Auflistung nach Autor:in "Bruegger, Bud P."
1 - 6 von 6
Treffer pro Seite
Sortieroptionen
- KonferenzbeitragA DNSSEC-based trust infrastructure(Open Identity Summit 2014, 2014) Bruegger, Bud P.; Özmü, ErayThe management of trust issues is central to a wide variety of digital systems, including systems dealing with electronic signature, authentication, or signing of applications. The common approach to trust management is the use of possibly signed trust lists and trust stores that enumerate trusted issuers. This approach fails to scale well and is thus unsuited for the implementation of larger trust infrastructures, as, for example, in support of a regional authentication infrastructure that enables a marketplace of services. This paper proposes to use the domain name system (DNS) with security extension (DNSSEC) as a base for the creation of a globally scalable and flexible trust infrastructure. As opposed to trust lists or stores, this also provides a vehicle for the efficient and secure dissemination of trust information among stakeholders.
- KonferenzbeitragThe eID-Terminology Work of FutureID(Open Identity Summit 2013, 2013) Bruegger, Bud P.; Müller, Moritz-ChristianThe paper reports on the experience of the FutureID project in the creation and use of an eID terminology so far. A major part of work has reviewed the state of the art in eID Terminologies. Five existing terminologies have been compared and analyzed in detail to yield unexpected and surprising results. On this basis, FutureID has designed its approach for creation and use of an eID terminology that is currently being implemented in the project. It is hoped that the terminology, its approach, and the related infrastructure will constitute a general community resource, well beyond the scope and duration of the project.1 Section heading
- KonferenzbeitragLightest - A lightweight infrastructure for global heterogeneous trust management(2016) Bruegger, Bud P.; Lipp, PeterLIGHTest is a project that is partially funded by the European Commission as an Innovation Action as part of the Horizon2020 program under grant agreement number 700321. LIGHTest`s objective is to create a Lightweight Infrastructure for Global Heterogeneous Trust management in support of an open Ecosystem of Stakeholders and Trust schemes. We show supported scenarios, motivate the necessity for global trust management and discuss related work. Then we present how LIGHTest addresses the challenges of global trust management, its reference architecture and the pilot applications.
- KonferenzbeitragTLS-Federation – a Secure and Relying-Party-Friendly Approach for Federated Identity Management(BIOSIG 2008: Biometrics and Electronic Signatures, 2008) Bruegger, Bud P.; Hühnlein, Detlef; Schwenk, JörgFederated Single-Sign-On using web browsers as User Agents becomes increasingly important. However, current proposals require substantial changes in the implementation of the Relying-Party, and concentrate on functionality rather than security against real-world attacks like Cross Site Scripting (XSS) and Pharming. We therefore propose a different approach based on Transport Layer Security (TLS), which is implemented in any web browser and web server, and which is immune against all currently known attacks.
- KonferenzbeitragTowards a decentralized identity management ecosystem for Europe and beyond(2016) Bruegger, Bud P.; Roßnagel, HeikoThe objective of the FutureID project was to build an identity management infrastructure for Europe in support of a single market of online services. This requires the availability and large-scale use of trusted and secure identities that replace current password credentials. In the FutureID concept the number and topology of intermediary components is not fixed and static. FutureID rather adopts an ecosystem-approach by creating a free market for identity intermediation services. This provides for the flexibility to: scale according to need, adapt to market needs, support special needs of market sectors including niche markets, adapt to established contractual relationships, and easily adapt to various possible business models that render the infrastructure sustainable. This paper summarizes the results from the 3 year EU-funded project.
- KonferenzbeitragTowards global eID-Interoperability(BIOSIG 2007: biometrics and electronic signatures, 2007) Bruegger, Bud P.; Hühnlein, Detlef; Kreutzer, MichaelThe ability to use electronic identities (eID) anytime and anywhere is a prerequisite for a dynamic information society. However, there are still many obstacles which prevent the secure, privacy-friendly and ubiquitous use of electronic identities in an interoperable manner. This paper introduces the vision of global eID-Interoperability, describes the state of the art for electronic identities, highlights related challenges and sketches possible steps towards global eID-Interoperability.