scholarly journals Audited credential delegation: a usable security solution for the virtual physiological human toolkit

2011 ◽  
Vol 1 (3) ◽  
pp. 462-473 ◽  
Author(s):  
Ali N. Haidar ◽  
Stefan J. Zasada ◽  
Peter V. Coveney ◽  
Ali E. Abdallah ◽  
Bruce Beckles ◽  
...  
Keyword(s):  
Personalized Medicine ◽  
End Users ◽  
Public Key Infrastructure ◽  
Public Key ◽  
End User ◽  
Usable Security ◽  
Secure Access ◽  
Digital Certificates ◽  
Access Grid ◽  
Grid Based

We present applications of audited credential delegation (ACD), a usable security solution for authentication, authorization and auditing in distributed virtual physiological human (VPH) project environments that removes the use of digital certificates from end-users' experience. Current security solutions are based on public key infrastructure (PKI). While PKI offers strong security for VPH projects, it suffers from serious usability shortcomings in terms of end-user acquisition and management of credentials which deter scientists from exploiting distributed VPH environments. By contrast, ACD supports the use of local credentials. Currently, a local ACD username–password combination can be used to access grid-based resources while Shibboleth support is underway. Moreover, ACD provides seamless and secure access to shared patient data, tools and infrastructure, thus supporting the provision of personalized medicine for patients, scientists and clinicians participating in e-health projects from a local to the widest international scale.

Certificates and Public Key Infrastructure

2008 ◽  
pp. 217-245
Author(s):  
Manuel Mogollon
Keyword(s):  
Access Control ◽  
Digital Signature ◽  
Public Key Infrastructure ◽  
Public Key ◽  
Comprehensive System ◽  
Public Key Encryption ◽  
Control Data ◽  
The Public ◽  
Digital Certificates ◽  
Public Keys

In public-key encryption, the secrecy of the public key is not required, but the authenticity of the public key is necessary to guarantee its integrity and to avoid spoofing and playback attacks. A user’s public key can be authenticated (signed) by a certificate authority that verifies that a public key belongs to a specific user. In this chapter, digital certificates, which are used to validate public keys, and certificate authorities are discussed. When public-key is used, it is necessary to have a comprehensive system that provides public key encryption and digital signature services to ensure confidentiality, access control, data integrity, authentication, and non-repudiation. That system, public-key infrastructure or PKI, is also discussed in this chapter.

Digital Certificates and Public-Key Infrastructures

2004 ◽  
pp. 64-97
Author(s):  
Diana Berbecaru ◽  
Corrado Derenale ◽  
Antonio Lioy
Keyword(s):  
Public Key Infrastructure ◽  
Public Key ◽  
Key Generation ◽  
Certificate Revocation ◽  
Digital Certificates ◽  
Organizational Procedures ◽  
Technical Solutions

The technical solutions and organizational procedures used to manage certificates are collectively named Public Key Infrastructure (PKI). The overall goal of a PKI is to provide support for usage of public-key certificates within – and also outside – its constituency. To this aim, several functions are needed, such as user registration, key generation, certificate revocation and many others. It is the aim of this paper to describe issues related to digital certificates and PKIs, both from the technical and management viewpoint.

Solutions for Securing End User Data over the Cloud Deployed Applications

2017 ◽  
pp. 198-218
Author(s):  
Akashdeep Bhardwaj
Keyword(s):  
Cloud Service ◽  
Public Key Cryptography ◽  
End Users ◽  
Public Key ◽  
End User ◽  
Sensitive Data ◽  
Cloud Service Provider ◽  
User Data ◽  
The Times ◽  
In Transit

With more and more organizations working on the cloud over unsecure internet, sharing files and emails and saving them on cloud storage imperative. Securing the end user sensitive data in transit has thus started to get maximum priority to protect it from Cloud company staff, hackers and data thieves. In this study, an attempt is made to review the research of end user data security. There is an urgent need for solutions for end users' data protection, privacy and during the times when migrating from one Cloud service provider to other. This chapter identifies end user data challenges and issues on cloud and presents use of Public Key Cryptography, Multi Factor Authentication and use of Cloud Aware applications as possible solutions.

Digital Certificates and Public-Key Infrastructures

2008 ◽  
pp. 1210-1235
Author(s):  
Diana Berbecaru ◽  
Corrado Derenale ◽  
Antonio Lioy
Keyword(s):  
Public Key Infrastructure ◽  
Public Key ◽  
Key Generation ◽  
Certificate Revocation ◽  
Digital Certificates ◽  
Organizational Procedures ◽  
Technical Solutions

The technical solutions and organizational procedures used to manage certificates are collectively named Public Key Infrastructure (PKI). The overall goal of a PKI is to provide support for usage of public-key certificates within – and also outside – its constituency. To this aim, several functions are needed, such as user registration, key generation, certificate revocation and many others. It is the aim of this paper to describe issues related to digital certificates and PKIs, both from the technical and management viewpoint.

Solutions for Securing End User Data over the Cloud Deployed Applications

2019 ◽  
pp. 1030-1046
Author(s):  
Akashdeep Bhardwaj
Keyword(s):  
Cloud Service ◽  
Public Key Cryptography ◽  
End Users ◽  
Public Key ◽  
End User ◽  
Sensitive Data ◽  
Cloud Service Provider ◽  
User Data ◽  
The Times ◽  
In Transit

With more and more organizations working on the cloud over unsecure internet, sharing files and emails and saving them on cloud storage imperative. Securing the end user sensitive data in transit has thus started to get maximum priority to protect it from Cloud company staff, hackers and data thieves. In this study, an attempt is made to review the research of end user data security. There is an urgent need for solutions for end users' data protection, privacy and during the times when migrating from one Cloud service provider to other. This chapter identifies end user data challenges and issues on cloud and presents use of Public Key Cryptography, Multi Factor Authentication and use of Cloud Aware applications as possible solutions.

scholarly journals The UNICORE Grid Infrastructure

2002 ◽  
Vol 10 (2) ◽  
pp. 149-157 ◽  
Author(s):  
Mathilde Romberg
Keyword(s):  
Public Key Infrastructure ◽  
Public Key ◽  
Grid Infrastructure ◽  
Distributed Resources ◽  
Software Infrastructure ◽  
Organizational Environments ◽  
Secure Access ◽  
Uniform Interface ◽  
Software Platforms ◽  
Computer Resources

UNICORE (Uniform Interface to Computer Resources) is a software infrastructure supporting seamless and secure access to distributed resources. UNICORE allows uniform access to different hardware and software platforms as well as different organizational environments. Based on the abstract job model it offers services for security, translation of abstract jobs into real batch jobs for different target systems, and a public key infrastructure. This paper describes the UNICORE architecture and the services provided.

Sign in / Sign up

Export Citation Format

Share Document