Biometric Authentication as a service for enterprise identity management deployment: A data protection perspective

Proceedings of the 2011 6th International Conference on Availability, Reliability and Security, ARES 2011

Volumn , Issue , 2011, Pages 43-50

  Senk, Christian ^a   Dotzler, Florian ^a  

^a UNIVERSITY OF REGENSBURG   (Germany)

Author keywords

Authentication; Biometrics; Cloud computing; Data protection; Identity management; Keystroke dynamics; Privacy; Security; Software as a service

Indexed keywords

DATA PROTECTION; IDENTITY MANAGEMENT; KEYSTROKE DYNAMICS; SECURITY; SOFTWARE-AS-A-SERVICE;

AUTHENTICATION; BIOMETRICS; CLOUD COMPUTING; SOFTWARE RELIABILITY; USER INTERFACES;

SECURITY OF DATA;

EID: 80455173609     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ARES.2011.14     Document Type: Conference Paper

References (39)

1. I. Bakdi, "Benutzerauthentifizierung anhand des Tippverhaltens bei Verwendung fester Eingabetexte," Universitätsverlag Regensburg, 2007.
2. D. Bartmann, I. Bakdi and M. Achatz, "On the design of an authentication system based on keystroke dynamics using a predefined input text," International Journal of Information Security and Privacy, vol. 2, pp. 1-12, 2007.
3. F. Bergando, D. Gunetti and C. Picardi, "User authentication through keystroke dynamics," ACM TISSEC, vol. 4, pp. 367-397, 2002.
4. E. Bertino, L. Martino, F. Paci and A. Squicciarrini, "Security for web services and service-oriented architectures," Springer, 2010.
5. Biometric Evaluation Methodology Working Group, "Biometric evaluation methodology," 2002. http://www.cesg.gov.uk/policy-technologies/ biometrics/media/bem-10.pdf. Accessed 24 July 2010.
6. Bitkom, "BITKOM-Umfrage zeigt Offenheit für Biometrie im Betrieb," 2010. http://www.bitkom.org/de/presse/8477-62477.aspx. Accessed 24 July 2010.
7. Bundesamt für Sicherheit in der Informationstechnik, "Untersuchung der Leistungsfähigkeit von biometrischen Verifikationssystemen - BioP II," 2005.
8. Bundesamt für Sicherheit in der Informationstechnik, "SOA-Security-Kompendium. Sicherheit in Service-orientierten Architekturen. Version 2.0," 2010.
9. P. Buxmann, P. and T. Hess, "Software as a Service," Wirtschaftsinformatik, vol. 6, pp. 500-503, 2008.
10. W. Chang, "Keystroke biometric system using wavelets," in ICB 2006, D. Zhang and A. K. Jain, eds. Springer, pp. 647-654, 2006.
11. R. Dierstein, "Sicherheit in der Informationstechnik. Der Begriff ITSicherheit," Informatik Spektrum, vol. 4, pp. 343-353, 2004.
12. F. Dotzler, "Datenschutzrechtliche Aspekte und der Einsatz biometrischer Systeme in Unternehmen: Eine exemplarische Betrachtung von Systemen auf der Grundlage des biometrischen Merkmals Tippverhalten," Kölner Wissenschaftsverlag, 2010.
13. C. Eckert, "IT-Sicherheit. Konzepte, Verfahren, Protokolle," Oldenbourg, 2009.
14. J. Eckhardt, "Software as a Service (SaaS): Rechtliche Rahmenbedingungen," in Software as a Service, C. Köhler-Schulte, ed. Springer, pp. 114-139, 2009.
15. J. Fenn, "Hype Cycle for Emerging Technologies" 2010. http://community.mis.temple.edu/mis2501sec001s11/files/2011/01/ Hype-Cycle-for-Emerging-Technologies-2010.pdf. Accessed 30 May 2011.
16. Forrester Consulting, "Authentication-as-a-service: a commissioned study conducted by Forrester Consulting on behalf of VeriSign," 2009. http://www.verisign.co.uk/static/auth-as-a-service.pdf. Accessed 24 July 2010.
