Trusted computing enhanced user authentication with OpenID and trustworthy user interface

Artigo Revisado por pares

Trusted computing enhanced user authentication with OpenID and trustworthy user interface

2011; Inderscience Publishers; Volume: 3; Issue: 4 Linguagem: Inglês

10.1504/ijitst.2011.043133

ISSN

1748-5703

Autores

Andreas Leicher, Andreas Schmidt, Yogendra Shah, Inhyok Cha,

Tópico(s)

Advanced Malware Detection Techniques

Resumo

Trusted computing, used as a security technology, can establish trust between multiple parties. One implementation of trusted computing technology standardised by the Trusted Computing Group is the trusted platform module (TPM). We build on the security provided by the TPM to create a trusted variant of identity management systems based on the popular OpenID protocol. We show that it is feasible to bind OpenID identities to the trustworthiness of the device. Our concept and implementation builds on previous work which showed that trusted computing can be used to create tickets. In this work, we use such tickets as a building block to establish trust in the OpenID protocol between the identity provider and the device. Furthermore, we investigate how mutual trust can be established in the communication between device and user during authentication. The concept of trust visualisation via a trusted environment and binding to user authentication are presented.

Ver no editor

Altmetric

PlumX

Entrar

Lembrar minha senha

Receber meu e-mail de confirmação

Trusted computing enhanced user authentication with OpenID and trustworthy user interface