Title :
Privacy enhanced access control by SPKI
Author :
Saito, Takamichi ; Umesawa, Kentaro ; Okuno, Hiroshi G.
Author_Institution :
Dept. of Inf. Sci., Tokyo Univ., Japan
Abstract :
In Internet and electronic commerce applications, a user may want to access servers as anonymous with an authorized certificate. In this paper, such privacy-enhanced service scheme is presented by using Simple Public Key Infrastructure (SPKI). A certificate of SPKI carries as few information on clients as possible compared to a certificate of PKIX (Public Key Infrastructure with X.509). After obtaining a certificate issued by an authorized server, a client submits the certificate to the service provider (server) in order to take services associated with the certificate. Then, the provider verifies the submitted certificate and gives permission to the client if verified. A client can delegate a certificate to a third party, so that he/she can access the server instead of the original certificate recipient. The implementation of the proposed certificate-based access control consists of authorized server, issuing agent, client. These are based on SPKI certificate issuer, certificate verifier, access control list management, and delegate mechanism. These subsystems are coded on the basis of SPKI library written in Java
Keywords :
access protocols; cryptography; electronic commerce; Internet; Simple Public Key Infrastructure; authorized server; certificate-based access; client; electronic commerce; privacy-enhanced service; server; service provider; Access control; Authentication; Authorization; Electronic commerce; Internet; Libraries; Permission; Privacy; Public key; Web server;
Conference_Titel :
Parallel and Distributed Systems: Workshops, Seventh International Conference on, 2000
Conference_Location :
Iwate
Print_ISBN :
0-7695-0571-6
DOI :
10.1109/PADSW.2000.884605
