Extension for information card systems to achieve User-Controlled Automated Identity Delegation
Authors/Editors
Research Areas
- Information (Communication and Information Technologies)
- Management (Human and social sciences)
- Mathematical Sciences (Natural science and engineering)
- Natural science and engineering (Areas of application)
- Natural Sciences (Natural science and engineering)
- Physical Education and Rehabilitation (Health sciences)
Publication Details
Output type: Journal article
Author list: Hoellrigl T, Kuehner H, Dinger J, Hartenstein H
Publisher: Institute of Electrical and Electronics Engineers
Publication year: 2011
Journal: IEEE Transactions on Information Theory (0018-9448)
Volume number: 4
Issue number: 1
Start page: 1188
End page: 1191
Number of pages: 4
ISSN: 0018-9448
eISSN: 1557-9654
Unpaywall Data
Open access status: green
Full text URL: http://dsn.tm.kit.edu/publications/files/209/80671-Manfed-Hoellrigl.pdf
Abstract
The growing number of IT services in distributed systems is directly related to the security and privacy of personal data. User-centric federated identity management (FIM) attends to the privacy issue by enabling users to approve each data dissemination between the providers of identity-related information, so-called identity providers (IdPs), and the consumers of this information, the service providers (SPs). Furthermore, user-centric FIM tries to improve security and usability by providing users with a consistent digital-identity experience using so-called information cards (InfoCards). The InfoCard-based approach can help to improve usability, privacy and security, however, the approach is limited to front-channel communication and requires that each data exchange is manually approved by the user. A back-channel communication might be required in scenarios, in which an IdP wants to notify SPs about e.g. a deactivation of a user. In [3] we proposed an approach, named User-Controlled Automated Identity Delegation, that allows a back-channel communication by automating user approval based on delegation. In this paper we demonstrate the practicality of the approach in a real-world scenario by providing a performance evaluation conducted on a prototypical implementation. © 2011 IEEE.
Keywords
No matching items found.
Documents
No matching items found.
