• DocumentCode
    1571660
  • Title

    Zero-knowledge trust negotiation

  • Author

    Wang, Bo ; Wei, Ruizhong

  • Author_Institution
    Comput. Sci. Dept., Lakehead Univ., Thunder Bay, ON
  • fYear
    2009
  • Firstpage
    390
  • Lastpage
    395
  • Abstract
    Electronic business or on-line cooperation transactions happen regularly over the internet. Such a transaction usually involves a service provider who provides a certain service (i.e., perform an on-line purchase) and a service requester who requests the service. In order to decide whether a service requester can access a service, a distributed access control system can be used. Traditional identity-based access control systems usually require pre-register, which is too rigid to adapt to the rapid developing on-line cooperation. Trust-based access control provides open authentication and access control. The flexibility that it introduces could boost the on-line cooperation significantly. However, it is vulnerable to attacks that lead to leakage of sensitive information. Furthermore, certain credentials (such as, credit card number) are too sensitive to release for some people even through proper release policies. This paper introduces the Zero-knowledge protocol for credential verification, and presents a trust-based access control framework that incorporates this protocol. This system keeps the highly sensitive credentials secret; while at the same time proceed with the trust negotiation.
  • Keywords
    authorisation; cryptographic protocols; credential verification; trust negotiation; trust-based access control; zero-knowledge protocol; Access control; Access protocols; Authentication; Collaborative work; Computer crime; Computer science; Credit cards; Databases; Internet; Protection; Access control; DoS; Interactive proof protocol; Trust negotiation; Zero-knowledge;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Supported Cooperative Work in Design, 2009. CSCWD 2009. 13th International Conference on
  • Conference_Location
    Santiago
  • Print_ISBN
    978-1-4244-3534-0
  • Electronic_ISBN
    978-1-4244-3535-7
  • Type

    conf

  • DOI
    10.1109/CSCWD.2009.4968090
  • Filename
    4968090