KIT | KIT-Bibliothek | Impressum | Datenschutz

User-Centric Management of Distributed Credential Repositories: Balancing Availability and Vulnerability

Köhler, J.; Mittag, J.; Hartenstein, H.

Abstract:
To relieve users of the burden to memorize and manage their credentials while allowing for seamless roaming between various end devices, the idea of so-called credential repositories that store credentials for users came to attention. Both the risk of the credential repository being unavailable and the risk of the credentials becoming compromised are managed by the party that hosts the credential repository and that has to be trusted by the user. Removing the need for a trust relationship to a single party implies that users have to manage the risks themselves, for instance, by splitting the credentials across multiple systems/parties. However, if the systems differ in terms of availability and vulnerability, determining a suitable splitting strategy to manage the tradeoff between credential availability and vulnerability constitutes a complex problem. In this paper we present CREDIS, an approach that supports the user in building a credential repository based on heterogeneous systems that differ in terms of vulnerability and availability. CREDIS enables users to specify requirements on the availability and the vulnerability of the ... mehr


Zugehörige Institution(en) am KIT Institut für Telematik (TM)
Steinbuch Centre for Computing (SCC)
Publikationstyp Proceedingsbeitrag
Jahr 2013
Sprache Englisch
Identifikator ISBN: 978-1-4503-1950-8
KITopen-ID: 1000034369
Erschienen in Proceeding SACMAT '13 Proceedings of the 18th ACM symposium on Access control models and technologies, Amsterdam, The Netherlands — June 12 - 14, 2013
Verlag The Association for Computing Machinery, New York
Seiten 237-248
Nachgewiesen in Scopus
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft KITopen Landing Page