User centricity: A taxonomy and open issues

Journal of Computer Security

Volumn 15, Issue 4, 2007, Pages 491-525

  Bhargav Spantzel, Abhilasha ^a   Camenisch, Jan ^b   Gross, Thomas ^b   Sommer, Dieter ^b  

^a Purdue University   (United States)

^b IBM RESEARCH ZURICH   (Switzerland)

Author keywords

Identity management; Privacy; Security

Indexed keywords

COMPUTER ARCHITECTURE; DATA PRIVACY; FUZZY CONTROL;

IDENTITY MANAGEMENT; USER-CENTRIC SYSTEMS;

INFORMATION MANAGEMENT;

EID: 34249874298     PISSN: 0926227X     EISSN: None     Source Type: Journal    
DOI: None     Document Type: Article

References (50)

1. P. Ashley, S. Hada, G. Karjoth, C. Powers and M. Schunter, Enterprise Privacy Authorization Language (EPAL 1.1), 2003.
2. C. Bettini, S. Jajodia, X.S. Wang and D. Wijesekera, Provisions and obligations in policy rule management. J. Netw. Syst. Manage. 11(3) (2003), 351-372.
3. C. Bettini, S. Jajodia, X.S. Wang and D. Wijesekera, Provisions and obligations in policy rule management. J. Netw. Syst. Manage. 11(3) (2003), 351-372.
4. A. Bhargav-Spantzel, A. Squicciarini and E. Bertino, Privacy preserving multi-factor authentication with biometrics, in: DIM'06: Proceedings of the Second ACM Workshop on Digital Identity Management, ACM Press, New York, NY, USA, 2006, pp. 63-72.
5. M. Blaze, J. Feigenbaum and A.D. Keromytis, KeyNote: Trust management for public-key infrastructures (position paper), Lecture Notes in Computer Science 1550 (1999), 59-63.
6. M. Blaze, J. Feigenbaum and J. Lacy, Decentralized trust management. Technical Report 96-17, 28, 1996.
7. P. Bonatti, S. De Capitani di Vimercati and P. Samarati, An algebra for composing access control policies, ACM Trans. Inf. Syst. Secur. 5(1) (2002), 1-35.
8. S. Brands, Rethinking public key infrastructure and digital certificates - building in privacy, PhD thesis, Eindhoven Institute of Technology, Eindhoven, The Netherlands, 1999.
9. E. Brickell, J. Camenisch and L. Chen, Direct anonymous attestation, in: CCS'04: Proceedings of the 11th ACM Conference on Computer and Communications Security, ACM Press, New York, NY, USA, 2004, pp. 132-145.
10. J. Camenisch, Protecting (anonymous) credentials with the trusted computing group's trusted platform modules v 1.2, in: Proceedings of the 21st IFIP International Information Security Conference (SEC 2006), 2006.
11. J. Camenisch and A. Lysyanskaya, Efficient non-transferable anonymous multi-show credential system with optional anonymity revocation, Technical Report Research Report RZ 3295, IBM Research Division, November 2000.
12. J. Camenisch and A. Lysyanskaya, Efficient non-transferable anonymous multi-show credential system with optional anonymity revocation, in: Advances in Cryptology - EUROCRYPT 2001, Birgit Pfitzmann, ed., LNCS, vol. 2045, Springer-Verlag, 2001, pp. 93-118.
13. J. Camenisch and A. Lysyanskaya, Dynamic accumulators and application to efficient revocation of anonymous credentials, in: Advances in Cryptology - CRYPTO 2002, Moti Yung, ed., LNCS, vol. 2442, Springer-Verlag, 2002, pp. 61-76.
14. J. Camenisch and A. Lysyanskaya, Signature schemes and anonymous credentials from bilinear maps, in: Advances in Cryptology - CRYPTO 2004, LNCS, vol. 3152, Springer-Verlag, 2004, pp. 56-72.
15. J. Camenisch and V. Shoup, Practical verifiable encryption and decryption of discrete logarithms, in: Advances in Cryptology - CRYPTO 2003, Dan Boneh, ed., LNCS, 2003.
16. J. Camenisch, D. Sommer and R. Zimmermann, A general certification framework with applications to privacy-enhancing certificate infrastructures, in: Proceedings of the 21st IFIP International Information Security Conference, 2006.
17. K. Cameron, Laws of identity, 5/12/2005.
18. CCITT (Consultative Committee on International Telegraphy and Telephony), Recommendation X.509: The Directory - Authentication Framework, 1988.
19. M. Chase and A. Lysyanskaya, On signatures of knowledge, Cryptology ePrint Archive, Report 2006/184, 2006. http://eprint.iacr.org/
