Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).
NIST Authors in Bold
|Title:||Authentication Assurance Level Taxonomies for Smart Identity Token Deployments - A New Approach|
|Published:||June 21, 2010|
|Abstract:||Authentication assurance level taxonomies that have been specified in many real-world smart identity token deployments do not fully reflect all the security properties associated with their underlying authentication mechanisms. In this paper we describe the development and application of a new methodology called SID-AAM (where the abbreviation stands for Smart Identity Token - Authentication Assurance Level Methodology) that identifies a new set of authentication factors appropriate for this technology, identifies all the security properties that need to be verified based on bindings between various entities involved in the authentication processes and then derives an authentication assurance level taxonomy based on the set of security properties verified in the various authentication modes specified in the deployment. An application of the SID-AAM methodology to a large scale real world smart identity token deployment is illustrated as well as its superior characteristics compared to the current approaches outlined.|
|Conference:||24th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 2010)|
|Proceedings:||Data and Applications Security and Privacy XXIV (Lecture Notes in Computer Science)|
|Pages:||pp. 343 - 349|
|Dates:||June 21-23, 2010|
|Keywords:||authentication, assurance levels, smart identity tokens, taxonomies|
|Research Areas:||Information Technology|
|DOI:||http://dx.doi.org/10.1007/978-3-642-13739-6_26 (Note: May link to a non-U.S. Government webpage)|
|PDF version:||Click here to retrieve PDF version of paper (74KB)|