User-centric Identity Management based on secure elements

Davi Böger; Luciano Barreto; Joni Fraga; Pascal Urien; Hassane Aissaoui; André Santos; Guy Pujolle

doi:10.1109/ISCC.2014.6912541

User-centric Identity Management based on secure elements

Davi Böger, Luciano Barreto, Joni Fraga, Pascal Urien, Hassane Aissaoui, André Santos, Guy Pujolle

SecFuNet Project

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The security of large applications and distributed systems is heavily dependent on Identity Management models and infrastructures. In this paper we introduce the Identity Management approach developed in the SecFuNet project, which emphasizes the use of smartcards to user authentication and user-centric attribute delivery policies. In current identity models, user attributes are stored in identity providers and any trust relationship may spread user information across trust networks formed among identity providers. In our approach, the user controls the release of his attributes that are stored in his own smartcard. Also, the approach makes use of secure elements and virtualization for protecting user information. This paper describes aspects of our authentication model and discusses the results obtained with a prototype implementation.

Original language	English
Title of host publication	Proceedings - IEEE Symposium on Computers and Communications
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9781479942787
DOIs	https://doi.org/10.1109/ISCC.2014.6912541
Publication status	Published - 26 Sept 2014
Externally published	Yes
Event	19th IEEE Symposium on Computers and Communications, ISCC 2014 - Funchal, Portugal Duration: 23 Jun 2014 → 26 Jun 2014

Publication series

Name	Proceedings - IEEE Symposium on Computers and Communications
ISSN (Print)	1530-1346

Conference

Conference	19th IEEE Symposium on Computers and Communications, ISCC 2014
Country/Territory	Portugal
City	Funchal
Period	23/06/14 → 26/06/14

Keywords

Authentication
Identity Management
Security
User-Centric Policies

Access to Document

10.1109/ISCC.2014.6912541

Cite this

Böger, D., Barreto, L., Fraga, J., Urien, P., Aissaoui, H., Santos, A., & Pujolle, G. (2014). User-centric Identity Management based on secure elements. In Proceedings - IEEE Symposium on Computers and Communications Article 6912541 (Proceedings - IEEE Symposium on Computers and Communications). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ISCC.2014.6912541

@inproceedings{de9535e71bb64721ac2857e2c94c2d80,

title = "User-centric Identity Management based on secure elements",

abstract = "The security of large applications and distributed systems is heavily dependent on Identity Management models and infrastructures. In this paper we introduce the Identity Management approach developed in the SecFuNet project, which emphasizes the use of smartcards to user authentication and user-centric attribute delivery policies. In current identity models, user attributes are stored in identity providers and any trust relationship may spread user information across trust networks formed among identity providers. In our approach, the user controls the release of his attributes that are stored in his own smartcard. Also, the approach makes use of secure elements and virtualization for protecting user information. This paper describes aspects of our authentication model and discusses the results obtained with a prototype implementation.",

keywords = "Authentication, Identity Management, Security, User-Centric Policies",

author = "Davi B{\"o}ger and Luciano Barreto and Joni Fraga and Pascal Urien and Hassane Aissaoui and Andr{\'e} Santos and Guy Pujolle",

note = "Publisher Copyright: {\textcopyright} 2014 IEEE.; 19th IEEE Symposium on Computers and Communications, ISCC 2014 ; Conference date: 23-06-2014 Through 26-06-2014",

year = "2014",

month = sep,

day = "26",

doi = "10.1109/ISCC.2014.6912541",

language = "English",

series = "Proceedings - IEEE Symposium on Computers and Communications",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

booktitle = "Proceedings - IEEE Symposium on Computers and Communications",

}

Böger, D, Barreto, L, Fraga, J, Urien, P, Aissaoui, H, Santos, A & Pujolle, G 2014, User-centric Identity Management based on secure elements. in Proceedings - IEEE Symposium on Computers and Communications., 6912541, Proceedings - IEEE Symposium on Computers and Communications, Institute of Electrical and Electronics Engineers Inc., 19th IEEE Symposium on Computers and Communications, ISCC 2014, Funchal, Portugal, 23/06/14. https://doi.org/10.1109/ISCC.2014.6912541

User-centric Identity Management based on secure elements. / Böger, Davi; Barreto, Luciano; Fraga, Joni et al.
Proceedings - IEEE Symposium on Computers and Communications. Institute of Electrical and Electronics Engineers Inc., 2014. 6912541 (Proceedings - IEEE Symposium on Computers and Communications).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - User-centric Identity Management based on secure elements

AU - Böger, Davi

AU - Barreto, Luciano

AU - Fraga, Joni

AU - Urien, Pascal

AU - Aissaoui, Hassane

AU - Santos, André

AU - Pujolle, Guy

PY - 2014/9/26

Y1 - 2014/9/26

N2 - The security of large applications and distributed systems is heavily dependent on Identity Management models and infrastructures. In this paper we introduce the Identity Management approach developed in the SecFuNet project, which emphasizes the use of smartcards to user authentication and user-centric attribute delivery policies. In current identity models, user attributes are stored in identity providers and any trust relationship may spread user information across trust networks formed among identity providers. In our approach, the user controls the release of his attributes that are stored in his own smartcard. Also, the approach makes use of secure elements and virtualization for protecting user information. This paper describes aspects of our authentication model and discusses the results obtained with a prototype implementation.

AB - The security of large applications and distributed systems is heavily dependent on Identity Management models and infrastructures. In this paper we introduce the Identity Management approach developed in the SecFuNet project, which emphasizes the use of smartcards to user authentication and user-centric attribute delivery policies. In current identity models, user attributes are stored in identity providers and any trust relationship may spread user information across trust networks formed among identity providers. In our approach, the user controls the release of his attributes that are stored in his own smartcard. Also, the approach makes use of secure elements and virtualization for protecting user information. This paper describes aspects of our authentication model and discusses the results obtained with a prototype implementation.

KW - Authentication

KW - Identity Management

KW - Security

KW - User-Centric Policies

U2 - 10.1109/ISCC.2014.6912541

DO - 10.1109/ISCC.2014.6912541

M3 - Conference contribution

AN - SCOPUS:84908190302

T3 - Proceedings - IEEE Symposium on Computers and Communications

BT - Proceedings - IEEE Symposium on Computers and Communications

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 19th IEEE Symposium on Computers and Communications, ISCC 2014

Y2 - 23 June 2014 through 26 June 2014

ER -

User-centric Identity Management based on secure elements

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this