Journal of Information Technology Services (한국IT서비스학회지)

Korea Society of IT Services (한국IT서비스학회)
권호 표지
DOI QR코드

DOI QR Code

Analysis of Authentication Systems for Future Internet Service Environments

미래 인터넷 서비스 환경을 위한 인증 시스템 분석

  • 박승철 (한국기술교육대학교 컴퓨터공학부)
  • Received : 2010.01.18
  • Accepted : 2011.06.14
  • Published : 2011.06.30
Download PDF
⟨ Previous Next ⟩

Abstract

In the current Internet environment, there may exist a number of independently-operating authentication systems even within a single organization, according to the service types and service providing entities. Current silo-style isolated authentication system model has revealed critical problems in the aspects of usability, cost-effectiveness, extensibility and flexibility, and privacy protection. Recently, several next generation authentication systems have been actively developed by leading industrial and standardization institutions. This paper firstly analyzes the problems of current Internet authentication system environments. And then, the underlying idea, operating procedures, and pros and cons of the newly developed next generation authentication systems are analyzed so as to provide the selection guidelines for the new authentication systems and drive further development directions for future Internet authentication systems.

Keywords

Acknowledgement

Supported by : 한국기술교육대학교

References

  1. Audun Josang and Simon Pope, "User Centric Identity Management", AusCERT Conference, 2005.
  2. FIDIS, "D3.17:identity Management Systems-recent developments", www.fidis.net, 2009.
  3. PrimeLife, "Requirements and concepts for identity management throughout life", http://www.primelife.eu, 2009.
  4. David, P. K. and D. R. Aviel, "Risks of the Passport Single Signon Protocol", IEEE Computer Networks, 2000.
  5. OpenID Foundation, "OpenID Authentication 2.0-Final", http://openid.net/specs/openid-authentication-2_0.html, 2007.
  6. Dimitry Stogov, "Enabling OpenID", IZEND/PHP Conference and Expo, 2007.
  7. Liberty Alliance Project, "Liberty ID-FF Architecture Overview", Liberty Alliance, 2004.
  8. Aries Fajar Dwiputera, "Single Sign-On Architectures in Public Networks(Liberty Alliance)", INFOTECH Seminar Communication Services, 2005.
  9. OASIS, "Security Assertion Markup Language(SAML) V2.0 Technical Overview", http://www.oasis-open.org, 2008.
  10. PRIME Consortium, "PRIME Architecture V3", http://www.prime-project.eu, 2008.
  11. PRIME Consortium, "PRIME Framework V3", http://www.prime-project.eu, 2008.
  12. Jan Camenisch and Ekc Van Herreweghen, "Design and Implementation of the IDEMIX Anonymous Credential System", Proc. of 9th ACM Conference on Computer and Communication Security, 2002.