Identity-Enriched Session Management
نویسندگان
چکیده
The Internet has become an important part in every day life for many users. It has changed from an instrument to exchange and link scientific data to an economical and social place, where people spend their working and spare time. But the underlying technology has not adapted to the newly risen demands of communication and collaboration. The user is almost isolated and anonymous when using the web, while still leaving traces threatening their data security and privacy. There is no global concept of "digital citizens" modern collaboration applications could base on. To overcome this lack, this paper introduces an approach of identity enriched session management. It offers the possibility to integrate different (and distinguishable!) users into meaningful relationships. This paper presents the essential concepts of identity enriched sessions and a prototypical realisation which have been developed in the "open net environment for Citizens" (onefC) project.
منابع مشابه
Formal Analysis of Information Card Federated Identity - Management Protocol ∗
Information Card (InfoCard) is a usercentric identity management metasystem. It has been accepted as a standard of OASIS Identity Metasystem Interoperability Technical Committee. However, there is currently a lack of security analysis to InfoCard protocol, especially, with formal methods. In this paper, we accommodate such a requirement by analyzing security properties of InfoCard protocol adop...
متن کاملEvaluation of OpenID-Based Double-Factor Authentication for Preventing Session Hijacking in Web Applications
Web users often find it difficult to manage their identities (IDs) due to large number of web applications. An effective and convenient ID management system is needed to handle the problem. OpenID is one of the better solutions to manage this task on heterogeneous web applications due to its lightweight and simple protocol. However, it is quite vulnerable to session hijacking, resulting in iden...
متن کاملCitation for published version Chadwick , David W and Inman , George ( 2013 ) The Trusted Attribute Aggregation Service ( TAAS ) - Providing
We describe a web based federated identity management system loosely based on the user centric Windows CardSpace model. Unlike CardSpace that relies on a fat desktop client (the identity selector) in which the user can only select a single card per session, our model uses a standard web browser with a simple plugin that connects to a trusted attribute aggregation web service (TAAS). TAAS suppor...
متن کاملMIKEY-IBAKE: Identity-Based Authenticated Key Exchange (IBAKE) Mode of Key Distribution in Multimedia Internet KEYing (MIKEY)
This document describes a key management protocol variant for the Multimedia Internet KEYing (MIKEY) protocol that relies on a trusted key management service. In particular, this variant utilizes Identity-Based Authenticated Key Exchange (IBAKE) framework that allows the participating clients to perform mutual authentication and derive a session key in an asymmetric Identity-Based Encryption (I...
متن کاملA Self-certified Mechanism for Mutual Authentication and Key Exchange in Roaming Services
In this paper, a novel mutual authentication and key exchange protocol based on self-certified mechanism is proposed for roaming services in the global mobility network (GLOMONET). The main new features of the proposed protocol include identity anonymity, one-time session key renewal, and distributed security management scheme. Identity anonymity protects location privacy of mobile users in the...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2004