Skip to Main content Skip to Navigation
New interface
Conference papers

Identity Management: State of the Art, Challenges and Perspectives

Abstract : Passwords are still the primary means for achieving user authentication online. However, using a username-password combination at every service provider someone wants to connect to introduces several possibilities for vulnerabilities. A combination of password reuse and a compromise of an iffy provider can quickly lead to financial and identity theft. Further, the username-password paradigm also makes it hard to distribute authorized and up-to-date attributes about users; like residency or age. Being able to share such authorized information is becoming increasingly more relevant as more real-world services become connected online. A number of alternative approaches such as individual user certificates, Single Sign-On (SSO), and Privacy-Enhancing Attribute-Based Credentials (P-ABCs) exist. We will discuss these different strategies and highlight their individual benefits and shortcomings. In short, their strengths are highly complementary: P-ABC based solutions are strongly secure and privacy-friendly but cumbersome to use; whereas SSO provides a convenient and user-friendly solution, but requires a fully trusted identity provider, as it learns all users’ online activities and could impersonate users towards other providers.The vision of the Olympus project is to combine the advantages of these approaches into a secure and user-friendly identity management system using distributed and advanced cryptography. The distributed aspect will avoid the need of a single trusted party that is inherent in SSO, yet maintain its usability advantages for the end users. We will sketch our vision and outline the design of Olympus’ distributed identity management system.
Document type :
Conference papers
Complete list of metadata

https://hal.inria.fr/hal-03378952
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, October 14, 2021 - 5:47:50 PM
Last modification on : Wednesday, November 3, 2021 - 6:55:37 AM
Long-term archiving on: : Saturday, January 15, 2022 - 7:54:53 PM

File

 Restricted access
To satisfy the distribution rights of the publisher, the document is embargoed until : 2023-01-01

Please log in to resquest access to the document

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Tore Kasper Frederiksen, Julia Hesse, Anja Lehmann, Rafael Torres Moreno. Identity Management: State of the Art, Challenges and Perspectives. 14th IFIP International Summer School on Privacy and Identity Management (Privacy and Identity), Aug 2019, Windisch, Switzerland. pp.45-62, ⟨10.1007/978-3-030-42504-3_4⟩. ⟨hal-03378952⟩

Share

Metrics

Record views

51