Security usability of petname systems
2009 (English)In: Identity and Privacy in the Internet Age: 14th Nordic Conference on Secure IT Systems, NordSec 2009, Oslo, Norway, 14-16 October 2009. Proceedings, Springer, 2009, 44-59 p.Conference paper (Refereed)
To have certainty about identities is crucial for secure communication in digital environments. The number of digital identities that people and organizations need to manage is rapidly increasing, and proper management of these identities is essential for maintaining security in online markets and communities. Traditional Identity Management Systems are designed to facilitate the management of identities from the perspective of the service provider, but provide little support on the user side. The difficulty of managing identities on the user side causes vulnerabilities that open up for serious attacks such as identity theft and Phishing. Petname Systems have been proposed to provide more user friendly and secure identity management on the user side. This paper provides an analysis of the Petname Model by describing its history and background, properties, application domains and usability issues with emphasis on Security Usability. By covering a broad set of aspects, this paper is intended to provide a comprehensive reference for the Petname System.
Place, publisher, year, edition, pages
Springer, 2009. 44-59 p.
, Lecture Notes in Computer Science, ISSN 0302-9743 ; 5838
Application domains, Digital environment, Digital identity, Identity management, Identity management systems, Identity theft, Online markets, Phishing, Secure communications, Service provider, Usability issues, User friendly, Information dissemination, Internet, Security of data
Computer and Information Science
IdentifiersURN: urn:nbn:se:kth:diva-152402DOI: 10.1007/978-3-642-04766-4_4ISI: 000273517300004ScopusID: 2-s2.0-78650721066ISBN: 3642047653ISBN: 978-364204765-7OAI: oai:DiVA.org:kth-152402DiVA: diva2:755217
14th Nordic Conference on Secure IT Systems: Identity and Privacy in the Internet Age, NordSec 2009; Oslo; Norway; 14 October 2009 through 16 October 2009
QC 201410142014-10-142014-09-262014-10-14Bibliographically approved