Got Ya!: Sensors for Identity Management Specific Security Situational Awareness

Daniela Pöhn; Heiner Lüken

doi:10.5220/0013092900003899

Got Ya!: Sensors for Identity Management Specific Security Situational Awareness

Daniela Pöhn, Heiner Lüken

2025

Abstract

Security situational awareness refers to identifying, mitigating, and preventing digital cyber threats by gathering information to understand the current situation. With awareness, the basis for decisions is present, particularly in complex situations. However, while logging can track the successful login into a system, it typically cannot determine if the login was performed by the user assigned to the account. An account takeover, for example, by a successful phishing attack, can be used as an entry into an organization’s network. All identities within an organization are managed in an identity management system. Thereby, these systems are an interesting goal for malicious actors. Even within identity management systems, it is difficult to differentiate legitimate from malicious actions. We propose a security situational awareness approach specifically to identity management. We focus on protocol-specifics and identity-related sources in a general concept before providing the example of the protocol OAuth with a proof-of-concept implementation.

Download

Paper Citation

in Harvard Style

Pöhn D. and Lüken H. (2025). Got Ya!: Sensors for Identity Management Specific Security Situational Awareness. In Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP; ISBN 978-989-758-735-1, SciTePress, pages 141-148. DOI: 10.5220/0013092900003899

in Bibtex Style

@conference{icissp25,
author={Daniela Pöhn and Heiner Lüken},
title={Got Ya!: Sensors for Identity Management Specific Security Situational Awareness},
booktitle={Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP},
year={2025},
pages={141-148},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013092900003899},
isbn={978-989-758-735-1},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 11th International Conference on Information Systems Security and Privacy - Volume 1: ICISSP
TI - Got Ya!: Sensors for Identity Management Specific Security Situational Awareness
SN - 978-989-758-735-1
AU - Pöhn D.
AU - Lüken H.
PY - 2025
SP - 141
EP - 148
DO - 10.5220/0013092900003899
PB - SciTePress