学术探索
学术期刊
新闻热点
数据分析
智能评审

Improved Identity Management with Verifiable Credentials and FIDO

被引:24
作者
Chadwick D.W. [1 ]
Laborde R. [2 ]
Oglaza A. [2 ]
Venant R. [3 ]
Wazan S. [4 ]
Nijjar M. [5 ]
机构
[1] University of Kent, United Kingdom
[2] University Paul Sabatier, France
[3] Le Mans University, France
[4] Zayed University, United Arab Emirates
[5] Truu Ltd.
来源
IEEE Communications Standards Magazine | 2019年 / 3卷 / 04期
关键词
Authorization - Network architecture;
D O I
10.1109/MCOMSTD.001.1900020
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
We describe how FIDO and W3C VCs can overcome the problems of existing identity management systems. We describe our conceptual model and architecture, and the protocol we used by extending FIDO's UAF in order to provide both strong authentication and strong authorization. We built a pilot implementation for U.K. NHS patients to validate our implementation. Patients were able to use a mobile phone with a fingerprint reader to access restricted NHS sites in order to make and cancel appointments and order repeat prescription drugs. Our initial user trials with 10 U.K. NHS patients found the system to be easy to use, and fingerprints to be preferable to using usernames and passwords for authentication. © 2017 IEEE.
引用
收藏
页码:14 / 20
页数:6
相关论文
共 11 条
[1]  
Huge Facebook Breach Leaves Thousands of Other Apps Vulnerable, (2018)
[2]  
Web Authentication: An API for Accessing Public Key Credentials Level 1, (2019)
[3]  
Verifiable Credentials Data Model 1.0-Expressing Verifiable Information on the Web, (2019)
[4]  
Training Material Targeted at Identity Providers, (2016)
[5]  
(2017)
[6]  
Cantor S., NativeSPAttributeResolver, (2014)
[7]  
FIDO UAF Architectural Overview, (2014)
[8]  
Moore B., Et al., Policy Core Information Model-Version 1 Specification, (2001)
[9]  
Wohlmacher P., Digital certificates: A survey of revocation methods, Proc. 2000 ACM Wksps. Multimedia, pp. 111-114
[10]  
Pettersen Y., The Transport Layer Security (TLS)-Multiple Certificate Status Request Extension, (2013)
12