Privacy-enhanced access control by SPKI and its application to Web server

T. Saito; K. Umesawa; H. G. Okuno

doi:10.1109/ENABL.2000.883729

Privacy-enhanced access control by SPKI and its application to Web server

T. Saito, K. Umesawa, H. G. Okuno

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

5 Citations (Scopus)

Abstract

For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

Original language	English
Title of host publication	Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE
Publisher	IEEE Computer Society
Pages	201-206
Number of pages	6
Volume	2000-January
ISBN (Print)	0769507980
DOIs	https://doi.org/10.1109/ENABL.2000.883729
Publication status	Published - 2000
Externally published	Yes
Event	IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000 - Gaithersburg, United States Duration: 2000 Jun 14 → 2000 Jun 16

Other

Other	IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000
Country	United States
City	Gaithersburg
Period	00/6/14 → 00/6/16

Fingerprint

Keywords

Access control
Access protocols
Authorization
Blood
Internet
Java
Network servers
Privacy
Public key
Web server

ASJC Scopus subject areas

Hardware and Architecture
Software

Cite this

Saito, T., Umesawa, K., & Okuno, H. G. (2000). Privacy-enhanced access control by SPKI and its application to Web server. In Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE (Vol. 2000-January, pp. 201-206). [883729] IEEE Computer Society. https://doi.org/10.1109/ENABL.2000.883729

Privacy-enhanced access control by SPKI and its application to Web server. / Saito, T.; Umesawa, K.; Okuno, H. G.

Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. Vol. 2000-January IEEE Computer Society, 2000. p. 201-206 883729.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Saito, T, Umesawa, K & Okuno, HG 2000, Privacy-enhanced access control by SPKI and its application to Web server. in Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE. vol. 2000-January, 883729, IEEE Computer Society, pp. 201-206, IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000, Gaithersburg, United States, 00/6/14. https://doi.org/10.1109/ENABL.2000.883729

@inproceedings{252f37e5a7544e66a075615d63d56e95,

title = "Privacy-enhanced access control by SPKI and its application to Web server",

abstract = "For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.",

keywords = "Access control, Access protocols, Authorization, Blood, Internet, Java, Network servers, Privacy, Public key, Web server",

author = "T. Saito and K. Umesawa and Okuno, {H. G.}",

year = "2000",

doi = "10.1109/ENABL.2000.883729",

language = "English",

isbn = "0769507980",

volume = "2000-January",

pages = "201--206",

booktitle = "Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE",

publisher = "IEEE Computer Society",

note = "IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000 ; Conference date: 14-06-2000 Through 16-06-2000",

}

TY - GEN

T1 - Privacy-enhanced access control by SPKI and its application to Web server

AU - Saito, T.

AU - Umesawa, K.

AU - Okuno, H. G.

PY - 2000

Y1 - 2000

N2 - For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

AB - For providing a privacy-enhanced access only for an appropriate user, anonymous access such as anonymous FTP is too weak because a service provider cannot know about a client, while authentication-based access control such as PKIX (Public Key Infrastructure with X.509) is too strong because ID information on a client is exposed to a service-provider. Instead, we present a new access control scheme by using SPKI (Simple Public Key Infrastructure), since an authorization certificate based on SPKI does not carry any ID information. This scheme needs additional mechanism for the server and clients such as issuing, delegating, validating, and revoking certificates. A web-based privacy-enhanced access control is designed on the basis of the proposed scheme and implemented by Java. The resulting system shows that the proposed scheme works well with a small amount of overheads being introduced into a normal web server.

KW - Access control

KW - Access protocols

KW - Authorization

KW - Blood

KW - Internet

KW - Java

KW - Network servers

KW - Privacy

KW - Public key

KW - Web server

UR - http://www.scopus.com/inward/record.url?scp=84949670487&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84949670487&partnerID=8YFLogxK

U2 - 10.1109/ENABL.2000.883729

DO - 10.1109/ENABL.2000.883729

M3 - Conference contribution

AN - SCOPUS:84949670487

SN - 0769507980

VL - 2000-January

SP - 201

EP - 206

BT - Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE

PB - IEEE Computer Society

T2 - IEEE 9th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2000

Y2 - 14 June 2000 through 16 June 2000

ER -

Access to Document

10.1109/ENABL.2000.883729