Privacy-enhanced access control by SPKI and its application to Web server

T. Saito, K. Umesawa, H. G. Okuno

Research output: Chapter in Book/Report/Conference proceedingConference contribution

5 Citations (Scopus)

Abstract

For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

Original languageEnglish
Title of host publicationProceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE
PublisherIEEE Computer Society
Pages201-206
Number of pages6
Volume2000-January
ISBN (Print)0769507980
DOIs
Publication statusPublished - 2000
Externally publishedYes
EventIEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000 - Gaithersburg, United States
Duration: 2000 Jun 142000 Jun 16

Other

OtherIEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000
CountryUnited States
CityGaithersburg
Period00/6/1400/6/16

Keywords

  • Access control
  • Access protocols
  • Authorization
  • Blood
  • Internet
  • Java
  • Network servers
  • Privacy
  • Public key
  • Web server

ASJC Scopus subject areas

  • Hardware and Architecture
  • Software

Fingerprint Dive into the research topics of 'Privacy-enhanced access control by SPKI and its application to Web server'. Together they form a unique fingerprint.

  • Cite this

    Saito, T., Umesawa, K., & Okuno, H. G. (2000). Privacy-enhanced access control by SPKI and its application to Web server. In Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE (Vol. 2000-January, pp. 201-206). [883729] IEEE Computer Society. https://doi.org/10.1109/ENABL.2000.883729