Privacy-enhanced SPKI access control on PKIX and its application to Web server

T. Saito; K. Umesawa; T. Kito; Hiroshi G. Okuno

doi:10.1109/AINA.2003.1192970

Privacy-enhanced SPKI access control on PKIX and its application to Web server

T. Saito, K. Umesawa, T. Kito, Hiroshi G. Okuno

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

Access control using PKIX (Public Key Infrastructure with X.509) may cause a privacy problem. It is caused mainly by the fact that a server can know a client's ID. To solve this problem, we proposed a restricted anonymous access control scheme using SPKI (Simple Public Key Infrastructure). It can make a server provide service to an authorized client. It still has another problem: SPKI is not so popular as PKIX. PKIX has many efficient technologies such like SSL (Secure Socket Layer), but SPKI can't directly use these technologies. In this paper our implementation utilizes the slightest extension of PKIX, namely, we use an X.509 Certificate as an Authorization Certificate and PKIX technologies, i.e. SSL. Therefore, our approach can make some proposed SPKI schemes practical and useful. In this paper the proposed scheme is applied to access control of the Web server. The system demonstrates that it succeeds in adding privacy-enhanced access control to SSL mutual authentication. We also describe and discuss the details of implementations.

Original language	English
Title of host publication	Proceedings - International Conference on Advanced Information Networking and Applications, AINA
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	696-703
Number of pages	8
Volume	2003-January
ISBN (Print)	0769519067
DOIs	https://doi.org/10.1109/AINA.2003.1192970
Publication status	Published - 2003
Externally published	Yes
Event	17th International Conference on Advanced Information Networking and Applications, AINA 2003 - Xi'an, China Duration: 2003 Mar 27 → 2003 Mar 29

Other

Other	17th International Conference on Advanced Information Networking and Applications, AINA 2003
Country/Territory	China
City	Xi'an
Period	03/3/27 → 03/3/29

Keywords

Access control
Authentication
Authorization
Identity management systems
Information management
Internet
Privacy
Public key
Sockets
Web server

ASJC Scopus subject areas

Engineering(all)

Access to Document

10.1109/AINA.2003.1192970

Cite this

Saito, T., Umesawa, K., Kito, T., & Okuno, H. G. (2003). Privacy-enhanced SPKI access control on PKIX and its application to Web server. In Proceedings - International Conference on Advanced Information Networking and Applications, AINA (Vol. 2003-January, pp. 696-703). [1192970] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/AINA.2003.1192970

Privacy-enhanced SPKI access control on PKIX and its application to Web server. / Saito, T.; Umesawa, K.; Kito, T. et al.

Proceedings - International Conference on Advanced Information Networking and Applications, AINA. Vol. 2003-January Institute of Electrical and Electronics Engineers Inc., 2003. p. 696-703 1192970.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Saito, T, Umesawa, K, Kito, T & Okuno, HG 2003, Privacy-enhanced SPKI access control on PKIX and its application to Web server. in Proceedings - International Conference on Advanced Information Networking and Applications, AINA. vol. 2003-January, 1192970, Institute of Electrical and Electronics Engineers Inc., pp. 696-703, 17th International Conference on Advanced Information Networking and Applications, AINA 2003, Xi'an, China, 03/3/27. https://doi.org/10.1109/AINA.2003.1192970

@inproceedings{23d4ff8b020c4cd8a0a6d951b59768ca,

title = "Privacy-enhanced SPKI access control on PKIX and its application to Web server",

abstract = "Access control using PKIX (Public Key Infrastructure with X.509) may cause a privacy problem. It is caused mainly by the fact that a server can know a client's ID. To solve this problem, we proposed a restricted anonymous access control scheme using SPKI (Simple Public Key Infrastructure). It can make a server provide service to an authorized client. It still has another problem: SPKI is not so popular as PKIX. PKIX has many efficient technologies such like SSL (Secure Socket Layer), but SPKI can't directly use these technologies. In this paper our implementation utilizes the slightest extension of PKIX, namely, we use an X.509 Certificate as an Authorization Certificate and PKIX technologies, i.e. SSL. Therefore, our approach can make some proposed SPKI schemes practical and useful. In this paper the proposed scheme is applied to access control of the Web server. The system demonstrates that it succeeds in adding privacy-enhanced access control to SSL mutual authentication. We also describe and discuss the details of implementations.",

