论文信息 - Vis-a-Vis Verification: Social Network Identity Management Through Real World Interactions

Vis-a-Vis Verification: Social Network Identity Management Through Real World Interactions

Online services, particularly those aimed at a specific user base such as a company’s employees, face the problem of identity management. Especially when the service constitutes some kind of social network, i.e., the validity of the users’ identities matters, secure and reliable means for identity verification and authentication are required. In this paper, we propose a novel identity management concept based on a) verification through physical presence and b) authentication through ownership. Our approach being a hybrid solution between a centralized authority and decentralized trust management is settled on a sweet spot between security and convenience for the users. Keywords—identity management systems; authentication; social network services; mobile computing

Claudia Linnhoff-Popien | Marco Maier | Chadly Marouane | Benno Rott | Stephan A. W. Verclas

[1] Patrick Schaumont,et al. Design methods for Security and Trust , 2007, 2007 Design, Automation & Test in Europe Conference & Exhibition.

[2] Philip R. Zimmermann,et al. The official PGP user's guide , 1996 .

[3] Tim Kindberg,et al. Distributed Systems: Concepts and Design (4th Edition) (International Computer Science) , 2005 .

[4] Stéphane Lo Presti. A Tree of Trust rooted in Extended Trusted Computing , 2007 .

[5] Professor T. Venkat Narayana Rao. Authentication Using Mobile Phone as a Security Token , 2011 .

[6] Vitaly Shmatikov,et al. The most dangerous code in the world: validating SSL certificates in non-browser software , 2012, CCS.

[7] James A. Hendler,et al. Trust Networks on the Semantic Web , 2003, WWW.

[8] John C. Mitchell,et al. Client-Side Defense Against Web-Based Identity Theft , 2004, NDSS.