TY  - CONF
Y1  - 2012///
SN  - 9780769547459
A1  - Manan, J.-L.A.
A1  - Khattak, Z.A.
A1  - Sulaiman, S.
UR  - https://www.scopus.com/inward/record.uri?eid=2-s2.0-84868108560&doi=10.1109%2fTrustCom.2012.222&partnerID=40&md5=e52aae41c8a064caab885e14d248af37
EP  - 1416
CY  - Liverpool
AV  - none
N2  - In open environment there are always challenges in bridging the gap between Security, Trust and Privacy (STP) in Federated Access Management (FAM) systems. This challenge is mainly due to difficulties in providing a practical and efficient framework to handle the often conflicting requirements and expectations of STP in a unified manner. Many of the existing researches address the gap between mainly two areas i.e. security and privacy or security and trust. In this paper, we describe our efforts to narrow the STP gap in FAM and present some implementation experiences in crafting two distinct Unified STP Frameworks (UnifiedSTPFs), namely emergent and practicable, for federated access. We propose the use of the combined strengths of user authentication (AuthN), Trustworthy Mutual Attestation (TMutualA) protocol, and privacy enhancement via Shibboleth. We also presented some lessons learnt during implementation of the practicable UnifiedSTPF for FAM systems in Web Single Sign-On (WSSO) environment and possible future works. © 2012 IEEE.
N1  - cited By 1; Conference of 11th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, TrustCom-2012 ; Conference Date: 25 June 2012 Through 27 June 2012; Conference Code:93340
TI  - Practicable unified Security, Trust and Privacy (STP) framework for Federated Access Management (FAM)
ID  - scholars2690
SP  - 1411
KW  - Access management; Integrity measurement; mutual attestation; security; Trusted computing; Trusted platform module
KW  -  Architecture; Authentication; Internet protocols; Ubiquitous computing
KW  -  Computer privacy
ER  -