Credential negotiation with limited disclosure via iterative range refinement in an unordered space

Author

Eyers, David ; Moody, Ken

Author_Institution

Comput. Lab., Cambridge Univ., UK

fYear

2003

fDate

1-5 Sept. 2003

Firstpage

427

Lastpage

430

Abstract

The world-wide computing network has recently seen a proliferation of Web-service and other distributed system platforms. In order to couple services in such an environment it will be necessary to develop techniques to support negotiation between parties that do not openly share information. Previous incremental trust negotiation approaches cater for limited credential disclosure through features of policy design. In contrast, the paper presents an algorithm which supports limited credential disclosure by performing incremental negotiations in a hashed target-space. We demonstrate our method by discussing its integration into a parameterised role-based access control system.

Keywords

Internet; authorisation; cryptography; data privacy; credential negotiation; distributed system platforms; hashed target-space; iterative range refinement; limited disclosure; parameterised access control; role-based access control; trust negotiation; world-wide computing network Web-service; Access control; Access protocols; Bandwidth; Computer networks; Distributed computing; Intelligent networks; Laboratories; Surges; Telecommunication network reliability; Web sites;

fLanguage

English

Publisher

ieee

Conference_Titel

Database and Expert Systems Applications, 2003. Proceedings. 14th International Workshop on

ISSN

1529-4188

Print_ISBN

0-7695-1993-8

Type

conf

DOI

10.1109/DEXA.2003.1232059

Filename

1232059