20. L. Cranor, M. Langheinrich, M. Marchiori, M. Presler-Marshall and J. Reagle, The Platform for Privacy Preferences 1.0 (P3P1.0) Specification.
21. F. Design, Introduction to usability, 2005, http://www.usabilityfirst. com/intro/index.txl
22. R. Dingledine, N. Mathewson and P. Syverson, Tor: The second-generation onion router, in: Proceedings of the 13th USENIX Security Symposium, August 2004.
23. European Parliament, Directive 95/46/ec of the European Parliament and the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, Officiai Journal of the European Communities, 1995.
24. A. Fiat and A. Shamir, How to prove yourself: Practical solutions to identification and signature problems, in: Advances in Cryptology - CRYPTO '86, A.M. Odlyzko, ed., LNCS, vol. 263, Springer-Verlag, 1987, pp. 186-194.
25. R.S. Hall, D. Heimbigner and A.L. Wolf, A cooperative approach to support software deployment using the software dock, in: ICSE'99: Proceedings of the 21st International Conference on Software Engineering, IEEE Computer Society Press, Los Alamitos, CA, USA, 1999, pp. 174-183.
26. Higgins Trust Framework, 2006, http://www.eclipse.org/higgins/
27. R. Housley, W. Polk, W. Ford and D. Solo, RFC 3280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile, April 2002. Status: Informational.
28. Identity-Management, Liberty alliance project, http://www.projectliberty. org
29. Internet2, Shibboleth, http://shibboleth.internet2.edu
30. ISO, Annex C - the RSA public key cryptosystem, in: ISO/IEC 9594-8:1989(E), Part of ISO/IEC X.509 Draft Standard, 1989, no note.
31. J. Merrels, SXIP Identity, DIX: Digital Identity Exchange Protocol, Internet Draft, March 2006.
32. C. Kaler and A. Nadalin, Web services federation language, 2003.
33. C. Kaler and A. Nadalin, Ws-federation: Passive requestor profile, 2003. Available from: ftp://www6.software.ibm.com/software/developer/library/ws- fedpass.pdf
34. N. Li, W.H. Winsborough and J.C. Mitchell, Distributed credential chain discovery in trust management: extended abstract, in: ACM Conference on Computer and Communications Security, 2001, pp. 156-165.
35. Liberty Alliance, Liberty alliance id-ff 1.2 specifications, Available at http://www.projectliberty.org.
36. C. Lüer and A. van der Hoek, Jploy: User-centric deployment support in a component platform.
37. A. Lysyanskaya, R. Rivest, A. Sahai and S. Wolf, Pseudonym systems, in: Selected Areas in Cryptography, Howard Heys and Carlisle Adams, eds, LNCS, vol. 1758, Springer-Verlag, 1999.
38. Microsoft, A technical reference for InfoCard v1.0 in windows, 2005.
39. S.J. Murdoch, Hot or not: Revealing hidden services by their clock skew, in: CCS'06: Proceedings of the 13th ACM Conference on Computer and Communications Security, ACM Press, New York, NY, USA, 2006, pp. 27-36.
40. National Institute for Standards and Technology (NIST), Digital signature standard (dss), 2000.
41. OASIS Standard, Security assertion markup language (SAML) V2.0, 2005.
42. OECD, OECD guidelines on the protection of privacy and transborder flows of personal data, 1980.
43. OpenID, http://openid.net
44. A. Pfitzmann and M. Hansen, Anonymity, unlinkability, unobservability, pseudonymity, and identity management - a consolidated proposal for terminology, May 2006.
45. A. Pfitzmann and M. Köhntopp, Anonymity, unobservability, and pseudonymity - a proposal for terminology.
46. J. Postel, DoD standard Internet Protocol. RFC 760, January 1980. Obsoleted by RFC 791, updated by RFC 777.
47. PRIME Consortium, Privacy and Identity Management for Europe (PRIME), Web site at www.prime-project.eu
48. JAP Anon Proxy, Anonymity and privacy, 2006, http://anon.inf.tu-dresden. de
49. R. Rivest, A. Shamir and L. Adleman, A method for obtaining digital signatures and public-key cryptosystems, Communications of the ACM 21(2) (1978), 120-126.
50. IBM Microsoft RSA VeriSign, Web Services Federation Language (WS-Federation), version 1.0. July 8 2003, http://msdn.microsoft.com/library/ default.asp?urls/library/en-us/dnglobspec/html/wsfederation.asp