Visible to the public UnlimitID: Privacy-Preserving Federated Identity Management Using Algebraic MACs

TitleUnlimitID: Privacy-Preserving Federated Identity Management Using Algebraic MACs
Publication TypeConference Paper
Year of Publication2016
AuthorsIsaakidis, Marios, Halpin, Harry, Danezis, George
Conference NameProceedings of the 2016 ACM on Workshop on Privacy in the Electronic Society
PublisherACM
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4569-9
KeywordsaMACs, attribute-based credentials, federated identity management, Human Behavior, Identity management, IDP mix-up, Metrics, oAuth, openid connect, privacy, pseudo-identities, pubcrawl, Resiliency, Scalability, unlinkability
Abstract

UnlimitID is a method for enhancing the privacy of commodity OAuth and applications such as OpenID Connect, using anonymous attribute-based credentials based on algebraic Message Authentication Codes (aMACs). OAuth is one of the most widely used protocols on the Web, but it exposes each of the requests of a user for data by each relying party (RP) to the identity provider (IdP). Our approach allows for the creation of multiple persistent and unlinkable pseudo-identities and requires no change in the deployed code of relying parties, only in identity providers and the client.

URLhttp://doi.acm.org/10.1145/2994620.2994637
DOI10.1145/2994620.2994637
Citation Keyisaakidis_unlimitid:_2016