ALOC: Attribute level of confidence for a user-centric attribute assurance

Abstract

The proliferation of online services leads to an increasing number of different digital identities that each user has. In order to enforce access control policies, service providers need assurance that the information associated with users’ identities, either received by the user or a federation partner, are correct and trustworthy. Current identity assurance frameworks assess the trustworthiness of identity providers but do not define trust on the user attribute level of granularity. In this paper, we consider the user attribute as a dynamic structure that extends the foundation of attribute authenticity and trustworthiness by introducing the attribute level of confidence (ALOC). Basically, the ALOC encompasses additional information on attributes’ lifecycle and issuing mechanisms. We present the architecture design and demonstrate its components. This paper concludes discussing future research directions.