An access control with handling private information

T. Saito, K. Umesawa, Hiroshi G. Okuno

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

An Internet user may want to provide only necessary information in order to access servers without disclosing his/her personal information, or with disclosing minimal personal information to the server. This requirement on privacy is neither realized by PKIX (Public Key Infrastructure with X.509 certificates) based access control nor by anonymous access. In this paper, we define a privacy-enhanced access control as the right of controlling the exposure of personal information and propose a privacy-enhanced access control mechanism by using Authorization Certificate of SPKI (Simple Public Key Infrastructure). This implementation shows that the SPKI-based WWW (World Wide Web) access control can easily replace the conventional one and that it also introduces a new service with some regulations such as ages, sex, or other features. We also discuss about the security issues of the proposed access control system.

Original languageEnglish
Title of host publicationProceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages1798-1805
Number of pages8
ISBN (Electronic)0769509908, 9780769509907
DOIs
Publication statusPublished - 2001
Externally publishedYes
Event15th International Parallel and Distributed Processing Symposium, IPDPS 2001 - San Francisco, United States
Duration: 2001 Apr 232001 Apr 27

Other

Other15th International Parallel and Distributed Processing Symposium, IPDPS 2001
CountryUnited States
CitySan Francisco
Period01/4/2301/4/27

Fingerprint

Access control
Servers
World Wide Web
Internet
Control systems

ASJC Scopus subject areas

  • Hardware and Architecture
  • Computer Networks and Communications

Cite this

Saito, T., Umesawa, K., & Okuno, H. G. (2001). An access control with handling private information. In Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001 (pp. 1798-1805). [925169] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/IPDPS.2001.925169

An access control with handling private information. / Saito, T.; Umesawa, K.; Okuno, Hiroshi G.

Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001. Institute of Electrical and Electronics Engineers Inc., 2001. p. 1798-1805 925169.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Saito, T, Umesawa, K & Okuno, HG 2001, An access control with handling private information. in Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001., 925169, Institute of Electrical and Electronics Engineers Inc., pp. 1798-1805, 15th International Parallel and Distributed Processing Symposium, IPDPS 2001, San Francisco, United States, 01/4/23. https://doi.org/10.1109/IPDPS.2001.925169
Saito T, Umesawa K, Okuno HG. An access control with handling private information. In Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001. Institute of Electrical and Electronics Engineers Inc. 2001. p. 1798-1805. 925169 https://doi.org/10.1109/IPDPS.2001.925169
Saito, T. ; Umesawa, K. ; Okuno, Hiroshi G. / An access control with handling private information. Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001. Institute of Electrical and Electronics Engineers Inc., 2001. pp. 1798-1805
@inproceedings{9c3868615ac2441180536f1403f0750a,
title = "An access control with handling private information",
abstract = "An Internet user may want to provide only necessary information in order to access servers without disclosing his/her personal information, or with disclosing minimal personal information to the server. This requirement on privacy is neither realized by PKIX (Public Key Infrastructure with X.509 certificates) based access control nor by anonymous access. In this paper, we define a privacy-enhanced access control as the right of controlling the exposure of personal information and propose a privacy-enhanced access control mechanism by using Authorization Certificate of SPKI (Simple Public Key Infrastructure). This implementation shows that the SPKI-based WWW (World Wide Web) access control can easily replace the conventional one and that it also introduces a new service with some regulations such as ages, sex, or other features. We also discuss about the security issues of the proposed access control system.",
author = "T. Saito and K. Umesawa and Okuno, {Hiroshi G.}",
year = "2001",
doi = "10.1109/IPDPS.2001.925169",
language = "English",
pages = "1798--1805",
booktitle = "Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
address = "United States",

}

TY - GEN

T1 - An access control with handling private information

AU - Saito, T.

AU - Umesawa, K.

AU - Okuno, Hiroshi G.

PY - 2001

Y1 - 2001

N2 - An Internet user may want to provide only necessary information in order to access servers without disclosing his/her personal information, or with disclosing minimal personal information to the server. This requirement on privacy is neither realized by PKIX (Public Key Infrastructure with X.509 certificates) based access control nor by anonymous access. In this paper, we define a privacy-enhanced access control as the right of controlling the exposure of personal information and propose a privacy-enhanced access control mechanism by using Authorization Certificate of SPKI (Simple Public Key Infrastructure). This implementation shows that the SPKI-based WWW (World Wide Web) access control can easily replace the conventional one and that it also introduces a new service with some regulations such as ages, sex, or other features. We also discuss about the security issues of the proposed access control system.

AB - An Internet user may want to provide only necessary information in order to access servers without disclosing his/her personal information, or with disclosing minimal personal information to the server. This requirement on privacy is neither realized by PKIX (Public Key Infrastructure with X.509 certificates) based access control nor by anonymous access. In this paper, we define a privacy-enhanced access control as the right of controlling the exposure of personal information and propose a privacy-enhanced access control mechanism by using Authorization Certificate of SPKI (Simple Public Key Infrastructure). This implementation shows that the SPKI-based WWW (World Wide Web) access control can easily replace the conventional one and that it also introduces a new service with some regulations such as ages, sex, or other features. We also discuss about the security issues of the proposed access control system.

UR - http://www.scopus.com/inward/record.url?scp=2342530626&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=2342530626&partnerID=8YFLogxK

U2 - 10.1109/IPDPS.2001.925169

DO - 10.1109/IPDPS.2001.925169

M3 - Conference contribution

AN - SCOPUS:2342530626

SP - 1798

EP - 1805

BT - Proceedings - 15th International Parallel and Distributed Processing Symposium, IPDPS 2001

PB - Institute of Electrical and Electronics Engineers Inc.

ER -