Confidence Value Based Multi Levels of Authentication for Ubiquitous Computing Environments

  • He Zheng
  • Jin Kwak
  • Kyungho Son
  • Wansuk Lee
  • Seungjoo Kim
  • Dongho Won
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3981)

Abstract

New computing paradigm in ubiquitous computing environments is revolutionizing the way people interact with computers, services and the surrounding physical spaces. However, the deployment of this computing paradigm in real-life is hindered by the lack of proper authentication and access control techniques. In order to provide stronger authentication, MIST proposed an authentication framework for ubiquitous computing environments and assigned confidence values to some authentication methods to facility the combining. However, the assigned confidence values lack sufficient evidence. In this paper reliable confidence values for each authentication method used in MIST is proposed. These confidence values can combine multiple confidence values in some manner, producing a more accurate net confidence value. Authentication entities with confidence values allows the authentication framework to blend nicely into ubiquitous computing environments.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Cerqueira, R., Hess, C.K., Roman, M., Campbell, R.H.: Gaia: A Development Infrastructure for Active Spaces. In: Workshop on Application Models and Programming Tools for Ubiquitous Computing (held in conjunction with the UBICOMP 2001) (September 2001)Google Scholar
  2. 2.
    Al-Muhtadi, J., Ranganathan, A., Campbell, R., Dennis Mickunas, M.: Flexible, Privacy-Preserving Authentication Framework for Ubiquitous Computing Environments. In: Proceedings, 22nd International Conference on Distributed Computing Systems Workshops (ICDCSW 2002), pp. 771–776 (July 2002)Google Scholar
  3. 3.
    CC: ISO/IEC 15408 Information technology - Security technology - Evaluation criteria for IT security V2.3 (August 2005)Google Scholar
  4. 4.
    CEM: ISO/IEC 18045 Common Methodology for Information Technology Security Evaluation V2.3 (August 2005)Google Scholar
  5. 5.
    Cray Incorporated. Cray UNICOS/mp Operating System Version 2.4.15 on Cray X1 hardware Security Target (August 2004), http://www.commoncriteriaportal.org
  6. 6.
    Certification body of the BSI, Functionality classes and evaluation methodology for deterministic random number generators, Application Notes and Interpretation of the Scheme(AIS) (December 1999)Google Scholar
  7. 7.
    Common Criteria Biometric Evaluation Methodology Working Group, Biometric Evaluation Methodology (August 2002)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2006

Authors and Affiliations

  • He Zheng
    • 1
  • Jin Kwak
    • 1
  • Kyungho Son
    • 1
    • 2
  • Wansuk Lee
    • 1
    • 2
  • Seungjoo Kim
    • 1
  • Dongho Won
    • 1
  1. 1.Information Security Group, School of Information and Communication EngineeringSungkyunkwan UniversitySuwon-si, Gyeonggi-doKorea
  2. 2.Korea Information Security AgencySeoulKorea

Personalised recommendations