Privacy enhanced access control by SPKI

T. Saito, K. Umesawa, Hiroshi G. Okuno

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Citations (Scopus)

Abstract

In Internet and electronic commerce applications, a user may want to access servers as anonymous with an authorized certificate. In this paper, such privacy-enhanced service scheme is presented by using Simple Public Key Infrastructure (SPKI). A certificate of SPKI carries as few information on clients as possible compared to a certificate of PKIX (Public Key Infrastructure with X.509). After obtaining a certificate issued by an authorized server, a client submits the certificate to the service provider (server) in order to take services associated with the certificate. Then, the provider verifies the submitted certificate and gives permission to the client if verified. A client can delegate a certificate to a third party, so that he/she can access the server instead of the original certificate recipient. The implementation of the proposed certificate-based access control consists of authorized server, issuing agent, client. These are based on SPKI certificate issuer, certificate verifier, access control list management, and delegate mechanism. These subsystems are coded on the basis of SPKI library written in Java.

Original languageEnglish
Title of host publicationProceedings - 7th International Conference on Parallel and Distributed Systems: Workshops
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages301-306
Number of pages6
ISBN (Print)0769505716, 9780769505718
DOIs
Publication statusPublished - 2000
Externally publishedYes
Event7th International Conference on Parallel and Distributed Systems, ICPADS 2000 - Iwate, Japan
Duration: 2000 Jul 42000 Jul 7

Other

Other7th International Conference on Parallel and Distributed Systems, ICPADS 2000
CountryJapan
CityIwate
Period00/7/400/7/7

Fingerprint

Access control
Electronic commerce
Servers
Internet

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture

Cite this

Saito, T., Umesawa, K., & Okuno, H. G. (2000). Privacy enhanced access control by SPKI. In Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops (pp. 301-306). [884605] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/PADSW.2000.884605

Privacy enhanced access control by SPKI. / Saito, T.; Umesawa, K.; Okuno, Hiroshi G.

Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops. Institute of Electrical and Electronics Engineers Inc., 2000. p. 301-306 884605.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Saito, T, Umesawa, K & Okuno, HG 2000, Privacy enhanced access control by SPKI. in Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops., 884605, Institute of Electrical and Electronics Engineers Inc., pp. 301-306, 7th International Conference on Parallel and Distributed Systems, ICPADS 2000, Iwate, Japan, 00/7/4. https://doi.org/10.1109/PADSW.2000.884605
Saito T, Umesawa K, Okuno HG. Privacy enhanced access control by SPKI. In Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops. Institute of Electrical and Electronics Engineers Inc. 2000. p. 301-306. 884605 https://doi.org/10.1109/PADSW.2000.884605
Saito, T. ; Umesawa, K. ; Okuno, Hiroshi G. / Privacy enhanced access control by SPKI. Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops. Institute of Electrical and Electronics Engineers Inc., 2000. pp. 301-306
@inproceedings{5ad861c494144a54be0b9561720784c9,
title = "Privacy enhanced access control by SPKI",
abstract = "In Internet and electronic commerce applications, a user may want to access servers as anonymous with an authorized certificate. In this paper, such privacy-enhanced service scheme is presented by using Simple Public Key Infrastructure (SPKI). A certificate of SPKI carries as few information on clients as possible compared to a certificate of PKIX (Public Key Infrastructure with X.509). After obtaining a certificate issued by an authorized server, a client submits the certificate to the service provider (server) in order to take services associated with the certificate. Then, the provider verifies the submitted certificate and gives permission to the client if verified. A client can delegate a certificate to a third party, so that he/she can access the server instead of the original certificate recipient. The implementation of the proposed certificate-based access control consists of authorized server, issuing agent, client. These are based on SPKI certificate issuer, certificate verifier, access control list management, and delegate mechanism. These subsystems are coded on the basis of SPKI library written in Java.",
author = "T. Saito and K. Umesawa and Okuno, {Hiroshi G.}",
year = "2000",
doi = "10.1109/PADSW.2000.884605",
language = "English",
isbn = "0769505716",
pages = "301--306",
booktitle = "Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops",
publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - GEN

T1 - Privacy enhanced access control by SPKI

AU - Saito, T.

AU - Umesawa, K.

AU - Okuno, Hiroshi G.

PY - 2000

Y1 - 2000

N2 - In Internet and electronic commerce applications, a user may want to access servers as anonymous with an authorized certificate. In this paper, such privacy-enhanced service scheme is presented by using Simple Public Key Infrastructure (SPKI). A certificate of SPKI carries as few information on clients as possible compared to a certificate of PKIX (Public Key Infrastructure with X.509). After obtaining a certificate issued by an authorized server, a client submits the certificate to the service provider (server) in order to take services associated with the certificate. Then, the provider verifies the submitted certificate and gives permission to the client if verified. A client can delegate a certificate to a third party, so that he/she can access the server instead of the original certificate recipient. The implementation of the proposed certificate-based access control consists of authorized server, issuing agent, client. These are based on SPKI certificate issuer, certificate verifier, access control list management, and delegate mechanism. These subsystems are coded on the basis of SPKI library written in Java.

AB - In Internet and electronic commerce applications, a user may want to access servers as anonymous with an authorized certificate. In this paper, such privacy-enhanced service scheme is presented by using Simple Public Key Infrastructure (SPKI). A certificate of SPKI carries as few information on clients as possible compared to a certificate of PKIX (Public Key Infrastructure with X.509). After obtaining a certificate issued by an authorized server, a client submits the certificate to the service provider (server) in order to take services associated with the certificate. Then, the provider verifies the submitted certificate and gives permission to the client if verified. A client can delegate a certificate to a third party, so that he/she can access the server instead of the original certificate recipient. The implementation of the proposed certificate-based access control consists of authorized server, issuing agent, client. These are based on SPKI certificate issuer, certificate verifier, access control list management, and delegate mechanism. These subsystems are coded on the basis of SPKI library written in Java.

UR - http://www.scopus.com/inward/record.url?scp=33645673702&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33645673702&partnerID=8YFLogxK

U2 - 10.1109/PADSW.2000.884605

DO - 10.1109/PADSW.2000.884605

M3 - Conference contribution

AN - SCOPUS:33645673702

SN - 0769505716

SN - 9780769505718

SP - 301

EP - 306

BT - Proceedings - 7th International Conference on Parallel and Distributed Systems: Workshops

PB - Institute of Electrical and Electronics Engineers Inc.

ER -