scholarly journals SAML based context aware IDM a fine-grained proxy re-encryption approach to improve the privacy of users identity data in cloud environment

2018 ◽  
Vol 7 (2.7) ◽  
pp. 108
Author(s):  
T S Srinivasa Reddy Modugula ◽  
B Vijaya Babu ◽  
Sunitha Pachala ◽  
Rupa Chiramdasu ◽  
L Sumalatha
Keyword(s):  
Identity Management ◽  
Security And Privacy ◽  
Access Management ◽  
It Industry ◽  
Organizational Boundaries ◽  
Fine Grained ◽  
Identity Management Systems ◽  
Identity Based ◽  
Cloud Servers ◽  
Privacy Issues

Cloud computing has made tremendous changes in IT industry by offering various services ranging from Iaas, Saas, Paas, Daas, IDaas to Xaas i.e. everything as a service. Identity as a service is one of the popular service offered by cloud providers which is used for Identity and Access Management which reduces the burden of identity management to companies. As the Identity data of user's moves out of organizational boundaries to cloud servers, the control over identity data is lost thereby security and privacy issues arise. To address these issues many Identity management systems have been proposed but none of them provided privacy at the fine-grained level. In this paper, we propose a SAML based ContextawareIdM, a model for fine-grained privacy-preserving identity as a service which employs Identity-based conditional proxy re-encryption to maintain and operate identity data's privacy at a fine-grained level.

scholarly journals A Survey on Federated Identity Management Systems Limitation and Solutions

2021 ◽  
Vol 13 (03) ◽  
pp. 43-59
Author(s):  
Maha Aldosary ◽  
Norah Alqahtani
Keyword(s):  
Resource Sharing ◽  
Identity Management ◽  
Security And Privacy ◽  
Management Systems ◽  
Identity Management Systems ◽  
Identity Management System ◽  
Federated Identity Management ◽  
Federated Identity ◽  
Privacy Issues ◽  
Digital Identities

An efficient identity management system has become one of the fundamental requirements for ensuring safe, secure, and transparent use of identifiable information and attributes. Federated Identity Management (FIdM) allows users to distribute their identity information across security domains which increases the portability of their digital identities, and it is considered a promising approach to facilitate secure resource sharing among collaborating participants in heterogeneous IT environments. However, it also raises new architectural challenges and significant security and privacy issues that need to be mitigated. In this paper, we provide a comparison between FIdM architectures, presented the limitations and risks in FIdM system, and discuss the results and proposed solutions.

scholarly journals Provisioning, Authentication and Secure Communications for IoT Devices on FIWARE

Sensors ◽  
2021 ◽  
Vol 21 (17) ◽  
pp. 5898
Author(s):  
Patrícia R. Sousa ◽  
Luís Magalhães ◽  
João S. Resende ◽  
Rolando Martins ◽  
Luís Antunes
Keyword(s):  
Identity Management ◽  
Security And Privacy ◽  
Steady Increase ◽  
Secure Communications ◽  
Secure Systems ◽  
Arduous Task ◽  
Digital Certificates ◽  
Iot Devices ◽  
Privacy Issues ◽  
The Internet Of Things

The increasing pervasiveness of the Internet of Things is resulting in a steady increase of cyberattacks in all of its facets. One of the most predominant attack vectors is related to its identity management, as it grants the ability to impersonate and circumvent current trust mechanisms. Given that identity is paramount to every security mechanism, such as authentication and access control, any vulnerable identity management mechanism undermines any attempt to build secure systems. While digital certificates are one of the most prevalent ways to establish identity and perform authentication, their provision at scale remains open. This provisioning process is usually an arduous task that encompasses device configuration, including identity and key provisioning. Human configuration errors are often the source of many security and privacy issues, so this task should be semi-autonomous to minimize erroneous configurations during this process. In this paper, we propose an identity management (IdM) and authentication method called YubiAuthIoT. The overall provisioning has an average runtime of 1137.8 ms ±65.11+δ. We integrate this method with the FIWARE platform, as a way to provision and authenticate IoT devices.

scholarly journals Research on the Ranked Searchable Encryption Scheme Based on an Access Tree in IoTs

2021 ◽  
Vol 2021 ◽  
pp. 1-10
Author(s):  
Yan-Yan Yang ◽  
Bei Gong ◽  
Zhi-Juan Jia ◽  
Ya-Ge Cheng ◽  
Yu-Chu He
Keyword(s):  
Recall Rate ◽  
Searchable Encryption ◽  
Security And Privacy ◽  
Encryption Scheme ◽  
Access Management ◽  
Fine Grained ◽  
Word Position ◽  
Efficiency Comparison ◽  
Query Semantics ◽  
The Internet Of Things

