NIST logo

Publication Citation: Authentication Assurance Level Taxonomies for Smart Identity Token Deployments - A New Approach

NIST Authors in Bold

Author(s): Ramaswamy Chandramouli;
Title: Authentication Assurance Level Taxonomies for Smart Identity Token Deployments - A New Approach
Published: June 21, 2010
Abstract: Authentication assurance level taxonomies that have been specified in many real-world smart identity token deployments do not fully reflect all the security properties associated with their underlying authentication mechanisms. In this paper we describe the development and application of a new methodology called SID-AAM (where the abbreviation stands for Smart Identity Token - Authentication Assurance Level Methodology) that identifies a new set of authentication factors appropriate for this technology, identifies all the security properties that need to be verified based on bindings between various entities involved in the authentication processes and then derives an authentication assurance level taxonomy based on the set of security properties verified in the various authentication modes specified in the deployment. An application of the SID-AAM methodology to a large scale real world smart identity token deployment is illustrated as well as its superior characteristics compared to the current approaches outlined.
Conference: 24th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 2010)
Proceedings: Data and Applications Security and Privacy XXIV (Lecture Notes in Computer Science)
Volume: 6166
Pages: pp. 343 - 349
Location: Rome, -1
Dates: June 21-23, 2010
Keywords: authentication; assurance levels; smart identity tokens; taxonomies
Research Areas: Information Technology
DOI: http://dx.doi.org/10.1007/978-3-642-13739-6_26  (Note: May link to a non-U.S. Government webpage)
PDF version: PDF Document Click here to retrieve PDF version of paper (74KB)