Authenticated Dictionary-Based Attribute Sharing in Federated Identity Management.
ABSTRACT Authenticated dictionaries have been primarily studied and used in the context of certificate revocation in public key infrastructure (PKI). This paper presents a novel approach to enabling controlled access to and selective sharing of sensitive user attributes in federated identity management (FIM) by integrating an authenticated dictionary (ADT)-based credential into FIM, while attempting to achieve both better privacy control and usability. Our approach is motivated by the notion of user-centricity, which is essentially to give users a larger degree of control over their attributes. We discuss the design of a security system based on the usage of ADT-based credentials. Finally we discuss a proof-of-concept implementation.
Conference Paper: Federated Identity Management Challenges[Show abstract] [Hide abstract]
ABSTRACT: Federated Identity Management is considered a promising approach to facilitate secure resource sharing between collaborating partners. The adoption rate of identity federation technologies in the industrial domain, however, has not been as expected. A structured survey provides the basis for this paper, which reports on challenges related to Federated Identity Management. This paper presents a narrative of the main challenges that are reported in existing FIdM research, and provide a starting point to those who seek to learn more about these concepts.Availability, Reliability and Security (ARES), 2012 Seventh International Conference on; 01/2012
[Show abstract] [Hide abstract]
ABSTRACT: As the use of personal information in social network sites seems manifold, including the representation of an individual's digital persona (or social role) and identification, so does the abuse or misuse of the information. The issue of privacy is critically important in this context. In this paper we present a novel framework for enabling user-controlled sharing of sensitive personal information for better privacy protection in current online social networks. Specifically, the framework called U-Control is proposed to facilitate digital persona and privacy management (DPPM) in a user-centric way that it can satisfy diverse privacy requirements and specification, and social network environments. We discuss the design of a security system based on the proposed framework. Finally we discuss a proof-of-concept implementation, along with performance evaluation.Proceedings of the 33rd Annual IEEE International Computer Software and Applications Conference, COMPSAC 2009, Seattle, Washington, USA, 20-24 July 2009; 01/2009
[Show abstract] [Hide abstract]
ABSTRACT: User privacy is a challenging issue that must be addressed urgently in current online social networking (SN) sites. One of the fundamental problems associated with the issue is the lack of support of a user-centric approach to managing and sharing user profile information in current SN systems. In this paper we present a user-centric approach based on a credential system to enabling a user-controlled attribute (persona) sharing in online SN sites. Specifically we extend a Google-initiated open source project called OpenSocial, which provides a framework to support user attribute sharing between gadgets and online SN sites, in order to allow users to selectively share their attributes among online SN sites. This paper details the design and implementation of our extension.Collaborative Computing: Networking, Applications and Worksharing, 2009. CollaborateCom 2009. 5th International Conference on; 12/2009