Privacy-enhanced access control by SPKI and its application to Web server

T. Saito, K. Umesawa, H. G. Okuno

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Citations (Scopus)

Abstract

For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

Original languageEnglish
Title of host publicationProceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE
PublisherIEEE Computer Society
Pages201-206
Number of pages6
Volume2000-January
ISBN (Print)0769507980
DOIs
Publication statusPublished - 2000
Externally publishedYes
EventIEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000 - Gaithersburg, United States
Duration: 2000 Jun 142000 Jun 16

Other

OtherIEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000
CountryUnited States
CityGaithersburg
Period00/6/1400/6/16

Fingerprint

Access control
Servers
Authentication

Keywords

  • Access control
  • Access protocols
  • Authorization
  • Blood
  • Internet
  • Java
  • Network servers
  • Privacy
  • Public key
  • Web server

ASJC Scopus subject areas

  • Hardware and Architecture
  • Software

Cite this

Saito, T., Umesawa, K., & Okuno, H. G. (2000). Privacy-enhanced access control by SPKI and its application to Web server. In Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE (Vol. 2000-January, pp. 201-206). [883729] IEEE Computer Society. https://doi.org/10.1109/ENABL.2000.883729

Privacy-enhanced access control by SPKI and its application to Web server. / Saito, T.; Umesawa, K.; Okuno, H. G.

Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. Vol. 2000-January IEEE Computer Society, 2000. p. 201-206 883729.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Saito, T, Umesawa, K & Okuno, HG 2000, Privacy-enhanced access control by SPKI and its application to Web server. in Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. vol. 2000-January, 883729, IEEE Computer Society, pp. 201-206, IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000, Gaithersburg, United States, 00/6/14. https://doi.org/10.1109/ENABL.2000.883729
Saito T, Umesawa K, Okuno HG. Privacy-enhanced access control by SPKI and its application to Web server. In Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. Vol. 2000-January. IEEE Computer Society. 2000. p. 201-206. 883729 https://doi.org/10.1109/ENABL.2000.883729
Saito, T. ; Umesawa, K. ; Okuno, H. G. / Privacy-enhanced access control by SPKI and its application to Web server. Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. Vol. 2000-January IEEE Computer Society, 2000. pp. 201-206
@inproceedings{252f37e5a7544e66a075615d63d56e95,
title = "Privacy-enhanced access control by SPKI and its application to Web server",
abstract = "For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.",
keywords = "Access control, Access protocols, Authorization, Blood, Internet, Java, Network servers, Privacy, Public key, Web server",
author = "T. Saito and K. Umesawa and Okuno, {H. G.}",
year = "2000",
doi = "10.1109/ENABL.2000.883729",
language = "English",
isbn = "0769507980",
volume = "2000-January",
pages = "201--206",
booktitle = "Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE",
publisher = "IEEE Computer Society",

}

TY - GEN

T1 - Privacy-enhanced access control by SPKI and its application to Web server

AU - Saito, T.

AU - Umesawa, K.

AU - Okuno, H. G.

PY - 2000

Y1 - 2000

N2 - For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

AB - For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

KW - Access control

KW - Access protocols

KW - Authorization

KW - Blood

KW - Internet

KW - Java

KW - Network servers

KW - Privacy

KW - Public key

KW - Web server

UR - http://www.scopus.com/inward/record.url?scp=84949670487&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84949670487&partnerID=8YFLogxK

U2 - 10.1109/ENABL.2000.883729

DO - 10.1109/ENABL.2000.883729

M3 - Conference contribution

AN - SCOPUS:84949670487

SN - 0769507980

VL - 2000-January

SP - 201

EP - 206

BT - Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE

PB - IEEE Computer Society

ER -