from re cred control · confidential and proprietary materials for authorized verizon personnel and...
TRANSCRIPT
![Page 1: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/1.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
ReCRED
Bharadwaj Pulugundla, MBAManager Digital Innovation,
Verizon Enterprise Solutions
From Real-world Identities to Privacy-preserving and Attribute-basedCREDentials for Device-centric Access Control
Trust in Digital World 2016, Den Haag, June 15-16
![Page 2: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/2.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
Project funded by EU under H2020Call Identifier: H2020-DS2-2014-1
2
ReCRED Consortium
![Page 3: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/3.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
ReCRED Context
3
7.6 billion Mobile connections
4.7 billion unique subscribers
$1.06trillion Revenue/year
6.4 billion Connected "Things" Will Be in Use in 2016*
63%of confirmed data breaches involved leveraging weak, default or stolen passwords.
Source: https://www.gsmaintelligence.com/*Gartner
![Page 4: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/4.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
To promote the user’s personal mobile device to the role of a unified authentication and authorization proxy towards the digital world.
4
ReCRED’s goal
![Page 5: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/5.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
ReCRED concepts
5
User to Device & Device to Service authentication
Binding digital Identity with Real-world Identities
Account less access through verified identity attributes (eg. Age, location etc)
![Page 6: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/6.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement. 6
ReCRED’s adopted Technologies and Standards
![Page 7: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/7.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement. 7
ReCRED’s adoption of FIDO
![Page 8: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/8.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement. 8
ReCRED reference Architecture
![Page 9: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/9.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
ReCRED’s Pilots
Student
CUT WiFi area
Student Proof
Professor
UC3M WiFi area
Professor Proof
Professor Proof
Student Proof
StudentProof
Pilot 1
Pilot 1:Device-centric
campus WiFi and web services access control
Pilot 2:Student
authentication and offers
Student Proof
StudentDiscount
DiscountedTransaction
Pilot 2
Trusted Government
Authority
AgeGateway
18+ Age Proof
Access
Pilot 3
Pilot 3: Attribute-based age
verification online gateway
Financial Institution A
Financial Institution B
Financial Status Proof
LoanOrigination
Pilot 4
Pilot 4:Financial
services –microloan origination
![Page 10: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/10.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
1. Device-centric Authentication, Password-less experience, FIDO UAF
2. Fine-grained control of identity attributes to be revealed (ABAC)
3. FIDO + OpenID Connect Integration4. Support for privacy-preserving ABAC (Idemix, U-Prove, CP-
ABE)5. Biometrics and behavioral authentication6. Single Sign On (SSO) with federated identities7. Enhanced security & privacy by employing the crypto functions
and secure storage of TEE8. Unlinkability & untraceability
10
ReCRED’s Innovation
![Page 11: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/11.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
www.recred.euLinkedin:: ReCRED - H2020
Facebook:https://web.facebook.com/ReCRED-393935714133064/
Twitter: @ReCRED_H2020
DBIR REPORT: http://www.verizonenterprise.com/resources/reports/rp
_DBIR_2016_Report_en_xg.pdf
11
Where to find more information
![Page 12: From Re CRED Control · Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not](https://reader034.vdocuments.site/reader034/viewer/2022052105/60411df11bc97a05d77f098e/html5/thumbnails/12.jpg)
Confidential and proprietary materials for authorized Verizon personnel and outside agencies only. Use, disclosure or distribution of this material is not permitted to any unauthorized persons or third parties ex cept by written agreement.
Thank you.
12