A Continuous LoA Compliant Trust Evaluation Method
| Autor: | Estelle Cherrier, Jean-Jacques Schwartzmann, Christophe Rosenberger, Vincent Frey, Julien Hatin |
|---|---|
| Přispěvatelé: | Orange Labs [Caen], Orange Labs, Equipe SAFE - Laboratoire GREYC - UMR6072, Groupe de Recherche en Informatique, Image et Instrumentation de Caen (GREYC), Centre National de la Recherche Scientifique (CNRS)-École Nationale Supérieure d'Ingénieurs de Caen (ENSICAEN), Normandie Université (NU)-Normandie Université (NU)-Université de Caen Normandie (UNICAEN), Normandie Université (NU)-Centre National de la Recherche Scientifique (CNRS)-École Nationale Supérieure d'Ingénieurs de Caen (ENSICAEN), Normandie Université (NU), Orange Labs R&D [Rennes], France Télécom, ANRTOrange Labs, Barbier, Morgan |
| Jazyk: | angličtina |
| Rok vydání: | 2016 |
| Předmět: |
Computer science
Distributed computing 05 social sciences Data_MISCELLANEOUS Authentication scheme mobile device 02 engineering and technology Authentication system continuous authentication Computer security computer.software_genre [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] Trust level 020204 information systems Dempster–Shafer theory Authentication protocol Lightweight Extensible Authentication Protocol Evaluation methods 0202 electrical engineering electronic engineering information engineering 0501 psychology and cognitive sciences trust level computer Mobile device 050107 human factors [INFO.INFO-CR] Computer Science [cs]/Cryptography and Security [cs.CR] |
| Zdroj: | International Conference on Information Systems Security and Privacy (ICISSP) International Conference on Information Systems Security and Privacy (ICISSP), Feb 2016, Rome, Italy ICISSP |
| Popis: | International audience; The trust provided by authentication systems is commonly expressed with a Level of Assurance (LoA see 3). If it can be considered as a first process to simplify the expression of trust during the authentication step, it does not handle all the aspects of the authentication mechanism and especially it fails to integrate continuous authentication systems. In this paper, we propose a model based on the Dempster Shafer theory to merge continuous authentication system with more traditional static authentication scheme and to assign a continuous trust level to the current LoA. In addition, this method is proved to be compliant with the LoA frameworks. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|