Browse > Article
http://dx.doi.org/10.9716/KITS.2011.10.2.163

Analysis of Authentication Systems for Future Internet Service Environments  

Park, Seung-Chul (한국기술교육대학교 컴퓨터공학부)
Publication Information
Journal of Information Technology Services / v.10, no.2, 2011 , pp. 163-176 More about this Journal
Abstract
In the current Internet environment, there may exist a number of independently-operating authentication systems even within a single organization, according to the service types and service providing entities. Current silo-style isolated authentication system model has revealed critical problems in the aspects of usability, cost-effectiveness, extensibility and flexibility, and privacy protection. Recently, several next generation authentication systems have been actively developed by leading industrial and standardization institutions. This paper firstly analyzes the problems of current Internet authentication system environments. And then, the underlying idea, operating procedures, and pros and cons of the newly developed next generation authentication systems are analyzed so as to provide the selection guidelines for the new authentication systems and drive further development directions for future Internet authentication systems.
Keywords
Authentication; Identity Management; Privacy;
Citations & Related Records
연도 인용수 순위
  • Reference
1 Dimitry Stogov, "Enabling OpenID", IZEND/PHP Conference and Expo, 2007.
2 Liberty Alliance Project, "Liberty ID-FF Architecture Overview", Liberty Alliance, 2004.
3 Aries Fajar Dwiputera, "Single Sign-On Architectures in Public Networks(Liberty Alliance)", INFOTECH Seminar Communication Services, 2005.
4 OASIS, "Security Assertion Markup Language(SAML) V2.0 Technical Overview", http://www.oasis-open.org, 2008.
5 PRIME Consortium, "PRIME Architecture V3", http://www.prime-project.eu, 2008.
6 PRIME Consortium, "PRIME Framework V3", http://www.prime-project.eu, 2008.
7 Jan Camenisch and Ekc Van Herreweghen, "Design and Implementation of the IDEMIX Anonymous Credential System", Proc. of 9th ACM Conference on Computer and Communication Security, 2002.
8 Audun Josang and Simon Pope, "User Centric Identity Management", AusCERT Conference, 2005.
9 FIDIS, "D3.17:identity Management Systems-recent developments", www.fidis.net, 2009.
10 PrimeLife, "Requirements and concepts for identity management throughout life", http://www.primelife.eu, 2009.
11 David, P. K. and D. R. Aviel, "Risks of the Passport Single Signon Protocol", IEEE Computer Networks, 2000.
12 OpenID Foundation, "OpenID Authentication 2.0-Final", http://openid.net/specs/openid-authentication-2_0.html, 2007.