keywords = "Access control, Authentication, Authorization, Identity management systems, Information management, Internet, Privacy, Public key, Sockets, Web server",

author = "T. Saito and K. Umesawa and T. Kito and Okuno, {Hiroshi G.}",

year = "2003",

doi = "10.1109/AINA.2003.1192970",

language = "English",

isbn = "0769519067",

volume = "2003-January",

pages = "696--703",

booktitle = "Proceedings - International Conference on Advanced Information Networking and Applications, AINA",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

note = "17th International Conference on Advanced Information Networking and Applications, AINA 2003 ; Conference date: 27-03-2003 Through 29-03-2003",

}

TY - GEN

T1 - Privacy-enhanced SPKI access control on PKIX and its application to Web server

AU - Saito, T.

AU - Umesawa, K.

AU - Kito, T.

AU - Okuno, Hiroshi G.

PY - 2003

Y1 - 2003

N2 - Access control using PKIX (Public Key Infrastructure with X.509) may cause a privacy problem. It is caused mainly by the fact that a server can know a client's ID. To solve this problem, we proposed a restricted anonymous access control scheme using SPKI (Simple Public Key Infrastructure). It can make a server provide service to an authorized client. It still has another problem: SPKI is not so popular as PKIX. PKIX has many efficient technologies such like SSL (Secure Socket Layer), but SPKI can't directly use these technologies. In this paper our implementation utilizes the slightest extension of PKIX, namely, we use an X.509 Certificate as an Authorization Certificate and PKIX technologies, i.e. SSL. Therefore, our approach can make some proposed SPKI schemes practical and useful. In this paper the proposed scheme is applied to access control of the Web server. The system demonstrates that it succeeds in adding privacy-enhanced access control to SSL mutual authentication. We also describe and discuss the details of implementations.

AB - Access control using PKIX (Public Key Infrastructure with X.509) may cause a privacy problem. It is caused mainly by the fact that a server can know a client's ID. To solve this problem, we proposed a restricted anonymous access control scheme using SPKI (Simple Public Key Infrastructure). It can make a server provide service to an authorized client. It still has another problem: SPKI is not so popular as PKIX. PKIX has many efficient technologies such like SSL (Secure Socket Layer), but SPKI can't directly use these technologies. In this paper our implementation utilizes the slightest extension of PKIX, namely, we use an X.509 Certificate as an Authorization Certificate and PKIX technologies, i.e. SSL. Therefore, our approach can make some proposed SPKI schemes practical and useful. In this paper the proposed scheme is applied to access control of the Web server. The system demonstrates that it succeeds in adding privacy-enhanced access control to SSL mutual authentication. We also describe and discuss the details of implementations.

KW - Access control

KW - Authentication

KW - Authorization

KW - Identity management systems

KW - Information management

KW - Internet

KW - Privacy

KW - Public key

KW - Sockets

KW - Web server

UR - http://www.scopus.com/inward/record.url?scp=33750949984&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33750949984&partnerID=8YFLogxK

U2 - 10.1109/AINA.2003.1192970

DO - 10.1109/AINA.2003.1192970

M3 - Conference contribution

AN - SCOPUS:33750949984

SN - 0769519067

VL - 2003-January

SP - 696

EP - 703

BT - Proceedings - International Conference on Advanced Information Networking and Applications, AINA

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 17th International Conference on Advanced Information Networking and Applications, AINA 2003

Y2 - 27 March 2003 through 29 March 2003

ER -

Privacy-enhanced SPKI access control on PKIX and its application to Web server

Abstract

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this