User-centric identity management using trusted modules

Authors:
Jan Vossaert;Jorn Lapon;Bart De Decker;Vincent Naessens
Affiliations:
Katholieke Hogeschool Sint-Lieven, Department of Industrial Engineering, Ghent, Belgium;Katholieke Hogeschool Sint-Lieven, Department of Industrial Engineering, Ghent, Belgium;Katholieke Universiteit Leuven, Department of Computer Science, Heverlee, Belgium;Katholieke Hogeschool Sint-Lieven, Department of Industrial Engineering, Ghent, Belgium
Venue:
EuroPKI'10 Proceedings of the 7th European conference on Public key infrastructures, services and applications
Year:
2010

Citing 13
Cited 0

Design and implementation of the idemix anonymous credential system

Proceedings of the 9th ACM conference on Computer and communications security
Security Architecture of the Austrian Citizen Card Concept

ACSAC '02 Proceedings of the 18th Annual Computer Security Applications Conference
Anonymous Connections and Onion Routing

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Privacy and identity management for everyone

Proceedings of the 2005 workshop on Digital identity management
OpenID 2.0: a platform for user-centric identity management

Proceedings of the second ACM workshop on Digital identity management
Usability and privacy in identity management architectures

ACSW '07 Proceedings of the fifth Australasian symposium on ACSW frontiers - Volume 68
Understanding windows cardspace: an introduction to the concepts and challenges of digital identities

Understanding windows cardspace: an introduction to the concepts and challenges of digital identities
A user-centric federated single sign-on system

Journal of Network and Computer Applications
User-centric privacy management for federated identity management

COLCOM '07 Proceedings of the 2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing
A conceptual model for attribute aggregation

Future Generation Computer Systems
A cryptographic framework for the controlled release of certified data

SP'04 Proceedings of the 12th international conference on Security Protocols
Trusted computing: strengths, weaknesses and further opportunities for enhancing privacy

iTrust'05 Proceedings of the Third international conference on Trust Management
Persistent and dynamic trust: analysis and the related impact of trusted platforms

iTrust'05 Proceedings of the Third international conference on Trust Management

Quantified Score

Hi-index	0.00

Visualization

Abstract

Many service providers want to control access to their services and offer personalized services. This implies that the service provider requests and stores personal attributes. However, many service providers are not sure about the correctness of attributes that are disclosed by the user during registration. Federated identity management systems aim at increasing the user-friendliness of authentication procedures, while at the same time ensuring strong authentication to service providers. This paper presents a new flexible approach for user-centric identity management, using trusted modules. Our approach combines several privacy features available in current federated identity management systems and offers extra functionality. For instance, attribute aggregation is supported and the problem of user impersonization by identity providers is tacked.