|
Click here for full text:
On Identity-Aware Devices: Putting Users in Control across Federated Services
Casassa Mont, Marco; Balacheff, Boris; Rouault, Jason; Drozdzewski, Daniel
HPL-2008-26
Keyword(s): identity management, device, privacy, user control, trust, federated services
Abstract: This paper describes R&D work on "Identity-aware Devices", in the context of federated services. The aim is to put users in control of their credentials and identities and enable simple, secure, trustworthy and transparent access to federated services. Current users' experience in networked and federated services is difficult and painful, especially when using mobile devices (e.g. mobile phones, laptops, PDAs, etc.): users need to contact online service providers and authenticate against them; additional credentials might be issued and required to access services; credentials need to be stored in a safe and secure place. Users have little control over the release of their identity information and related processes. A solution to address these issues is presented, based on the concept of "Identity-aware Devices" and federated "Provisioning Services". "Identity-aware Devices" leverage trusted modules and are driven by policies and users' preferences. Part of this work has been carried out in the context of a Liberty Alliance initiative, in collaboration with BT and Intel teams, aiming at driving the next generation of interoperable identity solutions. A full working prototype has been developed and successfully demonstrated in a joint project. This is work in progress. Next steps and plans are presented and discussed. Publication Info: Submitted to TRUST BUS 2008, September 4-5, 2008, Turin, Italy
10 Pages
Back to Index
|