17. G. von Graevenitz, "Erfolgskriterien und Absatzchancen biometrischer Identifikationsverfahren," Lit, 2006.
18. D. Gunetti and C. Picardi, "Keystroke Analysis of Free Text," ACM TISSEC, vol. 3, pp. 312-347, 2005. (Pubitemid 43906388)
19. D. Gunetti, C. Picardi, C. and G. Ruffo, "Keystroke analysis of different languages: a case study," In Proc. of IDA (IDA 2005), Springer, pp. 133-144, 2005.
20. M. Hafner, M. Mukhtiar and R. Breu, "SeAAS - A reference architecture for security services in SOA," J. UCS, vol. 15, pp. 2916-2936, 2009.
21. S. Hocquet, J. Ramel and H. Cardot, "User Classification for Keystroke Dynamics Authentication," in: ICB 2007, S. W. Lee and S. Z. Li, eds. Springer, pp. 531-539, 2007.
22. W. Hommel, "Architektur-und Werkzeugkonzepte für föderiertes Identitäts-Management," Dr. Hut, 2007.
23. P. Hoonakker, N. Bornoe and P. Carayon, "Password authentication from a human factors perspective: results of a survey among endusers," Human Factors and Ergonomics Society 54rd Annual Meeting, pp. 459-463, 2009.
24. International Biometric Group (IBG), "State of Biometric Standards," IBG, 2009.
25. A. Jain and A. Ross, "Introduction to Biometric Recognition," in Handbook of Biometrics, A. Jain, P. Flynn and A. Ross, eds. Springer, pp. 1-22, 2007.
26. R. Janakiraman and T. Sim, "Keystroke Dynamics in a General Setting," in ICB 2007, S. W. Lee and S. Z. Li, eds. Springer, pp. 584-593, 2007.
27. H. La and S. Kim, "A systematic process for developing high quality SaaS cloud services," in CloudCom 2009, M. G. Jaatun and C Rong, eds. Springer, pp. 278-289, 2009.
28. T. Mather, S. Kumaraswamy and S. Latif, "Cloud security and privacy," O'Reilly, 2009.
29. C. Melzer-Andelberg, "Identity Management. Eine Einführung. Grundlagen, Technik, wirtschaftlicher Nutzen," Dpunkt, 2008.
30. M. Olden, "Biometric authentication and authorisation infrastructures," Dissertation. Universität Regensburg, 2010.
31. H. Reiser, "Ein Framework für föderiertes Sicherheitsmanagement. Habilitation," LMU München, 2008.
32. J. Rittinghouse and J. Ransome, "Cloud computing: implementation, management, and security, " CRC, 2010.
33. C. Senk, C. 2010. "Securing Inter-organizational Workflows in Highly Flexible Environments Through Biometrics," Proc. Of. 18th European Conference on Information Systems (ECIS 2010), 2010.
34. K. Sung and S. Cho, "GA SVM wrapper ensemble for keystroke dynamics authentication,". in ICB 2006, D. Zhang and A. K. Jain, eds. Springer, pp. 654-660, 2006. (Pubitemid 43856430)
35. I. Thomas, M. Menzel, and C. Meinel, "Using quantified trust levels to describe authentication requirements in federated identity management," Proceedings of the 2008 ACM Workshop on Secure Web Services. October 31, 2008, Alexandria, Virginia, E. Damiani and S. Proctor, Eds. ACM Press, pp. 71-80, 2008.
36. J. Vacca, J., "Biometric Technologies and Verification Systems," Elsevier, 2007.
37. M. Weber, "Akzeptanz biometrischer Authentifizierungssysteme," Dissertation Universität Mannheim, 2008.
38. T. Weichert, "Cloud Computing und Datenschutz," DuD, vol. 10, 2010.
39. S. Ye, Y. Luo, J. Zhao and S. C. Cheung, "Anonymous biometric access control," EURASIP Journal on Information Security, vol. 2009, 2009.