mobile identity management
DESCRIPTION
Mobile Identity Management. Michael Kreutzer Uwe Jendricke Alf Zugenmaier. Göteborg, September 29th 2002. User: Kreutzer, Michael Access: 09:20 Withdraw: € 500. Scenario. User: Kreutzer, Michael Access: 09:20 Withdraw: € 500. User: Kreutzer, Michael Access: 10:21 Using: Bus #10. - PowerPoint PPT PresentationTRANSCRIPT
![Page 1: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/1.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
1
Mobile Identity Management
Michael Kreutzer
Uwe Jendricke
Alf Zugenmaier
Göteborg, September 29th 2002
![Page 2: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/2.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
2
ScenarioUser: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
![Page 3: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/3.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
3
User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
User: Kreutzer, MichaelAccess: 10:21Using: Bus #10
Scenario
![Page 4: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/4.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
4
User: Kreutzer, Michael Access: 09:20Withdraw: € 500
User: Kreutzer, MichaelAccess: 10:21Using: Bus #10
User: Kreutzer, MichaelAccess: 11:42Query: „Privacy+NSA“
Scenario
![Page 5: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/5.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
5
Library Client Profile
Bruce Schneier
Date: 24.03.02Time: 11:42Query: Location
TrafficSystem Client Profile
Bruce Schneier
Date: 24.03.02Time: 10:21Using:Bus #10
Exit: Stop#11
TrafficSystem Client Profile
Bruce Schneier
Date: 24.03.02Time: 10:21Using:Bus #10
Exit: Stop#11
TrafficSystem Client Profile
Bruce Schneier
Date: 24.03.02Time: 10:21Using:Bus #103
Exit: Stop#11
Bank Client Profile
Bruce Schneier
Date: 24.03.02Time: 09:20Withdraw: 10032
Quit: 09:42
Bank Client Profile
Bruce Schneier
Date: 24.03.02Time: 09:20Withdraw: 100
Quit: 09:42
Linkability => User ProfilingUser: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
User: Kreutzer MichaelAccess: 10:21Using: Bus #10
User: Kreutzer, MichaelAccess: 11:42Query: „Privacy+NSA“
General Person Profile
Bruce Schneier
Date: 24.03.02Time: 11:42Location:BusExit: Stop#11
General Person Profile
Bruce Schneier
Date: 24.03.02Time: 11:42Location:BusExit: Stop#11
General Person Profile
Bruce Schneier
Date: 24.03.02Time: 11:42Location:BusExit: Stop#11
General Person Profile
Bruce Schneier
Date: 24.03.02Time: 11:42Location:BusExit: Stop#11
General Person Profile
Michael Kreutzer
Date: 24.03.02Time: 11:42Location:LibraryQuery:Privacy+ NSA
Library Client Profile
Michael Kreutzer
Date: 24.03.02Time: 11:42Query:Privacy+
NSA
TrafficSystem Client Profile
Michael Kreutzer
Date: 24.03.02Time: 10:21Using:Bus #10
Exit: Stop#11
Bank Client Profile
Michael Kreutzer
Date: 24.03.02Time: 09:20Withdraw: 500
Quit: 09:42
![Page 6: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/6.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
6
Control of Personal Data• Internet:
Well known techniquesto prevent disclosure.
• UC: Personal devices carry personal data.
.com
![Page 7: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/7.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
7
The Problem: Prevention of User Profiling
Conditions:
– Ad Hoc => Constantly changing networks/services.
– Mobile => Constantly changing location.
– Fully automatic authentication requests from
the environment.
Linkability of the device!
![Page 8: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/8.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
8
The solution: Self-Protection by
Identity Management (IM)
– Express & enforce security needs
– Depending on the situation (context)
– Communication is based on anonymity
and confidentiality.
![Page 9: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/9.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
9
Shopping
Identity Management: Management of partial identities
Willi Webster
Public Authority
Leisure
Anonymous
Name:Willi Weber
Credit Card: VISACard #: 9988 7766 5544Valid until:01.01.2003
Address:Street: Friedrichstr. 50ZIP-Code: 79098City: Freiburg
Birthday: 11.07.1974Place of Birth: Paris
Hobbies:Swimming, Books
Identity
Nickname: WebsterSociety: Friends of Privacy Berlin e.V.
