Title :
User-centric Identity Management based on secure elements
Author :
Boger, Davi ; Barreto, Luciano ; Fraga, Joni ; Urien, Pascal ; Aissaoui, Hassane ; Santos, Aldri ; Pujolle, Guy
Author_Institution :
SecFuNet Project, France
Abstract :
The security of large applications and distributed systems is heavily dependent on Identity Management models and infrastructures. In this paper we introduce the Identity Management approach developed in the SecFuNet project, which emphasizes the use of smartcards to user authentication and user-centric attribute delivery policies. In current identity models, user attributes are stored in identity providers and any trust relationship may spread user information across trust networks formed among identity providers. In our approach, the user controls the release of his attributes that are stored in his own smartcard. Also, the approach makes use of secure elements and virtualization for protecting user information. This paper describes aspects of our authentication model and discusses the results obtained with a prototype implementation.
Keywords :
data protection; distributed processing; message authentication; smart cards; software management; SecFuNet project; distributed systems; identity providers; prototype implementation; secure elements; smartcards; trust networks; user authentication; user information protection; user-centric attribute delivery policies; user-centric identity management; Authentication; Cryptography; Program processors; Protocols; Servers; Virtual machine monitors; Authentication; Identity Management; Security; User-Centric Policies;
Conference_Titel :
Computers and Communication (ISCC), 2014 IEEE Symposium on
Conference_Location :
Funchal
DOI :
10.1109/ISCC.2014.6912541
