Title :
Credentials for privacy and interoperation
Author :
Jones, Vicki E. ; Ching, Neil ; Winslett, Marianne
Author_Institution :
Dept. of Comput. Sci., Illinois Univ., Urbana, IL, USA
Abstract :
We consider the problem of providing secure, private access to applications and data in a world-wide distributed client-server environment such as the Internet of the future. In such a system, the set of potential users of a service may extend far beyond the local community knowable to the application providing the service. Applications will not generally have prior knowledge of the individual making a request upon which an access control decision can be based and furthermore, knowledge of an individual´s identity may not be directly useful. We frame our discussion in the context of supporting credentials which are submitted with a request, and propose a list of desiderata for such credentials. We evaluate several well-known proposals for credentials, focusing on issues related to privacy and scalability, and then point out the research issues that remain before such schemes can be deployed in a world-wide environment with strong privacy guarantees
Keywords :
Internet; authorisation; client-server systems; data privacy; open systems; security of data; Internet; access control decision; interoperation credentials; potential user; privacy credentials; privacy guarantees; request; scalability; secure private access; world-wide distributed client-server environment; Access control; Application software; Availability; Computer science; Data security; Microcomputers; Privacy; Proposals; Scalability; Software systems;
Conference_Titel :
New Security Paradigms Workshop, 1995. Proceedings
Conference_Location :
La Jolla, CA
Print_ISBN :
0-8186-7318-4
DOI :
10.1109/NSPW.1995.492348