With the continuous development of the Internet of things (IoTs), data security and privacy protection in the IoTs are becoming increasingly important. Aiming at the hugeness, redundancy, and heterogeneity of data in the IoTs, this paper proposes a ranked searchable encryption scheme based on an access tree. First, this solution introduces parameters such as the word position and word span into the calculation of the relevance score of keywords to build a more accurate document index. Secondly, this solution builds a semantic relationship graph based on mutual information to expand the query semantics, effectively improving the accuracy and recall rate during retrieval. Thirdly, the solution uses an access tree control structure to control user authority and realizes fine-grained access management to data by data owners in the IoTs. Finally, the safety analysis of this scheme and the efficiency comparison with other existing schemes are given.

scholarly journals Federated Identity Management (FIdM) Systems Limitation and Solutions

2021 ◽  
Author(s):  
Maha Aldosary ◽  
Norah Alqahtani
Keyword(s):  
Management System ◽  
Identity Management ◽  
Security And Privacy ◽  
Identity Information ◽  
Identity Management System ◽  
Federated Identity Management ◽  
Federated Identity ◽  
Privacy Issues ◽  
Digital Identities

Efficient identity management system has become one of the fundamental requirements for ensuring safe, secure, and transparent use of identifiable information and attributes. FIdM allows users to distribute their identity information across security domains which increase the portability of their digital identities. However, it also raises new architectural challenges and significant security and privacy issues that need to be mitigated. In this paper, we presented the limitations and risks in Federated Identity Management system and discuss the results and proposed solutions.

User-Centric Identity Management Architecture Using Credential-Holding Identity Agents

2011 ◽  
pp. 78-96 ◽  
Author(s):  
Daisuke Mashima ◽  
David Bauer ◽  
Mustaque Ahamad ◽  
Douglas M. Blough
Keyword(s):  
Identity Management ◽  
Management Systems ◽  
Online Identity ◽  
Fine Grained ◽  
Identity Disclosure ◽  
Management Architecture ◽  
Identity Management Systems ◽  
Risk Scoring ◽  
User Centric ◽  
And Performance

The pervasive use of digital identities in today’s cyberspace has led to an increasing interest in the area of identity management. Recently proposed user-centric identity management systems have accomplished higher-level of user control over online identity credentials. However, while the lack of a central authority that governs the entire system requires users to be responsible for their own digital identity credentials, the existing user-centric identity management systems still have problems in terms of security, privacy, and system availability. In this chapter, we present an identity management architecture that addresses these problems. Our scheme relies on user-controlled identity agents. Identity agents realize fine-grained control over online identity disclosure by using a minimal-disclosure identity credential scheme and also improve users’ awareness over their credential usage via an identity-usage monitoring system that includes a real-time risk scoring mechanism. A proof-of-concept implementation is shown and evaluated in terms of security, user-centricity, and performance.

scholarly journals Identity Management Systems for the Internet of Things: A Survey Towards Blockchain Solutions

Sensors ◽  
2018 ◽  
Vol 18 (12) ◽  
pp. 4215 ◽  
Author(s):  
Xiaoyang Zhu ◽  
Youakim Badr
Keyword(s):  
Internet Of Things ◽  
Identity Management ◽  
Security And Privacy ◽  
Management Systems ◽  
Future Research ◽  
The Internet ◽  
Digital Identity ◽  
Identity Management Systems ◽  
The Internet Of Things ◽  
Digital Identity Management

The Internet of Things aims at connecting everything, ranging from individuals, organizations, and companies to things in the physical and virtual world. The digital identity has always been considered as the keystone for all online services and the foundation for building security mechanisms such as authentication and authorization. However, the current literature still lacks a comprehensive study on the digital identity management for the Internet of Things (IoT). In this paper, we firstly identify the requirements of building identity management systems for IoT, which comprises scalability, interoperability, mobility, security and privacy. Then, we trace the identity problem back to the origin in philosophy, analyze the Internet digital identity management solutions in the context of IoT and investigate recent surging blockchain sovereign identity solutions. Finally, we point out the promising future research trends in building IoT identity management systems and elaborate challenges of building a complete identity management system for the IoT, including access control, privacy preserving, trust and performance respectively.

Sign in / Sign up

Export Citation Format

Share Document