demonstration

DEMO: OffPAD - Offline Personal Authenticating Device with Applications in Hospitals and e-Banking

Authors:

Denis Migdal,

Christian Johansen,

Audun JøsangAuthors Info & Claims

CCS '16: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security

Pages 1847 - 1849

https://doi.org/10.1145/2976749.2989033

Published: 24 October 2016 Publication History

Get Access

Abstract

Identity and authentication solutions often lack usability and scalability, or do not provide high enough authentication assurance. The concept of Lucidman (Local User-Centric Identity Management) is an approach to providing scalable, secure and user friendly identity and authentication functionalities. In this context we demonstrate the use of an OffPAD (Offline Personal Authentication Device) as a trusted device to support different forms of authentication. The Lucidman/OffPAD approach consists of locating the identity management and authentication functionalities on the user side instead of on the server side or in the cloud. This demo aims to show how OffPAD strengthens authentication assurance, improves usability, minimizes trust requirements, and has the advantage that trusted online interaction can be achieved even on malware infected client platforms. The trusted device OffPAD has been designed as a phone cover, therefore not requiring the user to carry an extra gadget. We focus on six demonstrators, three useful in e-banking and three in the hospital domain where nurses, doctors, or patients are authenticated and access is granted in various situations base on the OffPAD. A video with the same title is available online at www.offpad.org.

References

[1]

C. Ellison. Ceremony Design and Analysis. Cryptology ePrint Archive, Report 2007/399, 2007.

Google Scholar

[2]

M. S. Ferdous and A. Jøsang. Entity Authentication & Trust Validation in PKI using Petname Systems. In Theory and Practice of Cryptography Solutions for Secure Information Systems (CRYPSIS), pages 302--334. IGI Global, 2013.

Crossref

Google Scholar

[3]

A. Jøsang. Trust Extortion on the Internet. In 7th Workshop on Security and Trust Management (STM), pages 6--21. LNCS 7170, Springer, 2012.

Digital Library

Google Scholar

[4]

A. Jøsang, B. AlFayyadh, T. Grandison, M. AlZomai, and J. McNamara. Security Usability Principles for Vulnerability Analysis and Risk Assessment. In 23rd Annual Computer Security Applications Conference (ACSAC), pages 269--278. IEEE, 2007.

Google Scholar

[5]

A. Jøsang, C. Rosenberger, L. Miralabé, H. Klevjer, K. A. Varmedal, J. Daveau, K. E. Husa, and P. Taugbøl. Local user-centric identity management. Journal of Trust Management, 2(1):1--28, 2015.

Crossref

Google Scholar

[6]

H. Klevjer, K. A. Varmedal, and A. Jøsang. Extended HTTP digest access authentication. In 3rd IFIP WG 11.6 Working Conference on Policies & Research in Identity Management (IFIP IDMAN), volume 396 of IFIP AICT, pages 83--96. Springer, 2013.

Crossref

Google Scholar

[7]

D. Migdal, C. Johansen, and A. Jøsang. Offpad: Offline personal authenticating device -- implementations and applications. Technical Report 454, U. Oslo, Aug. 2016. (http://heim.ifi.uio.no/cristi/papers/TR454.pdf).

Google Scholar

[8]

K. A. Varmedal, H. Klevjer, J. Hovlandsvåg, A. Jøsang, J. Vincent, and L. Miralabé. OffPAD: Requirements and Usage. In Network and System Security (NSS), volume 7873 of LNCS, pages 80--93. Springer, 2013.

Crossref

Google Scholar

Cited By

View all

Karim NKhashan OKanaker HAbdulraheem WAlshinwan MAl-Banna A(2024)Online Banking User Authentication Methods: A Systematic Literature ReviewIEEE Access10.1109/ACCESS.2023.334604512(741-757)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2023.3346045
Rauti S(2020)Man-in-the-browser Attack: A Case Study on Malicious Browser ExtensionsSecurity in Computing and Communications10.1007/978-981-15-4825-3_5(60-71)Online publication date: 26-Apr-2020
https://doi.org/10.1007/978-981-15-4825-3_5
Denis MJohansen CJosang A(2017)Offline Trusted Device and Proxy Architecture Based on a new TLS Switching Technique2017 International Workshop on Secure Internet of Things (SIoT)10.1109/SIoT.2017.00007(10-19)Online publication date: Sep-2017
https://doi.org/10.1109/SIoT.2017.00007

Index Terms

Recommendations

Forward-Secure Multi-signatures
ICDCIT '08: Proceedings of the 5th International Conference on Distributed Computing and Internet Technology

In many applications a document needs to be signed by more than one signer. When a signature depends on more than one signer we call it a multi-signature. Further, ordinary digital signatures have an inherent weakness: if the secret key is leaked, then ...
Multi-use unidirectional forward-secure proxy re-signature scheme
IMSAA'09: Proceedings of the 3rd IEEE international conference on Internet multimedia services architecture and applications

In e-banking, on many occasions, there is need to translate one person's signature to another person's signature with mutual consent. The proxy re-signature scheme proposed by Blaze, Bleumer, and Strauss (BBS) in 1998 addresses this problem. Here, a ...
An evaluation of e-banking and m-banking adoption factors and preference in Malaysia: a case study

This study aims to investigate the factors influencing adoption of electronic banking (e banking) and mobile banking (m-banking) and to identify customer preferences in choosing either e-banking or m-banking when conducting transactions. The findings ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

CCS '16: Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security

October 2016

1924 pages

ISBN:9781450341394

DOI:10.1145/2976749

General Chairs:
Edgar Weippl
SBA Research, Austria
,
Stefan Katzenbeisser
TU Darmstadt, CYSEC, Germany
,
Program Chairs:
Christopher Kruegel
University of California, Santa Barbara, USA
,
Andrew Myers
Cornell University, USA
,
Shai Halevi
IBM Research, USA

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 24 October 2016

Check for updates

Author Tags

Qualifiers

Demonstration

Funding Sources

OffPAD project
E!8324 OffPAD

Conference

CCS'16

Sponsor:

SIGSAC

CCS'16: 2016 ACM SIGSAC Conference on Computer and Communications Security

October 24 - 28, 2016

Vienna, Austria

Acceptance Rates

CCS '16 Paper Acceptance Rate 137 of 831 submissions, 16%;

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

3
Total Citations
View Citations
266
Total Downloads

Downloads (Last 12 months)3
Downloads (Last 6 weeks)1

Reflects downloads up to 22 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Karim NKhashan OKanaker HAbdulraheem WAlshinwan MAl-Banna A(2024)Online Banking User Authentication Methods: A Systematic Literature ReviewIEEE Access10.1109/ACCESS.2023.334604512(741-757)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2023.3346045
Rauti S(2020)Man-in-the-browser Attack: A Case Study on Malicious Browser ExtensionsSecurity in Computing and Communications10.1007/978-981-15-4825-3_5(60-71)Online publication date: 26-Apr-2020
https://doi.org/10.1007/978-981-15-4825-3_5
Denis MJohansen CJosang A(2017)Offline Trusted Device and Proxy Architecture Based on a new TLS Switching Technique2017 International Workshop on Secure Internet of Things (SIoT)10.1109/SIoT.2017.00007(10-19)Online publication date: Sep-2017
https://doi.org/10.1109/SIoT.2017.00007

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Forward-Secure Multi-signatures

Multi-use unidirectional forward-secure proxy re-signature scheme

An evaluation of e-banking and m-banking adoption factors and preference in Malaysia: a case study