KIT | KIT-Bibliothek | Impressum | Datenschutz

User-Centric Management of Distributed Credential Repositories: Balancing Availability and Vulnerability

Köhler, J. 1; Mittag, J. 1; Hartenstein, H. 1
1 Scientific Computing Center (SCC), Karlsruher Institut für Technologie (KIT)

Abstract:

To relieve users of the burden to memorize and manage their credentials while allowing for seamless roaming between various end devices, the idea of so-called credential repositories that store credentials for users came to attention. Both the risk of the credential repository being unavailable and the risk of the credentials becoming compromised are managed by the party that hosts the credential repository and that has to be trusted by the user. Removing the need for a trust relationship to a single party implies that users have to manage the risks themselves, for instance, by splitting the credentials across multiple systems/parties. However, if the systems differ in terms of availability and vulnerability, determining a suitable splitting strategy to manage the tradeoff between credential availability and vulnerability constitutes a complex problem. In this paper we present CREDIS, an approach that supports the user in building a credential repository based on heterogeneous systems that differ in terms of vulnerability and availability. CREDIS enables users to specify requirements on the availability and the vulnerability of the distributed credential repository and determines an optimal strategy on how to split secrets across the heterogeneous systems. ... mehr


Zugehörige Institution(en) am KIT Institut für Telematik (TM)
Scientific Computing Center (SCC)
Universität Karlsruhe (TH) – Zentrale Einrichtungen (Zentrale Einrichtungen)
Publikationstyp Proceedingsbeitrag
Publikationsjahr 2013
Sprache Englisch
Identifikator ISBN: 978-1-4503-1950-8
KITopen-ID: 1000034369
Erschienen in Proceeding SACMAT '13 Proceedings of the 18th ACM symposium on Access control models and technologies, Amsterdam, The Netherlands — June 12 - 14, 2013
Verlag Association for Computing Machinery (ACM)
Seiten 237-248
Nachgewiesen in Dimensions
Scopus
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page