Title :
Credential negotiation with limited disclosure via iterative range refinement in an unordered space
Author :
Eyers, David ; Moody, Ken
Author_Institution :
Comput. Lab., Cambridge Univ., UK
Abstract :
The world-wide computing network has recently seen a proliferation of Web-service and other distributed system platforms. In order to couple services in such an environment it will be necessary to develop techniques to support negotiation between parties that do not openly share information. Previous incremental trust negotiation approaches cater for limited credential disclosure through features of policy design. In contrast, the paper presents an algorithm which supports limited credential disclosure by performing incremental negotiations in a hashed target-space. We demonstrate our method by discussing its integration into a parameterised role-based access control system.
Keywords :
Internet; authorisation; cryptography; data privacy; credential negotiation; distributed system platforms; hashed target-space; iterative range refinement; limited disclosure; parameterised access control; role-based access control; trust negotiation; world-wide computing network Web-service; Access control; Access protocols; Bandwidth; Computer networks; Distributed computing; Intelligent networks; Laboratories; Surges; Telecommunication network reliability; Web sites;
Conference_Titel :
Database and Expert Systems Applications, 2003. Proceedings. 14th International Workshop on
Print_ISBN :
0-7695-1993-8
DOI :
10.1109/DEXA.2003.1232059
