An Innovative Solution for Cloud Computing Authentication: Grids of EAP-TLS Smart Cards

Urien, Pascal; Marie, Estelle; Kiennert, Christophe

doi:10.1109/icdt.2010.12

Cited by 23 publications

(6 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, there are already research initiatives proposing identity management solutions that are heavily dependent on secure components and strong endto-end authentication, by relying and adapting protocols such as SSL and EAP-TLS [10]. The idea is that the user authentication can be done directly between the user secure element and secure elements on the server side (IdP), using end-to-end EAP-TLS communications, which can be way of eliminating vulnerabilities such as phishing attacks.…”

Section: B Identity Managementmentioning

confidence: 99%

Increasing the Resilience and Trustworthiness of OpenID Identity Providers for Future Networks and Services

Kreutz¹,

Feitosa²,

Cunha³

et al. 2014

2014 Ninth International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

We introduce a set of tools and techniques for increasing the resilience and trustworthiness of identity providers (IdPs) based on OpenID. To this purpose we propose an architecture of specialized components capable of fulfilling the essential requirements for ensuring high availability, integrity and higher confidentiality guarantees for sensitive data and operations. Additionally, we also discuss how trusted components (e.g., TPMs, smart cards) can be used to provide remote attestation on the client and server side, i.e., how to measure the trustworthiness of the system. The proposed solution outperforms related work in different aspects, such as countermeasures for solving different security issues, throughput, and by tolerating arbitrary faults without compromising the system operations. We evaluate the system behavior under different circumstances, such as continuous faults and attacks. Furthermore, the first performance evaluations show that the system is capable of supporting environments with thousands of users.

show abstract

Section: B Identity Managementmentioning

confidence: 99%

Increasing the Resilience and Trustworthiness of OpenID Identity Providers for Future Networks and Services

Kreutz¹,

Feitosa²,

Cunha³

et al. 2014

2014 Ninth International Conference on Availability, Reliability and Security

View full text Add to dashboard Cite

show abstract

“…Both of these protocols can be easily modified to provide the trust assurance (requiring Note: Above mentioned measurement values for SSL are taken from [39], TLS from [40], [41] and Kerberos from [42].…”

Section: Revisiting the Requirements And Goalsmentioning

confidence: 99%

A Privacy Preserving Application Acquisition Protocol

Akram¹,

Markantonakis²,

Mayes³

2012

2012 IEEE 11th International Conference on Trust, Security and Privacy in Computing and Communications

View full text Add to dashboard Cite

In the smart card industry, the application acquisition process involves the card issuers and application providers. During this process, the respective card issuer reveals the identity of the smart card user to the individual application providers. In certain application scenarios it might be necessary (e.g. banking and identity applications). However, with introduction of the Trusted Service Manager (TSM) architecture there might be valid cases where revealing the card user's identity is not necessary. At the moment, the secure channel protocols for traditional smart card architecture including the TSM does not preserve the privacy of the card users. In this paper, we propose a secure and trusted channel protocol that provide such feature along with satisfying the requirements of an open and dynamic environment referred as User Centric Smart Card Ownership Model (UCOM). A comparison is provided between the proposed protocol and selected smart card protocols. In addition, we provide an informal analysis along with mechanical formal analysis using CasperFDR. Finally, we provide the test implementation and performance results.

show abstract

“…Urien et al, [24] proposed a SSL smart card authentication scheme that works in remote authentication dial in user service (RADIUS) protocol environment. Choudhry et al, [25] proposed a two factor smart card based authentication scheme.…”

Section: A Traditional Proposed Techniquesmentioning

confidence: 99%

Analysis of Security and Privacy in Public Cloud Environment

Raja

Razak

2015

2015 International Conference on Cloud Computing (ICCC)

View full text Add to dashboard Cite

Computing as a utility, is a long held dream that comes true in the form of evolutional paradigm known as Cloud computing. It provides a gigantic storage with ubiquitous platform access and minimal hardware requirement at user end. Ultimate features and multidisciplinary utilization made its future incontestable, and equally attractive in academia and industry. With the immense growth in the area is proportionally rising the security concern. Cloud user can really relish the maximum advantage of cloud computing if the security and privacy concerns that inherit with storing sensitive and personal identifiable information (PII) in cloud are categorically addressed. To provide flexible user authentication and preserve user privacy digital identity management services are vital. Anonymous authentication, revocation, unlinkability and delegation of authentication for multiple cloud services are obligatory user privacy parameters that require to be addressed through identity management services in cloud. In this paper we analyzed the existing work and emphasized the requirement of user privacy preserving identity management system for public cloud environment.

show abstract

An Innovative Solution for Cloud Computing Authentication: Grids of EAP-TLS Smart Cards

Cited by 23 publications

References 10 publications

Increasing the Resilience and Trustworthiness of OpenID Identity Providers for Future Networks and Services

Increasing the Resilience and Trustworthiness of OpenID Identity Providers for Future Networks and Services

A Privacy Preserving Application Acquisition Protocol

Analysis of Security and Privacy in Public Cloud Environment

Contact Info

Product

Resources

About