Table 2 Relationship b/w Features, Mechanisms and Attack Matrix
From: Cloud identity management security issues & solutions: a taxonomy
Features | Mechanism | Mitigated attacks |
|---|---|---|
| Â | Something You Know (OTP & CR) | A2, A5, A6, A7, A10, A11, A12 |
Authentication | Something You Have (Tokens) | A5, A14 |
| Â | Something You Are (Biometrics) | A1, A4, A5, A12 |
| Â | Access Control Policies | A3, A6, A13 |
Authorization | OAuth | A5, A6, A7, A8, A10, A11 |
| Â | Access Right Delegation | A3, A6 |
| Â | Smart-card (Encryption) | A5, A12 |
Identity | Multiple IdPIdP s and CSPCSP s | A7, A8, A13, A14 |
federation | Hierarchical Storage | A6, A7, A8 |
| Â | Distributed Computation | A15 |
| Â | Proxy-systems | A8 |
| Â | User-roles | A6 |
Privacy | Pseudonyms | A8, A10 |
| Â | Encryption | A5, A7, A8, A10, A14, A15 |
| Â | Limited Disclosure | A6, A7, A8 |
User-centricity | Consistet Experience | A9, A10 |
| Â | Data Disclosures Policies | A3, A6, A9, A13 |
Audit & Logging | Activity Monitoring | A1, A4, A12 |
| Â | History Maintenance | A9, A12 |