Auth-SL - A system for the specification and enforcement of quality-based authentication policies

Anna C. Squicciarini, Abhilasha Bhargav-Spantzel, Elisa Bertino, Alexei B. Czeksis

Research output: Chapter in Book/Report/Conference proceedingConference contribution

8 Scopus citations

Abstract

This paper develops a language and a reference architecture supporting the management and enforcement of authentication policies. Such language directly supports multi-factor authentication and the high level specification of authentication factors, in terms of conditions against the features of the various authentication mechanisms and modules. In addition the language supports a rich set of constraints; by using these constraints, one can specify for example that a subject must be authenticated by two credentials issued by different authorities. The paper presents a logical definition of the language and its corresponding XML encoding. It also reports an implementation of the proposed authentication system in the context of the FreeBSD Unix operating system (OS). Critical issues in the implementation are discussed and performance results are reported. These results show that the implementation is very efficient.

Original languageEnglish (US)
Title of host publicationInformation and Communications Security - 9th International Conference, ICICS 2007, Proceedings
Pages386-397
Number of pages12
StatePublished - Dec 1 2007
Event9th International Conference on Information and Communications Security, ICICS 2007 - Zhengzhou, China
Duration: Dec 12 2007Dec 15 2007

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume4861 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other9th International Conference on Information and Communications Security, ICICS 2007
CountryChina
CityZhengzhou
Period12/12/0712/15/07

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Fingerprint Dive into the research topics of 'Auth-SL - A system for the specification and enforcement of quality-based authentication policies'. Together they form a unique fingerprint.

  • Cite this

    Squicciarini, A. C., Bhargav-Spantzel, A., Bertino, E., & Czeksis, A. B. (2007). Auth-SL - A system for the specification and enforcement of quality-based authentication policies. In Information and Communications Security - 9th International Conference, ICICS 2007, Proceedings (pp. 386-397). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4861 LNCS).