Abstract
Securely storing and using credentials for authentication is an essential part of protecting financial applications like on-line banking and other distributed applications. Existing approaches fall short: Requiring users to memorize credentials suffers from bad usability and is vulnerable to phishing. "Password managers" ease the usability problem somewhat, but are open to software attacks, like Trojans that steal passwords. At the other extreme, dedicated hardware tokens provide high levels of security, but are expensive and not very flexible. We observe that general-purpose secure hardware are becoming widely available and use them to develop a platform for "OnBoard Credentials" (ObCs) which combine the flexibility of virtual credentials with the higher levels of protection due to the use of secure hardware. © 2008 Springer-Verlag Berlin Heidelberg.
Cite
CITATION STYLE
Asokan, N., & Ekberg, J. E. (2008). A platform for OnBoard credentials. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 5143 LNCS, pp. 318–320). https://doi.org/10.1007/978-3-540-85230-8_31
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
