Access Control by SPKI Certificate
スポンサーリンク
概要
- 論文の詳細を見る
In this paper, we present a certificate-based access control scheme for privacy-centered services over computer networks. For example, a user wants to be an anonymous customer of some services. One of main authentication and access control schemes is ID certificate (ticket) with service (authority), e.g., PKIX(Public Key Infrastructure with X.509), which provides authentication and access control as a whole unit. In this scheme, any service ticket issued by authority always carries information on the original recipient. This scheme is too strong for privacy-centered services. To issue a certificate which carries as few information on customers as possible, we adopt SPKI(Simple Public Key Infrastructure) instead of PKIX. After obtaining a certificate issued by an authorized server, a customer (client) submits the certificate to the service provider (server) in order to take services associated with the certificate. Then, the provider verifies the submitted certificate with the access control list and gives the permission to the client if verified. A customer can delegate a certificate to a third party, so that he / she can take services instead of the original certificate recipient. The implementation of certificate-based access control consists of SPKI certificate issuer, certificate verifier, access control list management, and delegate mechanism. These subsystems are created on the basis fo SPKI library written in Java. The proposed scheme is evaluated from the viewpoint of efficiency and privacy by applying it to a web based service provider.
- 社団法人電子情報通信学会の論文
- 2000-01-25
著者
-
OKUNO HIROSHI
Departments of Urology, Kyoto University Graduate School of Medicine
-
Wen Wu
Department Of Physics Nankai University:research Center For Nuclear Physics (rcnp) Osaka University
-
SAITO Takamichi
Department of Information Sciences, Faculty of Science and Technology, Science University of Tokyo
-
Saito T
Tokyo Denki Univ. Suita‐shi Jpn
-
Saito Takamichi
Department Of Information Sciences Faculty Of Science And Technology Science University Of Tokyo
-
Okuno H
Kyoto Univ. Kyoto Jpn
-
UMESAWA Kentaro
Department of Information Sciences, Science University of Tokyo
-
Okuno Hiroshi
Department Of Orthopaedic Surgery Tohoku University School Of Medicine
-
Okuno Hiroshi
Department Of Applied Materials Science Faculty Of Engineering Osaka Prefecture University
-
Wen Wu
Department Of Information Sciences Science University Of Tokyo
-
Umesawa Kentaro
Department Of Information Sciences Science University Of Tokyo
関連論文
- Role of Form Factor in Relativistic Hartree-Fock Approach for Finite Nuclei(Nuclear Physics)
- Assessment of a protocol for prophylactic antibiotics to prevent perioperative infection in urological surgery : A preliminary study
- Living related renal transplantation for end-stage renal disease after liver transplantation from a brain-dead donor
- Retroperitoneoscopic ureterocutaneostomy for obstructive uropathy with advanced bladder cancer : A case report
- Immunocytochemical Detection of p53 in Cultures of Exfoliated Cells from Urine of Patients With Urothelial Cancers
- Anaphylaxis following administration of intravenous methylprednisolone sodium succinate in a renal transplant recipient
- Adult-onset idiopathic hypogonadotropic hypogonadism presented with erectile and ejaculatory disorder
- Per-operative frozen section examination of pelvic nodes is unnecessary for the majority of clinically localized prostate cancers in the prostate-specific antigen era
- Predicting Object Dynamics From Visual Images Through Active Sensing Experiences
- Instrogram: Probabilistic Representation of Instrument Existence for Polyphonic Music (特集:便利で身近な音楽情報処理)
- Acoustic Cavitation in Water under Rare Gas Atmosphere
- 21aBD-9 The extended relativistic Hartree-Fock model for nuclear matter
- Automatic Verification System for Authentication Protocols
- Attacks on Authentication Protocols with Compromised Certificates and How to Fix them (特集 情報セキュリティの理論と応用)
- Human-robot non-verbal interaction empowered by real-time auditory and visual multiple-talker tracking
- Infrarenal Abdominal Aortic Aneurysm Complicated by Persistent Endotension After Endovascular Repair : Report of a Case
- Expression of Apg-1, a member of the Hsp110 family, in the human testis and sperm
- Diagram specific to sacroiliac joint pain site indicated by one-finger test
- Access Control by SPKI Certificate
- Common Acoustical Pole Estimation from Multi-Channel Musical Audio Signals(Engineering Acoustics)
- Target Speech Detection and Separation for Communication with Humanoid Robots in Noisy Home Environments
- Self-organization of Dynamic Object Features Based on Bidirectional Training
- Human Tracking System Integrating Sound and Face Localization Using an Expectation-Maximization Algorithm in Real Environments
- Micturitional disturbance due to labial adhesion as a cause of vaginal implantation of bladder urothelial carcinoma
- Role of Form Factor in Relativistic Hartree-Fock Approach for Finite Nuclei
- Poly-β-Amino Acids. I. The Preparation of Phenyl Substituted β-Amino Acid Polymers
- Towards Written Text Recognition Based on Handwriting Experiences Using a Recurrent Neural Network
- Instrogram: Probabilistic Representation of Instrument Existence for Polyphonic Music
- Instrogram: Probabilistic Representation of Instrument Existence for Polyphonic Music