Continuous Authentication and Non-repudiation for the Security of Critical Systems

2016 IEEE 35th Symposium on Reliable Distributed Systems (SRDS) Pub Date : 2016-09-01 DOI:10.1109/SRDS.2016.033

Enrico Schiavone, A. Ceccarelli, A. Bondavalli

{"title":"Continuous Authentication and Non-repudiation for the Security of Critical Systems","authors":"Enrico Schiavone, A. Ceccarelli, A. Bondavalli","doi":"10.1109/SRDS.2016.033","DOIUrl":null,"url":null,"abstract":"User authentication is a key service, especially for systems that can be considered critical for the data stored and the functionalities offered. In those cases, traditional authentication mechanisms can be inadequate to face intrusions: they usually verify user's identity only at login, and even repeating this step, frequently asking for passwords or PIN would reduce system's usability. Biometric continuous authentication, instead, is emerging as viable alternative approach that can guarantee accurate and transparent verification for the entire session: the traits can be repeatedly acquired avoiding disturbing the user's activity. Another security service that these systems may need is nonrepudiation, which protect against the denial of having used the system or executed some commands with it. The paper focuses on biometric continuous authentication and nonrepudiation, and it briefly presents a preliminary solution based on a specific case study. This work presents the current research direction of the author and describes some challenges that the student aims to address in the next years.","PeriodicalId":165721,"journal":{"name":"2016 IEEE 35th Symposium on Reliable Distributed Systems (SRDS)","volume":"6 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE 35th Symposium on Reliable Distributed Systems (SRDS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SRDS.2016.033","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

User authentication is a key service, especially for systems that can be considered critical for the data stored and the functionalities offered. In those cases, traditional authentication mechanisms can be inadequate to face intrusions: they usually verify user's identity only at login, and even repeating this step, frequently asking for passwords or PIN would reduce system's usability. Biometric continuous authentication, instead, is emerging as viable alternative approach that can guarantee accurate and transparent verification for the entire session: the traits can be repeatedly acquired avoiding disturbing the user's activity. Another security service that these systems may need is nonrepudiation, which protect against the denial of having used the system or executed some commands with it. The paper focuses on biometric continuous authentication and nonrepudiation, and it briefly presents a preliminary solution based on a specific case study. This work presents the current research direction of the author and describes some challenges that the student aims to address in the next years.

查看原文本刊更多论文

关键系统安全的连续认证和不可否认性

用户身份验证是一项关键服务，特别是对于被认为对存储的数据和提供的功能至关重要的系统。在这些情况下，传统的身份验证机制可能不足以面对入侵:它们通常只在登录时验证用户的身份，甚至重复这一步骤，频繁要求密码或PIN将降低系统的可用性。相反，生物识别连续认证正在成为一种可行的替代方法，可以保证整个会话的准确和透明验证:特征可以反复获得，避免干扰用户的活动。这些系统可能需要的另一个安全服务是不可抵赖性，它防止拒绝使用系统或使用系统执行某些命令。本文重点研究了生物特征连续认证和不可抵赖性问题，并在具体案例的基础上提出了初步的解决方案。这项工作介绍了作者目前的研究方向，并描述了学生在未来几年要解决的一些挑战。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2016 IEEE 35th Symposium on Reliable Distributed Systems (SRDS)

自引率

0.00%

发文量