Formal description of the SWIFT identity management framework

被引：4

作者：

Perez, Alejandro ^{[1
]}

Lopez, Gabriel ^{[1
]}

Canovas, Oscar ^{[2
]}

Gomez-Skarmeta, Antonio F. ^{[1
]}

机构：

[1] Univ Murcia, Dept Informat & Commun Engn, E-30100 Murcia, Spain

[2] Univ Murcia, Dept Comp Engn, E-30100 Murcia, Spain

来源：

FUTURE GENERATION COMPUTER SYSTEMS-THE INTERNATIONAL JOURNAL OF GRID COMPUTING AND ESCIENCE | 2011年 / 27卷 / 08期

关键词：

Identity aggregation; Security analysis; Cross-layer; Authentication; Authorization;

D O I：

10.1016/j.future.2011.04.003

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

This work presents both a formal description and a security analysis of the advanced SWIFT identity framework, covering topics such as identity aggregation, cross-layer and pseudonymity features. The paper formally describes how those topics can be addressed in order to provide advanced identity functionality to end users. The security analysis demonstrates how privacy and security constraints are solved by the framework. Finally, a first approach of bindings shows how this proposal can be instantiated with existing and widely spread technologies. This work covers the missing parts of the most recent proposals on advanced identity management, as described in the related work, but it also provides a security analysis and a formal description of the proposed architecture. (C) 2011 Elsevier B.V. All rights reserved.

引用

页码：1113 / 1123

页数：11

共 50 条

[1] Towards a formal framework for distributed identity management
He, JS
Zhang, R
WEB TECHNOLOGIES RESEARCH AND DEVELOPMENT - APWEB 2005, 2005, 3399 : 913 - 924
[2] SWIFT: Advanced identity management
Torroglosa, Elena
Perez, Alejandro
Lopez, Gabriel
Gomez-Skarmeta, Antonio F.
Canovas, Oscar
2010 5TH INTERNATIONAL ICST CONFERENCE ON COMMUNICATIONS AND NETWORKING IN CHINA (CHINACOM), 2010,
[3] A SWIFT TAKE ON IDENTITY MANAGEMENT
Lopez, Gabriel
Canovas, Oscar
Gomez-Skarmeta, Antonio F.
Girao, Joao
COMPUTER, 2009, 42 (05) : 58 - 65
[4] A formal framework for description logics with uncertainty
Haarslev, Volker
Pai, Hsueh-leng
Shiri, Nematollaah
INTERNATIONAL JOURNAL OF APPROXIMATE REASONING, 2009, 50 (09) : 1399 - 1415
[5] Data minimisation in communication protocols: a formal analysis framework and application to identity management
Veeningen, Meilof
de Weger, Benne
Zannone, Nicola
INTERNATIONAL JOURNAL OF INFORMATION SECURITY, 2014, 13 (06) : 529 - 569
[6] Data minimisation in communication protocols: a formal analysis framework and application to identity management
Meilof Veeningen
Benne de Weger
Nicola Zannone
International Journal of Information Security, 2014, 13 : 529 - 569
[7] A formal framework for description of semantic web services
Jiang Zhixiong
Qian Leqiu
Pen xin
2007 CIT: 7TH IEEE INTERNATIONAL CONFERENCE ON COMPUTER AND INFORMATION TECHNOLOGY, PROCEEDINGS, 2007, : 1065 - 1070
[8] A Formal Privacy Management Framework
Le Metayer, Daniel
FORMAL ASPECTS IN SECURITY AND TRUST, 2009, 5491 : 162 - 176
[9] Formal description of network management issues
Bochmann, G.
Mondain-Monval, P.
Proceedings of the IFIP TC6/WG6.6 International Symposium on Integrated Network Management, 1991,
[10] A Formal Framework for Consent Management
Tokas, Shukun
Owe, Olaf
FORMAL TECHNIQUES FOR DISTRIBUTED OBJECTS, COMPONENTS, AND SYSTEMS, FORTE 2020, 2020, 12136 : 169 - 186

← 1 2 3 4 5 →