Privacy-enhanced SPKI access control on PKIX and its application to Web server

T. Saito, K. Umesawa, T. Kito, Hiroshi G. Okuno

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

Access control using PKIX (Public Key Infrastructure with X.509) may cause a privacy problem. It is caused mainly by the fact that a server can know a client's ID. To solve this problem, we proposed a restricted anonymous access control scheme using SPKI (Simple Public Key Infrastructure). It can make a server provide service to an authorized client. It still has another problem: SPKI is not so popular as PKIX. PKIX has many efficient technologies such like SSL (Secure Socket Layer), but SPKI can't directly use these technologies. In this paper our implementation utilizes the slightest extension of PKIX, namely, we use an X.509 Certificate as an Authorization Certificate and PKIX technologies, i.e. SSL. Therefore, our approach can make some proposed SPKI schemes practical and useful. In this paper the proposed scheme is applied to access control of the Web server. The system demonstrates that it succeeds in adding privacy-enhanced access control to SSL mutual authentication. We also describe and discuss the details of implementations.

Original languageEnglish
Title of host publicationProceedings - International Conference on Advanced Information Networking and Applications, AINA
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages696-703
Number of pages8
Volume2003-January
ISBN (Print)0769519067
DOIs
Publication statusPublished - 2003
Externally publishedYes
Event17th International Conference on Advanced Information Networking and Applications, AINA 2003 - Xi'an, China
Duration: 2003 Mar 272003 Mar 29

Other

Other17th International Conference on Advanced Information Networking and Applications, AINA 2003
CountryChina
CityXi'an
Period03/3/2703/3/29

Keywords

  • Access control
  • Authentication
  • Authorization
  • Identity management systems
  • Information management
  • Internet
  • Privacy
  • Public key
  • Sockets
  • Web server

ASJC Scopus subject areas

  • Engineering(all)

Fingerprint Dive into the research topics of 'Privacy-enhanced SPKI access control on PKIX and its application to Web server'. Together they form a unique fingerprint.

  • Cite this

    Saito, T., Umesawa, K., Kito, T., & Okuno, H. G. (2003). Privacy-enhanced SPKI access control on PKIX and its application to Web server. In Proceedings - International Conference on Advanced Information Networking and Applications, AINA (Vol. 2003-January, pp. 696-703). [1192970] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/AINA.2003.1192970