1 / 20

Mobile Identity Management

Mobile Identity Management. Michael Kreutzer Uwe Jendricke Alf Zugenmaier. Göteborg, September 29th 2002. User: Kreutzer, Michael Access: 09:20 Withdraw: € 500. Scenario. User: Kreutzer, Michael Access: 09:20 Withdraw: € 500. User: Kreutzer, Michael Access: 10:21 Using: Bus #10.

jenibelle-perez
Download Presentation

Mobile Identity Management

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Mobile Identity Management Michael Kreutzer Uwe Jendricke Alf Zugenmaier Göteborg, September 29th 2002 Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  2. User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500 Scenario Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  3. User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500 User: Kreutzer, MichaelAccess: 10:21Using: Bus #10 Scenario Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  4. User: Kreutzer, Michael Access: 09:20Withdraw: € 500 User: Kreutzer, MichaelAccess: 10:21Using: Bus #10 User: Kreutzer, MichaelAccess: 11:42Query: „Privacy+NSA“ Scenario Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  5. User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500 Bank Client Profile Bruce Schneier Date: 24.03.02Time: 09:20Withdraw: 100 Quit: 09:42 User: Kreutzer Michael Access: 10:21Using: Bus #10 TrafficSystem Client Profile Michael Kreutzer Date: 24.03.02Time: 10:21Using:Bus #10 Exit: Stop#11 Library Client Profile Bruce Schneier Date: 24.03.02Time: 11:42Query: Location TrafficSystem Client Profile Bruce Schneier Date: 24.03.02Time: 10:21Using:Bus #10 Exit: Stop#11 TrafficSystem Client Profile Bruce Schneier Date: 24.03.02Time: 10:21Using:Bus #10 Exit: Stop#11 TrafficSystem Client Profile Bruce Schneier Date: 24.03.02Time: 10:21Using:Bus #103 Exit: Stop#11 Bank Client Profile Bruce Schneier Date: 24.03.02Time: 09:20Withdraw: 10032 Quit: 09:42 Bank Client Profile Michael Kreutzer Date: 24.03.02Time: 09:20Withdraw: 500 Quit: 09:42 General Person Profile Bruce Schneier Date: 24.03.02Time: 11:42Location:BusExit: Stop#11 General Person Profile Bruce Schneier Date: 24.03.02Time: 11:42Location:BusExit: Stop#11 General Person Profile Bruce Schneier Date: 24.03.02Time: 11:42Location:BusExit: Stop#11 General Person Profile Bruce Schneier Date: 24.03.02Time: 11:42Location:BusExit: Stop#11 General Person Profile Michael Kreutzer Date: 24.03.02Time: 11:42Location:LibraryQuery:Privacy+ NSA Library Client Profile Michael Kreutzer Date: 24.03.02Time: 11:42Query:Privacy+ NSA User: Kreutzer, MichaelAccess: 11:42Query: „Privacy+NSA“ Linkability => User Profiling Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  6. .com Control of Personal Data • Internet:Well known techniquesto prevent disclosure. • UC: Personal devices carry personal data. Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  7. The Problem: Prevention of User Profiling Conditions: • Ad Hoc => Constantly changing networks/services. • Mobile => Constantly changing location. • Fully automatic authentication requests from the environment. Linkability of the device! Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  8. The solution: Self-Protection by Identity Management (IM) • Express & enforce security needs • Depending on the situation (context) • Communication is based on anonymity and confidentiality. Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  9. Identity Management: Management of partial identities Leisure Willi Webster Anonymous Shopping Public Authority Identity Name: Willi Weber Nickname: Webster Society: Friends of Privacy Berlin e.V. Credit Card: VISACard #: 9988 7766 5544 Valid until:01.01.2003 Birthday: 11.07.1974 Place of Birth: Paris Hobbies: Swimming, Books Address: Street: Friedrichstr. 50 ZIP-Code: 79098 City: Freiburg Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  10. User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500 Identity: Bank Client Name: Michael Kreutzer Account#: 12927382 Identity: Anonymous Mobile Identity Management Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  11. User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500 Identity: Bus Ticket#: 23882Access: 10:21Using: Bus #10 Ticket #: 23882 Bus Mobile Identity Management Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  12. User: Kreutzer, Michael Access: 09:20Withdraw: € 500 Ticket#: 23882Access: 10:21Using: Bus #10 Bus User: AnonymousAccess: 10:21Query: Privacy+NSA Mobile Identity Management Identity: Anonymous Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  13. Bank Client Profile Bruce Schneier Date: 24.03.02Time: 09:20Withdraw: 10032 Quit: 09:42 User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500 Bank Client Profile Michael Kreutzer Date: 24.03.02Time: 09:20Withdraw: 10000 Quit: 09:42 Bank Client Profile Bruce Schneier Date: 24.03.02Time: 09:20Withdraw: 100 Quit: 09:42 TrafficSystem Client Profile Ticket #5321 Date: 24.03.02Time: 14:31Using:Bus #12 Exit: Stop#123 Bus Bus Bus ? Ticket#: 23882Access: 10:21Using: Bus #10 TrafficSystem Client Profile Ticket #23882 Date: 24.03.02Time: 10:21Using:Bus #10 Exit: Stop#11 Bus TrafficSystem Client Profile Ticket #12321 Date: 24.03.02Time: 10:31Using:Bus #1 Exit: Stop#5 Library Client Profile Anonymous Date: 24.03.02Time: 11:42Query: Crypto Library Client Profile Anonymous Date: 24.03.02Time: 11:42Query:Privacy+ NSA User: AnonymousAccess: 10:21Query: Privacy+NSA Limited User Profiling Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  14. Flow Chart of Mobile Identity Management System Context Sensing User Input Choice of Appropriate Identity Setting of Authentication and Services Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  15. 05:00 22:00 Time Table Saarbr. Landwehrpl. (Wednesday) all: Heusweiler/Holz 17 00 02 11 22 26 30 42 56 18 05 10 26 42 56 19 07 15 32 44 20 09 25 49 Context of the User (focus: PDA) • The Task • IT-Infrastructure • Physical Environment AP Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  16. Rules Identities Components of a Mobile Identity Management System ContextSensors Identity Management Services andApplications ContextSensing Choice ofIdentity Configurationof Services Banking Shopping HomeAutomation Filter ... Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  17. Anonymi-zing Service Communication Environment Trustworthy End-Device Network Applications Network-Gateway Comm. Interface (to Anon-ymizing Service) Identity-Manager(IDM) IDM IDM IDM Service Provider/CommunicationPartner Local Service User Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  18. The Demonstrator Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  19. The demonstrator: Lessons learnt • Active and inactive Applications • Priority of Applications • Overview of Local Services • User initiated Authentication • First Step in Direction Prototype Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

  20. Mobile Identity Management:Benefits for the User ... • Usable: Only available applications visible • The user feels safe and secure • The user is safe and secure • The user is per default anonymous • The user has full control of what kind of personal data leaves the device. Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier

More Related