![Page 10: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/10.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
10
Mobile Identity Management
Identity: Anonymous
Name: Michael KreutzerAccount#: 12927382
Identity: Bank Client
User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
![Page 11: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/11.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
11
Ticket #: 23882
Identity: Bus
Ticket#: 23882Access: 10:21Using: Bus #10
Bus
User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
Mobile Identity Management
![Page 12: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/12.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
12
Identity: Anonymous
Mobile Identity Management
Ticket#: 23882Access: 10:21Using: Bus #10
Bus
User: AnonymousAccess: 10:21Query: Privacy+NSA
User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
![Page 13: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/13.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
13
Limited User Profiling
Ticket#: 23882Access: 10:21Using: Bus #10
Bus
User: AnonymousAccess: 10:21Query: Privacy+NSA
User: Kreutzer, MichaelAccess: 09:20Withdraw: € 500
Bank Client Profile
Bruce Schneier
Date: 24.03.02Time: 09:20Withdraw: 10032
Quit: 09:42
Bank Client Profile
Bruce Schneier
Date: 24.03.02Time: 09:20Withdraw: 100
Quit: 09:42
Bank Client Profile
Michael Kreutzer
Date: 24.03.02Time: 09:20Withdraw: 10000
Quit: 09:42
Library Client Profile
Anonymous
Date: 24.03.02Time: 11:42Query: Crypto
Library Client Profile
Anonymous
Date: 24.03.02Time: 11:42Query:Privacy+ NSA
? TrafficSystem Client Profile
Ticket #23882
Date: 24.03.02Time: 10:21Using:Bus #10
Exit: Stop#11
Bus
TrafficSystem Client Profile
Ticket #5321
Date: 24.03.02Time: 14:31Using:Bus #12
Exit: Stop#123
Bus
TrafficSystem Client Profile
Ticket #12321
Date: 24.03.02Time: 10:31Using:Bus #1
Exit: Stop#5
Bus
![Page 14: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/14.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
14
Flow Chart of Mobile Identity Management
System
Context Sensing
Choice of Appropriate Identity
Setting of Authentication and Services
User Input
![Page 15: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/15.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
15
Context of the User (focus: PDA)
• The Task
• IT-Infrastructure
• Physical Environment
AP
St.W end e l
SA A R LA N DH om b urg
M erzig
S aa rb rücken
get +Z oom -
P h a r m a c y
200 m eternext left
St. M ichelsPharm acy
Time Table 05:00 22:00
Saarbr. Landwehrpl. (Wednesday)all: Heusweiler/Holz
17 00 02 11 22 26 30 42 5618 05 10 26 42 5619 07 15 32 4420 09 25 49
![Page 16: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/16.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
16
Components of a Mobile Identity Management System
Identity Management
ContextSensors
Servicesand
Applications
Banking
Shopping
HomeAutomation
...
ContextSensing
Choice ofIdentity
Configurationof Services
Rules Identities
Filter
![Page 17: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/17.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
17
Communication EnvironmentNetwork
User
Network-Gateway
Comm.Interface (to Anon-ymizing Service)
Applications
Identity-Manager
(IDM)IDM
IDM
IDM
Trustworthy End-Device
Anonymi-zing
Service
Local Service
Service Provider/CommunicationPartner
![Page 18: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/18.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
18
The Demonstrator
![Page 19: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/19.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
19
The demonstrator: Lessons learnt
– Active and inactive Applications
– Priority of Applications
– Overview of Local Services
– User initiated Authentication
– First Step in Direction Prototype
![Page 20: Mobile Identity Management](https://reader036.vdocument.in/reader036/viewer/2022062422/5681384d550346895d9ff76b/html5/thumbnails/20.jpg)
IIGIIGIIGIIG
Michael Kreutzer, Uwe Jendricke, Alf Zugenmaier
Institut für Informatik und Gesellschaft, Abteilung Telematik, Albert-Ludwigs-Universität Freiburg
20
Mobile Identity Management:Benefits for the User ...
– Usable: Only available applications visible
– The user feels safe and secure
– The user is safe and secure
• The user is per default anonymous
• The user has full control of what kind of
personal data leaves the device.