Privacy by Sustainable Identity Management Enablers

Koschinat, Sascha; Bal, Gökhan; Weber, C.; Rannenberg, Kai

doi:10.1007/978-3-642-20317-6_23

Cited by 3 publications

(4 citation statements)

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, we have demonstrated that the use of the identifier select in combination with the local OP creates a higher level of privacy. This concept can be seen as an IdM Enabler as described in [9], allowing OpenID to be used by MNOs to offer new application services, which need elevated security and rely on trusted identity information. We have implemented the local OP and the OPSF and successfully demonstrated login to different RP websites without any modification to their OpenID implementation.…”

Section: Discussionmentioning

confidence: 99%

“…Building on their customer relationships and an existing infrastructure for authentication and communication, MNOs are a prime candidate to monetize this data by providing IdM services to third-party service providers [8,9]. They are in possession of IdM data assets , i.e., they can provide user attributes such as address, name, etc.…”

Section: Role Of Mobile Network Operatorsmentioning

confidence: 99%

See 1 more Smart Citation

Smart OpenID: A Smart Card Based OpenID Protocol

Leicher¹,

Schmidt²,

Shah

2012

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

Abstract. OpenID is a lightweight, easy to implement and deploy approach to Single Sign-On (SSO) and Identity Management (IdM), and has great potential for large scale user adoption especially for mobile applications. At the same time, Mobile Network Operators are increasingly interested in leveraging their existing infrastructure and assets for SSO and IdM. In this paper, we present the concept of Smart OpenID, an enhancement to OpenID which moves part of the OpenID authentication server functionality to the smart card of the user's device. This seamless, OpenID-conformant protocol allows for scaling security properties, and generally improves the security of OpenID by avoiding the need to send user credentials over the Internet and thus avoid phishing attacks. We also describe our implementation of the Smart OpenID protocol based on an Android phone, which interacts with OpenID-enabled web services.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Role Of Mobile Network Operatorsmentioning

confidence: 99%

Smart OpenID: A Smart Card Based OpenID Protocol

Leicher¹,

Schmidt²,

Shah

2012

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

show abstract

“…Other fundamental work on business models was done by Wirtz and Osterwalder and Pigneur [22,29,30]. Furthermore, the application of business model approaches to anonymization and identity management services is considered [17][18][19]28].…”

Section: Related Workmentioning

confidence: 99%

Integrating Privacy-Enhancing Technologies into the Internet Infrastructure

Harborth,

Herrmann,

Köpsell

et al. 2017

Preprint

Self Cite

View full text Add to dashboard Cite

The AN.ON-Next project aims to integrate privacy-enhancing technologies into the internet's infrastructure and establish them in the consumer mass market. The technologies in focus include a basis protection at internet service provider level, an improved overlay network-based protection and a concept for privacy protection in the emerging 5G mobile network. A crucial success factor will be the viable adjustment and development of standards, business models and pricing strategies for those new technologies.

show abstract

“…Identities are represented by different accounts that the user may have at different identity providers. Koschinat, Rannenberg, and Bal (2009) commented that the Liberty Alliance framework has a complex interaction scheme, which requires the introduction of multiple services at different entities which could lead to problems in the adoption by users. Furthermore, the use of standard SOAP and XML structures increases interoperability but requires other, additional entities are also compatible with Liberty Alliance framework.…”

Section: Interoperabilitymentioning

confidence: 99%

A Consolidated Process Model for Identity Management

Watters

Chen

2012

Information Resources Management Journal

View full text Add to dashboard Cite

Recently, identity management has gained increasing attention from both enterprises and government organisations, in terms of security, privacy, and trust. A considerable number of theories and techniques have been developed to deal with identity management issues within and between organisations. In this paper, the authors reviewed, assessed, and consolidated the research and development activities of identity management in 14 privately and publicly funded organisations. Furthermore, the authors developed a taxonomy to characterise and classify these identity management frameworks into two categories: processes and technologies. The authors then studied these frameworks by systematically reviewing the whole lifecycle of an identity management framework, including actors, roles, security, privacy, trust, interoperability, and federation. This paper aims to provide the reader with the state of art of existing identity management frameworks and a good understanding of the research issues and progress in this area.

show abstract

Privacy by Sustainable Identity Management Enablers

Cited by 3 publications

References 0 publications

Smart OpenID: A Smart Card Based OpenID Protocol

Smart OpenID: A Smart Card Based OpenID Protocol

Integrating Privacy-Enhancing Technologies into the Internet Infrastructure

A Consolidated Process Model for Identity Management

Contact Info

Product

Resources

About