Abstract
Identity management is a rather general concept that covers technologies, policies and procedures for recognising and authenticating entities in ICT environments. Current identity management solutions often have inadequate usability and scalability, or they provide inadequate authentication assurance. This article describes local user-centric identity management as an approach to providing scalable, secure and user friendly identity management. This approach is based on placing technology for identity management on the user side, instead of on the server side or in the cloud. This approach strengthens authentication assurance, improves usability, minimizes trust requirements, and has the advantage that trusted online interaction can be upheld even in the presence of malware infection in client platforms. More specifically, our approach is based on using an OffPAD (Offline Personal Authentication Device) as a trusted device to support the different forms of authentication that are necessary for trusted interactions. A prototype OffPAD has been implemented and tested in user experiments.
Highlights
Introduction and backgroundTrusted interaction between users and service providers in online environments depends on robust mutual authentication
We describe our method of combining the OffPAD with extended HTTP Digest Access Authentication
Security analysis of the OffPAD The OffPAD is considered as a trusted device, which means that it is assumed to provide the authentication services described in the sections above, 1) cognitive server authentication, 2) user authentication with never present cleartext passwords, and 3) cognitive data authentication
Summary
Introduction and backgroundTrusted interaction between users and service providers in online environments depends on robust mutual authentication. This article describes Lucidman as a principle for identity management based on the OffPAD to support secure and user friendly mutual entity authentication as well as data authentication. Lucidman is aimed at providing adequate security assurance and usability for the management of both user identities and server identities, with the goal of enabling trusted interaction between online entities.
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
