Logo des Repositoriums
 

Towards Privacy-Preserving and User-Centric Identity Management as a Service

dc.contributor.authorDash, Pritam
dc.contributor.authorRabensteiner, Christof
dc.contributor.authorHörandner, Felix
dc.contributor.authorRoth, Simon
dc.contributor.editorFritsch, Lothar
dc.contributor.editorRoßnagel, Heiko
dc.contributor.editorHühnlein, Detlef
dc.date.accessioned2017-08-28T23:20:01Z
dc.date.available2017-08-28T23:20:01Z
dc.date.issued2017
dc.description.abstractIdentification, authentication and the exchange of users’ identity information are key factors in protecting access to online services. Especially cost-effectiveness is a considerable incentive to move identity management models into the public cloud. As cloud environments are not fully trusted, the users’ sensitive attributes must not be stored or transmitted in plain, while it still has to be possible to share them. One approach is to employ proxy re-encryption, which enables the identity provider to transform a user’s encrypted attributes into ciphertext for an authorized service provider. However, for adoption, the user’s perspective must not be neglected. In this paper, we propose a user-friendly and user-centric identity management solution that employs cryptographic mechanisms to protect the users’ privacy and keep them in control of the data sharing process. We integrate proxy re-encryption into the widely-adopted OpenID Connect protocol to achieve end-to-end confidentiality. To make this concept user-friendly, we introduce a mobile app that handles the involved cryptographic operations which rely on keys securely stored in a trusted execution environment.en
dc.identifier.isbn978-3-88579-671-8
dc.identifier.pissn1617-5468
dc.language.isoen
dc.publisherGesellschaft für Informatik, Bonn
dc.relation.ispartofOpen Identity Summit 2017
dc.relation.ispartofseriesLecture Notes in Informatics (LNI) - Proceedings, Volume P-277
dc.subjectIdentity management
dc.subjectOpenID Connect
dc.subjectCloud Computing
dc.subjectMobile Application
dc.subjectProxy Re-Encryption
dc.subjectTrusted Execution Environment
dc.titleTowards Privacy-Preserving and User-Centric Identity Management as a Serviceen
gi.citation.endPage116
gi.citation.startPage105
gi.conference.date5.-6. October 2017
gi.conference.locationKarlstad, Sweden
gi.conference.sessiontitleRegular Research Papers

Dateien

Originalbündel
1 - 1 von 1
Lade...
Vorschaubild
Name:
proceedings-08.pdf
Größe:
769.46 KB
Format:
Adobe Portable Document Format