:39:20Z","timestamp":1760125160000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/2079-8954\/11\/5\/262"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,5,21]]},"references-count":50,"journal-issue":{"issue":"5","published-online":{"date-parts":[[2023,5]]}},"alternative-id":["systems11050262"],"URL":"https:\/\/doi.org\/10.3390\/systems11050262","relation":{},"ISSN":["2079-8954"],"issn-type":[{"value":"2079-8954","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023,5,21]]}}}