Cart (Loading....) | Create Account
Close category search window
 

Assurance in identity management systems

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
Chehab, M.I. ; E-Security Res. Centre, London South Bank Univ., London, UK ; Abdallah, A.E.

Degree of identity assurance has been realized in several different approaches to authentication assurance frameworks; to become one of the parameters used in decision making about whether to grant or deny a service. However, current approaches do not look at diversity of authentication mechanisms, used for establishing the identity of a user, as an application to mitigate identity threats and consequently affects identity assurance in the authentication operation. This paper revisits the area of authentication assurance to present a framework for using identity assurance in the context of risk-based service provisioning. It demonstrates identity assurance in the authentication operation as being affected by the diversity of authentication mechanisms. By considering diversity in mechanisms, this framework gives service providers confidence that services are only restricted to users who have satisfied a certain degree of identity assurance, by going through a rigorous mechanism for establishing identity. Moreover, by giving a user different mechanisms to authenticate to different services, this work is useful for enabling users to separate between identities used for services accessing information of different levels of criticality.

Published in:

Information Assurance and Security (IAS), 2010 Sixth International Conference on

Date of Conference:

23-25 Aug. 2010

Need Help?


IEEE Advancing Technology for Humanity About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2014 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.