Authors:
Thomas Lenz
and
Vesna Krnjic
Affiliation:
Egovernment Innovation Center - Austria, Inffeldgasse 16a, Graz and Austria
Keyword(s):
Multi-factor, Authentication, Distributed Signatures, Identification, Identity Management, Agile, Provable.
Abstract:
Identification and authentication are essential processes in various areas of applications. While these processes are widely described and examined in respect to Web applications that are used on personal computers, the situation is more demanding on smart or mobile devices, as these devices provide other interfaces and have a different user behavior. Additionally, the smart or mobile technology sector has a continuous enhancement that results in no stable technology over the years. Consequently, new usable, agile, and secure methods become necessary to bring identification and secure authentication on smart or mobile platforms. Several proposals are published that should solve this open problem. However, all of them lacks in respect to high-secure authentication by using smart or mobile devices only. In this paper, we propose an agile smart-device based multi-factor authentication model to close the open gap on high-secure authentication. This proposed model combines multiple authen
ticators on client-side only to increase the assurance of authentication on an eID consumer service. We illustrate the practical applicability of our model by implementing all needed components. Finally, we evaluate the implemented components during the first test in a small group and we a are currently for a wider pilot to evaluate the usability of our proposed model.
(More)