Félix Gómez Mármol, Marcus Q. Kuhnen, Gregorio Martínez Pérez
8th International Conference on Autonomic and Trusted Computing (ATC2011), LNCS 6906, pp. 1-18, ISBN: 978-3-642-23495-8, Banff, Canada
Publication year: 2011

Abstract

OpenID is an open standard providing a decentralised authentication mechanism to end users. It is based on a unique URL (Uniform Resource Locator) or XRI (Extensible Resource Identifier) as identifier of the user. This fact of using a single identifier confers this approach an interesting added-value when users want to get access to different services in the Internet, since users do not need to create a new account on every website they are visiting. However, OpenID providers are usually also being used as a point to store certain personal attributes of the end users, which might be of interest for any service provider willing to make profit from collecting that personal information. The definition of a reputation management solution integrated as part of the OpenID protocol can help users to determine whether certain service provider is more or less reliable before interacting with it and transferring their private information. This paper is providing the definition of a reputation framework that can be applied to the OpenID SSO (Single Sign-On) standard solution. It also defines how the protocol itself can be enhanced so OpenID providers can collect (and provide) recommendations from (to) users regarding different service providers and thus enhancing the users’ experience when using OpenID.

Related Publications


Towards the integration of reputation management in OpenID

JournalQ2
Ginés Dólera Tormo, Félix Gómez Mármol, Gregorio Martínez Pérez
Computer Standards & Interfaces, Special Issue on Secure Mobility in Future Communication Systems under Standardization, vol. 36, no. 3, pp. 438-453
Publication year: 2014

TRIMS, a privacy-aware trust and reputation model for identity management systems

JournalQ2
Félix Gómez Mármol, Joao Girao, Gregorio Martínez Pérez
Computer Networks, Special Issue on Managing Emerging Computing Environments, vol. 54, no. 16, pp. 2899-2912
Publication year: 2010

Co-Authors

This work would not have been possible without the inestimable contribution of:

  • Marcus Q. Kuhnen
  • Gregorio Martínez Pérez

Marcus Q. Kuhnen

Marcus Q. Kuhnen

NEC Laboratories Europe

Web

Gregorio Martínez Pérez

Gregorio Martínez Pérez

University of Murcia

Web

Citation

Félix Gómez Mármol, Marcus Q. Kuhnen, Gregorio Martínez Pérez, «Enhancing OpenID through a Reputation Framework«, 8th International Conference on Autonomic and Trusted Computing (ATC2011), Banff (Canada), 02-04/09/2011

Conference Details