Emerging Technologies for Authorization and Authentication

1. Front Matter

   Pages i-x

   PDF

2. Logics to Reason Formally About Trust Computation and Manipulation

   • Alessandro Aldini, Mirko Tagliaferri

   Pages 1-15

3. An Authorization Framework for Cooperative Intelligent Transport Systems

   • Sowmya Ravidas, Priyanka Karkhanis, Yanja Dajsuren, Nicola Zannone

   Pages 16-34

4. A Framework for the Validation of Access Control Systems

   • Said Daoudagh, Francesca Lonetti, Eda Marchetti

   Pages 35-51

5. The Structure and Agency Policy Language (SAPL) for Attribute Stream-Based Access Control (ASBAC)

   • Dominic Heutelbeck

   Pages 52-68

6. NoCry: No More Secure Encryption Keys for Cryptographic Ransomware

   • Ziya Alper Genç, Gabriele Lenzini, Peter Y. A. Ryan

   Pages 69-85

7. Security Requirements for Store-on-Client and Verify-on-Server Secure Biometric Authentication

   • Haruna Higo, Toshiyuki Isshiki, Masahiro Nara, Satoshi Obana, Toshihiko Okamura, Hiroto Tamiya

   Pages 86-103

8. Reflexive Memory Authenticator: A Proposal for Effortless Renewable Biometrics

   • Nikola K. Blanchard, Siargey Kachanovich, Ted Selker, Florentin Waligorski

   Pages 104-121

9. Collaborative Authentication Using Threshold Cryptography

   • Aysajan Abidin, Abdelrahaman Aly, Mustafa A. Mustafa

   Pages 122-137

10. MuFASA: A Tool for High-level Specification and Analysis of Multi-factor Authentication Protocols

    • Federico Sinigaglia, Roberto Carbone, Gabriele Costa, Silvio Ranise

    Pages 138-155

11. A Risk-Driven Model to Minimize the Effects of Human Factors on Smart Devices

    • Sandeep Gupta, Attaullah Buriro, Bruno Crispo

    Pages 156-170

12. A Formal Security Analysis of the \(p\equiv p\) Authentication Protocol for Decentralized Key Distribution and End-to-End Encrypted Email

    • Itzel Vazquez Sandoval, Gabriele Lenzini

    Pages 171-187

13. Back Matter

    Pages 189-189

    PDF

This book constitutes the proceedings of the Second International Workshop on Emerging Technologies for Authorization and Authentication, ETAA 2019, held in Luxembourg, in September 2019.
The 10 full papers presented in this volume were carefully reviewed and selected from numerous submissions. They focus on new techniques for biometric and behavioral based authentication, authentication and authorization in the IoT and in distributed systems in general, techniques for strengthen password based authentication and for dissuading malicious users from stolen password reuse, an approach for discovering authentication vulnerabilities in interconnected accounts, and strategies to optimize the access control decision process in the Big Data scenario.

• authentication protocols
• computer networks
• computer security
• computer systems
• cryptography
• data communication systems
• data security
• network protocols
• network security
• security systems
• software engineering

• IIT-CNR, Pisa, Italy

  Andrea Saracino, Paolo Mori

Policies and ethics