Abstract
For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE |
| Publisher | IEEE Computer Society |
| Pages | 201-206 |
| Number of pages | 6 |
| Volume | 2000-January |
| ISBN (Print) | 0769507980 |
| DOIs | |
| Publication status | Published - 2000 |
| Externally published | Yes |
| Event | IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000 - Gaithersburg, United States Duration: 2000 Jun 14 → 2000 Jun 16 |
Other
| Other | IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000 |
|---|---|
| Country | United States |
| City | Gaithersburg |
| Period | 00/6/14 → 00/6/16 |
Fingerprint
Keywords
- Access control
- Access protocols
- Authorization
- Blood
- Internet
- Java
- Network servers
- Privacy
- Public key
- Web server
ASJC Scopus subject areas
- Hardware and Architecture
- Software
Cite this
Privacy-enhanced access control by SPKI and its application to Web server. / Saito, T.; Umesawa, K.; Okuno, H. G.
Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. Vol. 2000-January IEEE Computer Society, 2000. p. 201-206 883729.Research output: Chapter in Book/Report/Conference proceeding › Conference contribution
}
TY - GEN
T1 - Privacy-enhanced access control by SPKI and its application to Web server
AU - Saito, T.
AU - Umesawa, K.
AU - Okuno, H. G.
PY - 2000
Y1 - 2000
N2 - For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.
AB - For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.
KW - Access control
KW - Access protocols
KW - Authorization
KW - Blood
KW - Internet
KW - Java
KW - Network servers
KW - Privacy
KW - Public key
KW - Web server
UR - http://www.scopus.com/inward/record.url?scp=84949670487&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84949670487&partnerID=8YFLogxK
U2 - 10.1109/ENABL.2000.883729
DO - 10.1109/ENABL.2000.883729
M3 - Conference contribution
AN - SCOPUS:84949670487
SN - 0769507980
VL - 2000-January
SP - 201
EP - 206
BT - Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE
PB - IEEE Computer Society
ER -