%0 Conference Proceedings
%T Authentication Assurance Level Taxonomies for Smart Identity Token Deployments - A New Approach
%+ National Institute of Standards and Technology [Gaithersburg] (NIST)
%A Chandramouli, Ramaswamy
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 24th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy (DBSEC)
%C Rome, Italy
%Y Sara Foresti; Sushil Jajodia
%I Springer
%3 Data and Applications Security and Privacy XXIV
%V LNCS-6166
%P 343-349
%8 2010-06-21
%D 2010
%R 10.1007/978-3-642-13739-6_26
%Z Computer Science [cs]/Digital Libraries [cs.DL]Conference papers
%X Authentication assurance level taxonomies that have been specified in many real-world smart identity token deployments do not fully reflect all the security properties associated with their underlying authentication mechanisms. In this paper we describe the development and application of a new methodology called SID-AAM (where the abbreviation stands for Smart Identity Token - Authentication Assurance Level Methodology) that identifies a new set of authentication factors appropriate for this technology, identifies all the security properties that need to be verified based on bindings between various entities involved in the authentication processes and then derives an authentication assurance level taxonomy based on the set of security properties verified in the various authentication modes specified in the deployment. The advantages of SID-AAM methodology compared to current approaches for determining authentication assurance levels for smart identity token deployments are highlighted.
%G English
%2 https://inria.hal.science/hal-01056674/document
%2 https://inria.hal.science/hal-01056674/file/_30.pdf
%L hal-01056674
%U https://inria.hal.science/hal-01056674
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-LNCS-6166
%~ IFIP-TC
%~ IFIP-WG
%~ IFIP-TC11
%~ IFIP-WG11-3
%~ IFIP-DBSEC
%~ IFIP-2010