TY  - JOUR
Y1  - 2011///
VL  - 193 CC
JF  - Communications in Computer and Information Science
A1  - Khattak, Z.A.
A1  - Manan, J.-L.A.
A1  - Sulaiman, S.
UR  - https://www.scopus.com/inward/record.uri?eid=2-s2.0-80051564390&doi=10.1007%2f978-3-642-22726-4_27&partnerID=40&md5=9b4cccc531d50587f5966d68e5f7a863
CY  - Kochi
ID  - scholars1964
KW  - Anti virus; Certificate-based; Computer platforms; Federated identity; Inter system; Interacting system; New solutions; Open environment; Open systems interconnections; Platform attestation; Private key; Protected storage; Resource access; Trojan horse; Trust establishment; Trust mechanism; Trusted computing; Trusted platform module; User authentication
KW  -  Computer resource management; Management; Open systems; Viruses
KW  -  Authentication
IS  - PART 4
N2  - Federated environment application running on cost-effective federated identity management system has been more widely adopted, and would potentially attract more organizations to adopt and invest if we enhance with security and trust mechanisms. The traditional certificate based authentication raises various issues such as firstly, the case when public portion of the key pair can be guessed or calculated by the attacker, it can further be used to masquerade against resource access, and secondly, when the storing of private key on user system can be compromised by viruses, Trojan horses etc. Also current computer platforms are lacking in platform trust establishment which makes it hard to trust remote platforms. In this paper, we discuss concerns related to federated services user authentication, authorization, and trust establishment in Federated Open Systems Interconnection and proposed trusted platform module protected storage to protect private keys, and platform attestation mechanisms to establish inter platform (and hence inter system) trust among interacting systems in open environment to overcome these issues. To assess our work we compared trusted platform module with existing authentication types and shows that trusted platform module provides better temper-resistance protection against attacks such as replay, Trojan horse's, and fake anti viruses' attacks etc. © 2011 Springer-Verlag.
SN  - 18650929
EP  - 259
AV  - none
TI  - Finding new solutions for services in federated open systems interconnection
SP  - 250
N1  - cited By 1; Conference of 1st International Conference on Advances in Computing and Communications, ACC 2011 ; Conference Date: 22 July 2011 Through 24 July 2011; Conference Code:86007
ER  -