Title :
Binding identities and attributes using digitally signed certificates
Author :
Park, Joon S. ; Sandhu, Ravi
Author_Institution :
Lab. for Inf. Security Technol., George Mason Univ., Fairfax, VA, USA
Abstract :
A certificate is digitally signed by a certificate authority (CA) to confirm that the information in the certificate is valid and belongs to the subject. Certificate users can verify the integrity and validity of a certificate by checking the issuing CA´s digital signature in the certificate and, if necessary, chasing certificate chain and revocation lists. Usually, we use certificates to provide the integrity of identity or attribute information of the subject. Attributes must be coupled with the corresponding identities. We introduce comprehensive approaches to bind identity and attribute certificates, identifying three different techniques: monolithic, autonomic, and chained signatures. We describe each technique and analyze the relative advantages and disadvantages of each
Keywords :
certification; message authentication; attribute certificates; autonomic signatures; binding attributes; binding identities; certificate authority; chained signatures; digital signature; digitally signed certificates; monolithic signatures; Authentication; Content addressable storage; Digital signatures; ISO; Information analysis; Information security; Public key; Public key cryptography; Scalability; Standards organizations;
Conference_Titel :
Computer Security Applications, 2000. ACSAC '00. 16th Annual Conference
Conference_Location :
New Orleans, LA
Print_ISBN :
0-7695-0859-6
DOI :
10.1109/ACSAC.2000.898865
