User-centric Identity Management based on secure elements

Author

Boger, Davi ; Barreto, Luciano ; Fraga, Joni ; Urien, Pascal ; Aissaoui, Hassane ; Santos, Aldri ; Pujolle, Guy

Author_Institution

SecFuNet Project, France

fYear

2014

fDate

23-26 June 2014

Firstpage

1

Lastpage

6

Abstract

The security of large applications and distributed systems is heavily dependent on Identity Management models and infrastructures. In this paper we introduce the Identity Management approach developed in the SecFuNet project, which emphasizes the use of smartcards to user authentication and user-centric attribute delivery policies. In current identity models, user attributes are stored in identity providers and any trust relationship may spread user information across trust networks formed among identity providers. In our approach, the user controls the release of his attributes that are stored in his own smartcard. Also, the approach makes use of secure elements and virtualization for protecting user information. This paper describes aspects of our authentication model and discusses the results obtained with a prototype implementation.

Keywords

data protection; distributed processing; message authentication; smart cards; software management; SecFuNet project; distributed systems; identity providers; prototype implementation; secure elements; smartcards; trust networks; user authentication; user information protection; user-centric attribute delivery policies; user-centric identity management; Authentication; Cryptography; Program processors; Protocols; Servers; Virtual machine monitors; Authentication; Identity Management; Security; User-Centric Policies;

fLanguage

English

Publisher

ieee

Conference_Titel

Computers and Communication (ISCC), 2014 IEEE Symposium on

Conference_Location

Funchal

Type

conf

DOI

10.1109/ISCC.2014.6912541

Filename

6912541