[show abstract][hide abstract] ABSTRACT: We develop a series of formal administrative models for recently proposed informal requirements for community cyber security information sharing . Traditional enterprise-oriented administrative models are not suitable for the highly dynamic and distributed nature of this multi-organization application domain. Hence, new administrative models with robust intuitive grounding and rigorous mathematical foundations are required. We show that the role-based trust management (RT) framework ,  is suitable in large measure to address the informal scenarios of , with one essential extension to enable self-assignment of users to selected roles. Applications of extended forms of RT, as well as its limitations, are also considered.
7th International Conference on Collaborative Computing: Networking, Applications and Worksharing, CollaborateCom 2011, Orlando, FL, USA, 15-18 October, 2011; 01/2011
[show abstract][hide abstract] ABSTRACT: The Future Internet architecture, based on the integration of existing networks and services, and the addition of many new devices like sensors, face a series of important technical challenges, one of them being the management of diverse user identities. The diversity and plethora of the services and procedures affected by the unassociated existing user identities stress the necessity for a holistic solution to deal with the different aspects of the identity management problem. Existing efforts propose limited identity solutions that can only be applied within well defined boundaries and cannot extend their functionality to support converged network environments and service operations across different administrative domains. This paper presents a Dynamic Identity Mapping Association N' Discovery System (DIMANDS) as a holistic identity solution for large scale heterogeneous network environments. This solution offers cross federation identity services and is based on a universal discovery mechanism which spans across different networks, layers and federations. It is also empowered with a unified trust framework which can collect and process diverse trust information to provide trust decisions on a widely accepted format.
Principles, Systems and Applications of IP Telecommunications. Fourth International Conference, IPTComm 2010, Munich, Germany, August 2-4, 2010. Proceedings; 01/2010
[show abstract][hide abstract] ABSTRACT: In large scale disaster management operations with hundreds and thousands of victims, fast access to distributed heterogeneous information of different organizations is required for efficient and reliable dispensation of rescue operations. The development of such emergency systems poses a big challenge, if requirements such as performance, security and reliability have to be fulfilled simultaneously. In this paper, we propose a novel Role integrated Certificate-based Single Sign-On (RC-SSO) solution for fast mobile access between first responders at the incident scene and their distributed organizations. Beside the illustration of operational details of the RC-SSO solution, we validate our concept by implementing an experimental prototype as proof-of-concept for a limited number of users. Furthermore, we design a simulation model to determine the performance boundary of our solution under high user density. In contrast to other related emergency system solutions, our approach does not employ a so-called Identity Provider (IDP) for authentication and authorization process and thus reduces additional communication cost as well. A comparison of our proposed solution to an IDP based classical single sign-on counterparts i.e. Security Assertion Markup Language (SAML) shows that our RC-SSO outperforms these by up to 80%. In addition RC-SSO ensures high data security level with negligible overhead compared to the standard security protocol SSL/TLS.
Communications (ICC), 2011 IEEE International Conference on; 07/2011
Data provided are for informational purposes only. Although carefully collected, accuracy cannot be guaranteed. The impact factor represents a rough estimation of the journal's impact factor and does not reflect the actual current impact factor. Publisher conditions are provided by RoMEO. Differing provisions from the publisher's actual policy or licence agreement may be applicable.